Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/9400D3B2E58411EC90E9A90FC4F9AE02.roa
File: 9400D3B2E58411EC90E9A90FC4F9AE02.roa (raw, json)
Hash identifier: 6BQqUs2+JPXBIv+FJMammjb/3WJAzu7x1utKqogvd5o=
Subject key identifier: 53:89:6D:2B:5F:5A:66:9A:EA:89:44:C6:42:5D:55:B9:68:A2:B9:46
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 06A4
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/9400D3B2E58411EC90E9A90FC4F9AE02.roa
Signing time: Wed 08 Jun 2022 13:03:23 +0000
ROA not before: Wed 08 Jun 2022 13:03:23 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 139.190.96.0/22 maxlen: 24
139.190.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1700 (0x6a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Jun 8 13:03:23 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62a09e1a-b0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ca:2c:c3:05:f7:d5:07:63:0c:bb:b0:a8:6d:
82:9b:85:7e:f3:05:22:d0:d9:3e:e7:a9:ac:59:3a:
e6:c3:76:ea:0a:ca:d8:3f:c1:97:50:76:58:4d:8b:
dc:06:2f:85:38:1f:17:1f:ba:31:45:4b:1d:db:4a:
13:32:44:6a:f1:69:e8:9c:4e:56:5b:2c:81:8f:07:
a7:c6:ec:d5:ff:50:10:93:94:f9:8b:22:e9:d7:02:
9d:1c:33:52:8e:4d:a2:df:c6:97:90:14:7c:04:3e:
36:2e:83:2d:a1:e7:d9:2e:8a:91:2f:54:e3:0d:f4:
9c:ab:da:4a:6f:40:b3:05:2c:82:ca:4b:9b:38:a0:
46:0d:9b:7d:aa:ba:53:af:20:3b:cc:3c:2b:99:64:
50:6e:1e:43:fa:69:d6:1e:d4:7e:d9:97:27:03:71:
8b:40:2d:a0:1e:30:ac:d8:43:38:e3:21:1c:6a:8a:
f3:62:f8:00:30:b7:51:5e:70:38:6d:f2:c8:c2:25:
f0:1d:30:35:7b:84:b5:7a:ff:29:b7:71:c3:cc:8c:
4c:f4:53:96:00:67:fa:9a:e0:54:ad:44:82:56:0b:
5e:6a:85:31:e5:19:7c:30:72:47:3c:c4:20:a8:7c:
f3:75:9a:00:32:3c:62:92:91:a3:29:fc:fe:09:2b:
38:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:89:6D:2B:5F:5A:66:9A:EA:89:44:C6:42:5D:55:B9:68:A2:B9:46
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/9400D3B2E58411EC90E9A90FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.96.0/22
139.190.234.0/24
Signature Algorithm: sha256WithRSAEncryption
71:54:4a:39:b8:09:f1:a3:bb:42:f6:d2:13:5d:d2:ce:df:d1:
37:2d:eb:4a:6e:11:4f:ff:47:e0:0c:63:ee:05:00:2c:af:35:
d8:1a:60:ad:f8:21:d0:1f:3c:0f:b8:da:bf:4d:1f:36:90:50:
1e:97:7d:77:ff:b9:86:44:ce:af:4e:a6:ae:8d:61:54:d8:a3:
72:af:94:e7:60:1d:99:23:51:ff:7f:36:31:0a:65:e7:59:aa:
57:99:46:f2:2b:20:47:60:bd:bf:fc:11:80:80:ad:9e:21:c2:
37:46:c1:3f:c0:e2:af:34:db:4f:3a:fc:21:8d:51:27:6f:66:
93:36:7c:9f:1a:64:4a:15:5e:af:c7:38:57:69:a1:9b:f8:cf:
93:26:b4:17:7e:4a:a3:63:44:68:e3:6d:b7:a7:55:c2:92:ca:
a2:11:6b:e4:6a:f4:31:6f:d2:ac:87:cf:e8:81:64:6f:db:7c:
41:2c:87:8f:a7:63:65:78:6d:48:c1:eb:ef:bc:ce:0f:41:74:
e2:20:1c:61:b7:f0:aa:ad:ac:63:33:a7:00:60:01:2a:3e:c1:
42:f2:6b:fb:77:cd:a9:5b:d8:2d:02:a5:46:23:71:bf:65:31:
3b:43:47:72:1c:e5:42:bd:4a:73:ac:73:19:28:4b:6c:79:6d:
69:68:14:69
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1
Rjg4Mjc2RDMwHhcNMjIwNjA4MTMwMzIzWhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MmEwOWUxYS1iMGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtMoswwX31QdjDLuwqG2Cm4V+8wUi0Nk+56msWTrmw3bqCsrYP8GXUHZYTYvc
Bi+FOB8XH7oxRUsd20oTMkRq8WnonE5WWyyBjwenxuzV/1AQk5T5iyLp1wKdHDNS
jk2i38aXkBR8BD42LoMtoefZLoqRL1TjDfScq9pKb0CzBSyCykubOKBGDZt9qrpT
ryA7zDwrmWRQbh5D+mnWHtR+2ZcnA3GLQC2gHjCs2EM44yEcaorzYvgAMLdRXnA4
bfLIwiXwHTA1e4S1ev8pt3HDzIxM9FOWAGf6muBUrUSCVgteaoUx5Rl8MHJHPMQg
qHzzdZoAMjxikpGjKfz+CSs4LwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFOJbStf
Wmaa6olExkJdVbloorlGMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk
dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOTQwMEQzQjJF
NTg0MTFFQzkwRTlBOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAKLvmADBACLvuowDQYJKoZIhvcNAQELBQADggEBAHFUSjm4
CfGju0L20hNd0s7f0Tct60puEU//R+AMY+4FACyvNdgaYK34IdAfPA+42r9NHzaQ
UB6XfXf/uYZEzq9Opq6NYVTYo3KvlOdgHZkjUf9/NjEKZedZqleZRvIrIEdgvb/8
EYCArZ4hwjdGwT/A4q802086/CGNUSdvZpM2fJ8aZEoVXq/HOFdpoZv4z5MmtBd+
SqNjRGjjbbenVcKSyqIRa+Rq9DFv0qyHz+iBZG/bfEEsh4+nY2V4bUjB6++8zg9B
dOIgHGG38KqtrGMzpwBgASo+wULya/t3zalb2C0CpUYjcb9lMTtDR3Ic5UK9SnOs
cxkoS2x5bWloFGk=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:47:05 2025 by rpki-client