Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/9E9714FA43B011EDB92C3446C4F9AE02.roa
File: 9E9714FA43B011EDB92C3446C4F9AE02.roa (raw, json)
Hash identifier: gKYdPdhicAzu4dBnwL0d4eFhyl/Z6Z/aISp+30ZwAJk=
Subject key identifier: 8B:30:94:D5:AD:0D:30:F4:15:50:75:E5:0B:27:DA:4C:56:A5:A6:82
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 07AA
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/9E9714FA43B011EDB92C3446C4F9AE02.roa
Signing time: Tue 04 Oct 2022 06:48:57 +0000
ROA not before: Tue 04 Oct 2022 06:48:57 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 139.190.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1962 (0x7aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Oct 4 06:48:57 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=633bd759-5a90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:92:b2:80:2c:ae:b5:c9:73:c8:84:23:42:46:
eb:10:2c:f4:fb:e3:b5:0a:58:de:6b:f6:72:e6:17:
72:f7:10:14:9d:24:22:cb:f2:29:f1:f0:e8:77:a3:
96:05:54:9f:52:e7:72:3c:f1:4f:5f:29:34:ad:7c:
d7:26:22:bd:45:c2:90:1f:c0:c9:15:4a:57:a1:d7:
49:b7:d5:b2:6f:99:6a:31:ce:69:b2:f7:46:1e:2b:
8e:e1:d5:b5:98:53:11:1c:49:45:56:c0:a9:46:1d:
e1:d6:2e:f4:be:65:02:73:f1:f8:d5:6b:31:f3:28:
b8:5d:b1:bc:f5:30:29:76:04:66:41:82:8d:61:0c:
6b:97:34:55:ea:c0:6f:06:86:dc:9a:d0:84:74:1c:
61:26:49:33:29:79:ca:26:1c:89:e8:a7:de:e3:27:
10:14:ab:01:eb:6f:7a:6c:47:19:61:ff:61:6b:a9:
5d:1c:b9:66:ea:fe:21:94:6a:09:21:c6:4c:0e:d1:
81:94:7d:11:84:5a:4b:ec:e3:e4:ba:7f:09:ef:41:
0d:d9:c1:8b:22:7b:73:a2:0c:2f:14:ad:2b:a8:f9:
8b:b5:bb:03:05:4a:31:2f:aa:9e:1b:69:77:b3:ae:
56:04:5f:05:b0:ae:a0:96:d4:bf:ec:73:4f:80:f3:
f0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:30:94:D5:AD:0D:30:F4:15:50:75:E5:0B:27:DA:4C:56:A5:A6:82
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/9E9714FA43B011EDB92C3446C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.0.0/19
Signature Algorithm: sha256WithRSAEncryption
09:ee:cd:57:8e:14:f6:41:b4:af:75:70:d8:c4:64:3b:10:9e:
78:52:71:4f:e2:b2:31:18:a8:63:3a:af:08:2d:48:cb:9e:92:
e8:27:ed:6d:d9:89:25:61:17:ef:01:ad:7c:8d:9f:f3:4c:af:
65:f2:99:c1:86:d1:be:45:e1:ac:a4:cc:1d:b5:ab:de:fe:ec:
bb:b1:23:33:ae:2e:ce:38:a4:a7:a0:68:9c:7a:d9:da:b7:16:
c3:44:ca:e7:8c:71:c9:92:df:f7:31:5e:37:4b:66:96:68:81:
aa:6f:93:ee:17:ab:ae:bd:9e:0f:0f:f4:8a:a9:16:27:42:a0:
45:6a:80:54:fd:9a:8b:1c:94:7e:c3:1d:11:fc:86:2b:c6:f0:
4d:8b:f3:ec:a7:58:96:2b:39:ae:f1:ed:71:af:9c:16:e0:53:
ac:8f:3c:89:86:5b:46:ab:5c:1e:73:3e:77:0b:d5:8d:d3:fe:
fc:b1:bc:07:fd:71:cf:e6:d0:03:d9:e8:d8:80:f1:a8:e3:0e:
d7:19:99:d4:05:98:1b:54:01:61:dc:8a:25:84:42:8f:36:37:
6d:98:e7:43:7a:aa:3a:b9:ab:20:a1:4f:09:90:f8:70:da:ab:
cc:42:a6:e7:8f:4c:df:c7:40:b0:28:e1:b7:c2:8c:97:3d:79:
15:ff:05:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:37:51 2025 by rpki-client