Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/04A0F75C00A611F09BC9E77CC4F9AE02.roa
File: 04A0F75C00A611F09BC9E77CC4F9AE02.roa (raw, json)
Hash identifier: HU2kCh9uyPaSovSoQKwmhjqpJydXgeu0Fk5lzrSc97U=
Subject key identifier: E9:3A:92:7A:BC:16:9F:AC:1D:21:B0:89:66:CC:5B:08:44:03:50:B8
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0FBE
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/04A0F75C00A611F09BC9E77CC4F9AE02.roa
Signing time: Fri 14 Mar 2025 07:29:09 +0000
ROA not before: Fri 14 Mar 2025 07:29:09 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 396073
IP address blocks: 139.190.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Mar 2025 08:29:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4030 (0xfbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Mar 14 07:29:09 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67d3dac5-f92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:32:1f:67:d0:d8:4e:b1:a2:52:bc:c7:ae:11:
4c:04:2d:45:99:31:62:2c:10:19:42:9d:30:9c:0a:
86:3b:a4:04:c7:db:8b:08:10:65:28:44:0f:68:5a:
ab:18:f6:59:ea:d9:55:44:66:d1:2c:de:6d:b6:88:
e8:46:a8:5c:96:24:4b:04:99:2f:1d:d4:ec:93:23:
d9:5e:51:3a:5c:a2:e4:8d:92:c6:22:47:26:1d:06:
a6:7c:79:ac:28:90:ff:d5:9f:bd:f8:2f:4a:8f:f4:
ab:9f:9d:82:37:9d:23:bd:e7:e5:b4:c4:9f:5a:a2:
45:b6:cc:4f:08:18:a7:3b:47:0f:09:c8:5b:bc:95:
be:6c:f6:9c:55:6d:0f:2c:54:98:2c:f1:de:16:ca:
ae:fd:53:c3:0c:bf:2b:4d:ed:3b:a1:d4:f7:0f:2d:
84:2d:ad:7f:eb:48:8f:41:aa:a2:77:6a:43:0f:52:
02:3f:a9:09:79:d9:af:29:13:9b:91:31:a3:0b:f3:
d8:60:48:de:17:5e:03:6a:e3:19:03:b6:aa:ae:10:
fc:a3:64:01:9a:8d:52:9e:98:bf:17:25:5f:3f:f9:
8b:05:f5:cf:d1:19:f0:75:05:02:76:31:56:11:0d:
2e:7b:d9:16:d4:ec:13:85:8b:49:41:9c:b3:45:78:
54:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3A:92:7A:BC:16:9F:AC:1D:21:B0:89:66:CC:5B:08:44:03:50:B8
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/04A0F75C00A611F09BC9E77CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.54.0/24
Signature Algorithm: sha256WithRSAEncryption
61:0e:d5:9b:e2:a5:f5:42:ae:f1:b2:31:f5:49:e1:04:72:23:
ca:8b:e9:b7:3a:69:69:51:ca:8d:33:9f:7d:57:ec:a0:46:ef:
eb:ee:3b:e9:7a:a0:d4:18:43:a7:6c:4a:5c:df:75:fb:b6:80:
00:3f:90:c4:24:7d:80:85:99:04:f4:2b:96:ee:c2:3f:b7:0d:
ee:e2:2c:7a:f8:36:75:3b:21:34:30:ac:09:ef:92:80:8d:79:
ba:dd:3c:19:ef:81:81:99:5e:c1:49:a8:63:57:d6:c8:ce:fe:
b6:05:8f:0a:60:65:13:c8:80:5a:d5:50:0d:b9:68:5f:39:37:
8d:f1:37:8a:c7:21:e0:d5:73:27:80:e7:e9:e2:a1:94:d4:c8:
0f:60:ed:04:8d:bf:08:07:ea:18:dc:90:2f:d4:0a:d5:97:8d:
b8:b1:ed:ac:fa:09:a4:ce:cc:67:bc:12:b5:fa:0a:fd:07:ec:
ed:9c:44:82:45:c7:c4:48:bc:72:93:a6:98:52:5b:8a:de:e2:
fc:32:c9:7e:4d:d8:e9:c9:d8:bf:6f:9e:36:4d:c7:a6:c4:89:
6b:41:a4:e1:f8:a6:a1:28:6b:3f:66:81:49:ab:2d:b7:2c:57:
21:8f:ac:30:07:a5:c8:57:91:01:82:6a:4d:69:0d:78:00:15:
9d:ca:81:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 24 12:22:12 2025 by rpki-client on console.sobornost.net