Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/882E13FE906F11EF87AAF11CC4F9AE02.roa
File: 882E13FE906F11EF87AAF11CC4F9AE02.roa (raw, json)
Hash identifier: Z8CvB1eBI4IAox2pw9auT0eUDI+9rRSpAyo0VmP5cgc=
Subject key identifier: 6C:F6:33:6B:16:A6:22:1B:7E:D9:E3:68:84:2A:66:C2:A0:62:C1:33
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0B53
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/882E13FE906F11EF87AAF11CC4F9AE02.roa
Signing time: Tue 22 Oct 2024 12:16:57 +0000
ROA not before: Tue 22 Oct 2024 12:16:57 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 139.190.192.0/19 maxlen: 19
Validation: Failed, certificate revoked on Wed 23 Oct 2024 11:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2899 (0xb53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Oct 22 12:16:57 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=671797b9-8743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8c:fb:bd:9f:a2:8a:7d:68:0c:62:e4:48:98:
74:0e:6e:04:b8:8e:f8:1b:f4:11:61:84:57:13:5c:
1c:5d:32:98:17:94:b0:c0:24:97:55:f7:5b:e4:04:
8c:a2:33:e5:03:61:f2:a9:38:04:a5:51:d9:a8:e8:
37:d0:b4:6a:b0:01:0b:e3:44:0a:db:be:d2:31:a0:
02:39:ad:4c:0c:7d:56:4c:12:cf:86:ea:89:79:0e:
cb:bc:7a:f5:6e:2c:48:90:91:57:de:08:2c:a9:91:
ca:df:26:23:0c:08:50:44:63:c4:1b:95:dd:36:a2:
22:4a:cf:7f:56:4d:40:53:18:69:4d:87:1c:05:6b:
b4:e8:cd:f4:65:3f:b2:18:c0:f7:f2:ba:10:97:dc:
19:82:e0:54:18:88:da:f3:90:61:a7:97:bd:64:de:
e7:4c:a5:c1:79:5f:4c:2c:05:61:80:3c:9b:e4:47:
53:26:66:d9:25:6e:69:67:61:a2:09:4f:27:ec:61:
02:73:bc:9c:47:28:e0:c2:e3:6e:e7:17:d7:70:57:
c1:16:ac:12:ac:33:a5:9a:f1:bd:e5:7c:46:73:5c:
9e:fb:07:71:c9:31:f7:c6:bd:57:81:84:56:1d:88:
7f:dd:aa:6a:d0:0d:64:c7:6d:ae:18:d2:cb:1a:11:
aa:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F6:33:6B:16:A6:22:1B:7E:D9:E3:68:84:2A:66:C2:A0:62:C1:33
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/882E13FE906F11EF87AAF11CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.192.0/19
Signature Algorithm: sha256WithRSAEncryption
34:87:28:d0:13:db:c3:50:f2:21:f1:42:67:48:54:77:ac:17:
72:91:6d:20:b0:39:03:6d:a6:9f:44:30:34:ed:f5:7a:fe:74:
39:c5:28:6c:54:18:9c:37:ad:29:4e:02:36:46:9f:d2:25:73:
3b:1b:65:5b:c0:1f:68:0f:a3:33:0e:e2:e2:20:4c:40:b2:4b:
02:a9:af:8d:3a:24:02:f7:02:b3:cd:04:f3:4e:f0:13:68:2f:
d1:15:f2:97:ee:ff:89:4f:80:3f:2c:f4:7f:b3:e7:4b:4b:a0:
62:dd:9d:49:89:c0:a1:32:f9:08:f0:a5:92:e4:c5:21:af:f3:
b4:af:68:53:fa:b1:ae:2b:06:cd:cb:9b:b4:26:24:dd:bd:68:
4b:a6:49:66:3c:b0:5f:a9:81:27:fc:4c:29:a5:66:3a:72:40:
c5:dc:2e:67:0b:80:69:6b:04:ed:0f:b4:69:33:8d:b0:df:ac:
6c:44:c4:06:fe:42:9a:1b:72:0a:14:76:1d:e1:5b:0f:78:4a:
8b:02:2e:d2:c8:39:c2:96:ac:2c:39:9d:1e:d2:15:d1:1d:41:
3c:c1:a1:81:58:f8:21:a1:d3:96:ce:1d:59:27:a2:42:04:2e:
de:ab:c7:9a:98:77:1d:e5:c7:ca:4c:20:fd:64:bb:63:c7:b5:
ab:fd:cf:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:41:55 2025 by rpki-client