Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/FB18FF8C100511EE9849087AC4F9AE02.roa
File: FB18FF8C100511EE9849087AC4F9AE02.roa (raw, json)
Hash identifier: Jrknhy+RU/t+DnK11YkqfFXQZy8mrzCu5WbNHXsegJU=
Subject key identifier: D6:73:A1:66:1C:C7:DE:C4:CD:E8:54:EC:30:19:14:DD:58:6A:06:C0
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0AAA
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/FB18FF8C100511EE9849087AC4F9AE02.roa
Signing time: Fri 24 May 2024 22:32:13 +0000
ROA not before: Fri 24 May 2024 22:32:13 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 139.190.60.0/22 maxlen: 22
139.190.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 10:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2730 (0xaaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: May 24 22:32:13 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6651156c-fde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7c:04:fc:65:22:23:60:93:fb:a8:6f:00:f6:
37:ef:15:b4:bc:8e:43:9f:3d:aa:0d:20:c5:6c:70:
b8:e0:b3:f9:78:17:89:15:70:cc:fc:ec:15:3c:e5:
2b:ef:68:8b:55:24:9d:e9:95:d8:7b:66:9d:f5:fd:
86:ed:62:11:92:2d:8f:fa:45:41:c4:da:3a:77:25:
cc:96:0c:10:41:21:47:e6:35:de:4d:90:f6:63:2a:
38:00:d6:f3:8c:4c:b3:6f:65:71:3e:c5:f8:5d:0d:
6b:4b:a1:c9:aa:8f:a3:11:08:a3:6e:aa:1e:fb:c7:
fd:01:f6:88:5f:ac:00:c6:9c:61:36:a1:24:d2:51:
df:38:d9:f7:da:36:5a:2d:13:42:05:34:9c:e2:83:
07:32:ce:0f:27:44:92:14:af:b1:3f:d5:4d:c8:ce:
df:d5:ba:74:ea:f4:b3:92:11:79:93:98:f4:a2:9c:
92:52:a3:8a:21:ec:42:d0:6d:8c:f3:09:48:e0:58:
6d:70:3a:05:45:8a:6e:dc:04:16:41:26:ab:68:78:
e4:b8:6e:c8:df:3e:9b:9b:3e:f2:74:0b:e5:cb:9c:
cf:69:4c:ef:50:c7:1f:25:67:49:d4:4e:65:51:fb:
1b:bb:d6:a7:4f:0d:49:28:85:14:82:56:9d:7d:57:
3d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:73:A1:66:1C:C7:DE:C4:CD:E8:54:EC:30:19:14:DD:58:6A:06:C0
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/FB18FF8C100511EE9849087AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.60.0/22
139.190.234.0/24
Signature Algorithm: sha256WithRSAEncryption
33:56:6b:b6:eb:87:ad:f8:1b:77:db:02:0c:89:f5:14:ad:d8:
e7:8c:50:14:b6:94:32:c1:71:f2:dd:26:4b:25:87:7f:cd:58:
73:78:b4:b1:59:1b:b5:1e:56:43:4e:5c:c6:46:3d:4a:d5:e0:
0c:e7:04:15:4b:a5:46:9b:77:27:f5:5c:43:d4:86:1d:b9:b6:
11:8f:95:86:a7:a9:43:71:e5:97:8c:d1:ec:1d:73:d7:67:37:
a4:81:9d:25:19:71:93:7c:c5:ba:af:0c:2b:3a:4d:52:39:4a:
91:fa:3d:23:ef:bb:e6:f0:9b:e2:d9:cc:a9:45:7b:a0:b1:80:
2a:93:1c:87:b1:06:4b:8f:f1:3a:8e:8b:9d:7b:7e:5c:75:b8:
ac:50:94:54:4e:e5:bd:75:35:6d:1f:27:4a:91:1e:c3:dd:af:
4c:d9:44:53:28:35:1e:e2:2e:c2:c5:16:9c:1b:45:f7:8e:ef:
5d:dc:e4:e1:5b:c9:08:06:73:2b:57:b4:cc:db:87:b1:9f:05:
68:56:08:0b:c6:0f:31:55:15:77:54:42:04:36:91:d9:8f:f1:
0c:35:76:69:9a:37:a1:d2:61:f8:21:ae:14:fd:40:e1:07:9f:
0d:71:59:66:76:92:3e:18:18:28:4a:ab:e1:67:d9:7d:bb:f1:
92:f6:86:79
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1
Rjg4Mjc2RDMwHhcNMjQwNTI0MjIzMjEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjUxMTU2Yy1mZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAs3wE/GUiI2CT+6hvAPY37xW0vI5Dnz2qDSDFbHC44LP5eBeJFXDM/OwVPOUr
72iLVSSd6ZXYe2ad9f2G7WIRki2P+kVBxNo6dyXMlgwQQSFH5jXeTZD2Yyo4ANbz
jEyzb2VxPsX4XQ1rS6HJqo+jEQijbqoe+8f9AfaIX6wAxpxhNqEk0lHfONn32jZa
LRNCBTSc4oMHMs4PJ0SSFK+xP9VNyM7f1bp06vSzkhF5k5j0opySUqOKIexC0G2M
8wlI4FhtcDoFRYpu3AQWQSaraHjkuG7I3z6bmz7ydAvly5zPaUzvUMcfJWdJ1E5l
Ufsbu9anTw1JKIUUgladfVc9dQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNZzoWYc
x97EzehU7DAZFN1YagbAMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk
dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRkIxOEZGOEMx
MDA1MTFFRTk4NDkwODdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAKLvjwDBACLvuowDQYJKoZIhvcNAQELBQADggEBADNWa7br
h634G3fbAgyJ9RSt2OeMUBS2lDLBcfLdJkslh3/NWHN4tLFZG7UeVkNOXMZGPUrV
4AznBBVLpUabdyf1XEPUhh25thGPlYanqUNx5ZeM0ewdc9dnN6SBnSUZcZN8xbqv
DCs6TVI5SpH6PSPvu+bwm+LZzKlFe6CxgCqTHIexBkuP8TqOi517flx1uKxQlFRO
5b11NW0fJ0qRHsPdr0zZRFMoNR7iLsLFFpwbRfeO713c5OFbyQgGcytXtMzbh7Gf
BWhWCAvGDzFVFXdUQgQ2kdmP8Qw1dmmaN6HSYfghrhT9QOEHnw1xWWZ2kj4YGChK
q+Fn2X278ZL2hnk=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:47:14 2025 by rpki-client