Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/85A7464CE40811EDB3805122C4F9AE02.roa
File: 85A7464CE40811EDB3805122C4F9AE02.roa (raw, json)
Hash identifier: eaJ8SeeSWkzeaCJ0c+S85+rAyKv6JMH5S5P8ryMa8tI=
Subject key identifier: 64:0C:01:DD:48:62:11:09:A6:1D:3D:66:3A:C0:80:31:A7:E0:99:C1
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0917
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/85A7464CE40811EDB3805122C4F9AE02.roa
Signing time: Tue 26 Sep 2023 05:02:35 +0000
ROA not before: Tue 26 Sep 2023 05:02:35 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 139.190.36.0/22 maxlen: 24
139.190.40.0/22 maxlen: 24
139.190.52.0/22 maxlen: 24
139.190.100.0/22 maxlen: 24
139.190.104.0/22 maxlen: 22
139.190.108.0/22 maxlen: 24
139.190.120.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2327 (0x917)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Validity
Not Before: Sep 26 05:02:35 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=651265eb-2593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:07:ca:e6:bb:9a:f1:0f:36:37:49:c8:54:48:
5c:c7:39:aa:a1:98:aa:7e:14:15:48:f2:45:6e:c6:
bc:14:42:de:db:e7:3b:09:10:5f:87:85:bf:11:04:
12:97:8e:b2:94:ef:f3:bc:06:8b:8c:6a:f4:4b:9c:
88:67:1b:95:1b:85:fd:d2:09:96:b9:e0:a1:be:36:
28:72:02:40:7f:76:dc:2c:6c:1c:f0:1f:74:89:c6:
f2:55:1d:81:78:c9:3c:ff:ca:12:5b:33:ce:e7:65:
f4:6f:cb:85:20:42:ae:ba:f6:09:5d:f5:c2:90:c2:
e5:a9:31:9f:35:d3:06:2c:7e:d5:33:d0:80:2d:56:
8e:5c:6a:c8:7c:df:7d:45:3a:ea:31:fd:91:3f:71:
31:02:91:81:77:7e:77:92:f6:e1:dd:47:dd:46:72:
3e:37:00:90:c9:f8:d7:33:59:11:4c:77:09:05:f3:
91:64:b7:a0:bd:bc:c2:94:9d:c6:9a:8d:bf:87:7b:
2f:ce:30:1a:16:54:8f:96:dd:65:33:f0:ad:5d:2e:
6d:9d:80:b9:8b:6a:8b:67:78:fd:b5:7e:bc:1d:4e:
1a:90:67:34:e8:43:8a:2e:ea:f8:a3:37:cd:0d:14:
73:bf:d7:f1:07:d3:f2:7b:99:e1:aa:3f:ac:72:48:
d6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0C:01:DD:48:62:11:09:A6:1D:3D:66:3A:C0:80:31:A7:E0:99:C1
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/85A7464CE40811EDB3805122C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.36.0-139.190.43.255
139.190.52.0/22
139.190.100.0-139.190.111.255
139.190.120.0/22
Signature Algorithm: sha256WithRSAEncryption
60:0f:01:00:00:e0:41:7a:88:7d:03:a1:d3:e6:91:8e:84:0f:
42:84:b6:dd:9d:1d:88:1e:07:b0:ea:fd:0a:e9:60:d9:2a:6b:
48:d8:7c:2b:a4:a5:4c:ae:81:e8:3e:8f:cb:c6:1c:1d:a8:a6:
a6:37:33:bc:01:e7:00:99:be:be:9f:b1:33:4a:34:01:81:d6:
06:4f:00:c9:5c:9e:f8:9f:d8:3f:41:05:43:99:f1:0e:e7:f5:
77:c9:8f:a5:68:70:60:7b:63:a5:3c:df:cd:69:a0:51:1c:24:
c2:34:2f:19:12:e2:29:0d:8a:39:5d:b6:3d:56:d4:2d:16:c3:
b2:57:80:5d:82:db:b8:b7:81:42:69:78:7c:c4:43:56:ca:91:
71:d8:bc:b3:f2:e2:7d:40:7d:fb:90:91:98:95:87:e1:63:92:
d6:c2:ce:d8:38:eb:a2:5b:72:b9:1e:05:47:81:67:88:b8:b0:
32:c9:f7:19:3a:bb:cc:94:e5:1a:d1:e7:4a:e6:12:fc:8a:63:
77:b5:f6:ee:26:6d:f4:54:7a:10:30:e0:fb:c0:d8:a4:d5:b2:
bc:93:07:9a:1c:1c:a3:3f:2b:5f:1f:0f:1c:0b:ba:87:b3:27:
91:41:be:28:ab:a7:57:60:b3:77:cb:f6:e6:3d:5a:ba:7c:c3:
3f:22:60:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:38 2023 by rpki-client on console.sobornost.net