Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/05D5BB4400A611F09BC9E77CC4F9AE02.roa
File: 05D5BB4400A611F09BC9E77CC4F9AE02.roa (raw, json)
Hash identifier: 2A1ciqKh1GPk9tFJmWlpR3P0HV5dHfGTry8xkXpUe7I=
Subject key identifier: CD:84:A4:F6:28:2B:73:D8:0E:29:08:A6:F1:FC:30:C4:F8:B9:9D:10
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0FC8
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/05D5BB4400A611F09BC9E77CC4F9AE02.roa
Signing time: Tue 18 Mar 2025 10:23:39 +0000
ROA not before: Tue 18 Mar 2025 10:23:39 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 139.190.8.0/24 maxlen: 24
139.190.10.0/24 maxlen: 24
139.190.11.0/24 maxlen: 24
139.190.12.0/24 maxlen: 24
139.190.13.0/24 maxlen: 24
139.190.14.0/24 maxlen: 24
139.190.15.0/24 maxlen: 24
139.190.17.0/24 maxlen: 24
139.190.19.0/24 maxlen: 24
139.190.20.0/24 maxlen: 24
139.190.21.0/24 maxlen: 24
139.190.22.0/24 maxlen: 24
139.190.23.0/24 maxlen: 24
139.190.24.0/22 maxlen: 24
139.190.29.0/24 maxlen: 24
139.190.30.0/24 maxlen: 24
139.190.31.0/24 maxlen: 24
139.190.32.0/24 maxlen: 24
139.190.33.0/24 maxlen: 24
139.190.34.0/24 maxlen: 24
139.190.36.0/22 maxlen: 24
139.190.48.0/24 maxlen: 24
139.190.49.0/24 maxlen: 24
139.190.50.0/24 maxlen: 24
139.190.51.0/24 maxlen: 24
139.190.52.0/24 maxlen: 24
139.190.53.0/24 maxlen: 24
139.190.68.0/24 maxlen: 24
139.190.69.0/24 maxlen: 24
139.190.70.0/24 maxlen: 24
139.190.71.0/24 maxlen: 24
139.190.88.0/21 maxlen: 21
139.190.124.0/22 maxlen: 22
139.190.235.0/24 maxlen: 24
139.190.238.0/24 maxlen: 24
139.190.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Mar 2025 07:52:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4040 (0xfc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Validity
Not Before: Mar 18 10:23:39 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67d949ab-9621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f1:06:6b:cf:12:bb:7c:a5:97:a3:7b:5d:1f:
fc:ad:31:ab:67:4b:f3:8a:2c:4f:8d:a1:fc:3e:71:
2c:7d:5c:56:67:09:73:9a:ec:79:27:f5:57:46:25:
bd:1b:77:eb:3b:27:55:ca:17:c8:83:18:d7:99:c8:
36:59:dc:b5:dc:6f:58:8c:a9:dd:76:09:8c:60:f0:
99:c9:ba:f1:e7:64:d0:17:ab:2c:62:66:07:6c:4e:
2d:79:e3:2e:83:b0:06:59:1d:9e:b9:1d:48:e2:9a:
b8:1f:0e:a1:e2:c6:70:1f:1a:f3:f0:0a:23:22:5c:
1f:03:27:f2:5a:e1:08:3d:a3:e6:ff:2a:c3:33:72:
63:06:0d:f5:05:3a:c7:05:b9:3f:fa:fe:15:d1:55:
25:39:65:03:28:c3:1c:3e:0d:b1:79:24:ce:a8:fe:
a8:78:46:80:71:86:79:a1:42:1f:11:03:39:a3:05:
38:42:d5:96:d6:57:30:a8:c1:92:a9:53:07:6b:2b:
02:db:65:2f:7f:15:e9:28:59:13:8c:31:57:52:91:
fd:42:8d:69:30:08:b6:b9:5a:ea:fb:d9:0e:bf:29:
b1:16:16:d9:bc:7b:85:0d:7e:f1:96:b7:9e:53:b0:
8b:51:ac:14:22:2f:62:0c:51:7c:63:fc:f3:1a:52:
aa:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:84:A4:F6:28:2B:73:D8:0E:29:08:A6:F1:FC:30:C4:F8:B9:9D:10
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/05D5BB4400A611F09BC9E77CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.8.0/24
139.190.10.0-139.190.15.255
139.190.17.0/24
139.190.19.0-139.190.27.255
139.190.29.0-139.190.34.255
139.190.36.0/22
139.190.48.0-139.190.53.255
139.190.68.0/22
139.190.88.0/21
139.190.124.0/22
139.190.235.0/24
139.190.238.0/23
Signature Algorithm: sha256WithRSAEncryption
72:9a:c9:44:f0:6f:99:91:e6:53:55:bd:d7:c1:31:65:be:db:
cc:0d:2e:cf:b3:82:f3:a5:9e:29:ab:a8:8e:82:0d:65:8a:f6:
46:a1:11:d8:61:69:b4:1f:29:20:3d:0c:e7:3c:08:b7:b5:14:
ae:74:b4:a6:bb:fb:61:08:24:5b:e5:64:31:14:23:83:54:40:
c4:3c:df:7f:99:ec:15:ec:f7:9b:a1:42:36:b7:01:3b:4b:03:
10:1b:ae:39:94:ca:08:a8:59:41:ea:87:25:2b:07:77:3b:10:
6e:7a:20:02:f9:f8:66:3b:30:b3:8e:9b:9b:55:9b:e6:62:6f:
f0:b5:40:61:a2:39:6b:1e:fc:66:52:32:28:07:b8:b6:1f:13:
15:24:76:1d:80:65:81:a9:63:12:7f:a2:bd:7b:4e:9b:73:81:
9a:fa:ec:7d:27:e8:a7:8d:65:1f:ee:82:78:43:13:b5:78:ee:
5f:19:f2:97:58:11:db:16:23:b2:e9:98:a2:07:06:49:51:a7:
51:e2:5f:34:bf:0b:2c:ce:40:49:d0:8e:4e:2c:ee:5f:37:08:
1e:6c:79:b6:18:eb:ce:37:10:9e:56:23:61:06:5e:cf:f9:7f:
e8:b6:96:14:89:c7:19:42:93:70:d5:fd:83:44:d0:23:99:c9:
49:63:f1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:26:48 2025 by rpki-client