Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a313a3a2f34382d3438203d3e203432343237.roa
File: 326130323a356265303a313a3a2f34382d3438203d3e203432343237.roa (raw, json)
Hash identifier: s4MmQnFWHTIQyTvP1zS8CjwkqXmDYLmyZU62BtqNt7M=
Subject key identifier: 31:DE:0C:38:76:7E:2E:28:E7:80:B4:5A:D4:6B:4A:64:AD:3E:E7:B3
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 3BCB61DBC65CB622CC9A733579EC46D18D838302
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a313a3a2f34382d3438203d3e203432343237.roa
Signing time: Fri 01 Sep 2023 11:14:34 +0000
ROA not before: Fri 01 Sep 2023 11:09:34 +0000
ROA not after: Fri 30 Aug 2024 11:14:34 +0000
asID: 42427
IP address blocks: 2a02:5be0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:cb:61:db:c6:5c:b6:22:cc:9a:73:35:79:ec:46:d1:8d:83:83:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Sep 1 11:09:34 2023 GMT
Not After : Aug 30 11:14:34 2024 GMT
Subject: CN=31DE0C38767E2E28E780B45AD46B4A64AD3EE7B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2f:96:d8:53:fb:0f:aa:16:f6:4e:9e:21:9e:
57:19:f0:5b:ec:11:51:d8:04:2c:bb:dc:11:5e:e0:
6e:f5:8e:fc:00:34:5a:c1:bb:55:ca:59:b4:c5:e7:
a9:f6:a9:ea:ad:e9:e0:38:db:bf:56:f2:2d:c8:f9:
91:7d:b3:26:5c:2d:ca:c0:e3:44:81:0c:69:a3:c5:
84:3c:5f:3d:34:43:bf:a3:c4:22:29:ef:ff:2c:26:
2a:8c:0f:52:5b:1d:18:68:67:61:99:0b:9a:58:7c:
71:4a:5f:7d:72:fc:a5:1d:f2:a2:e0:1b:c9:08:5f:
8f:80:ed:29:62:99:e8:70:ab:4a:3a:92:fb:ef:6d:
c5:b4:8d:c4:06:f7:5d:f3:f9:e0:48:62:d9:66:0c:
4d:23:19:78:c8:5c:e4:ca:a5:fb:0f:7c:96:39:07:
f5:d4:ca:d5:67:47:19:c4:9c:e6:27:07:bb:ab:ab:
c3:2a:f5:5e:eb:53:3c:fd:59:d5:6d:37:bf:23:e5:
f2:8f:15:29:6b:a0:4a:e7:77:4c:46:40:ad:f4:2c:
e3:9e:58:4d:45:54:14:2e:24:38:e0:ba:68:00:92:
3f:c7:67:fb:93:b5:9e:75:4f:9f:b6:8a:c6:51:9c:
c3:19:3e:67:1c:47:22:68:ba:c5:41:6e:34:2a:04:
06:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DE:0C:38:76:7E:2E:28:E7:80:B4:5A:D4:6B:4A:64:AD:3E:E7:B3
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a313a3a2f34382d3438203d3e203432343237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:1::/48
Signature Algorithm: sha256WithRSAEncryption
ad:59:9e:e2:ac:de:92:46:b3:a3:f1:33:87:80:91:00:7e:25:
7e:51:cc:b4:3f:9a:a9:5c:9d:87:ca:a3:4b:69:fc:5e:94:0a:
52:ea:77:3e:b2:02:71:7e:66:49:ad:79:cf:db:4a:d4:99:32:
a3:ee:c5:5a:76:95:59:ba:70:9c:3b:cd:62:5f:1b:c6:1e:8b:
6a:19:14:c8:5b:14:4d:03:1b:e8:41:82:b4:51:f1:73:44:08:
7c:0b:5b:f6:5a:d4:85:11:a6:33:20:14:34:21:e0:4d:1b:cb:
8c:ee:00:1b:fb:9f:b0:98:61:39:ab:4f:6a:d6:21:eb:37:ee:
2e:63:42:3c:ac:f8:15:40:4b:aa:2b:c2:42:2d:75:98:e1:bd:
9d:b2:51:60:c8:99:f3:17:1e:3b:48:25:e9:13:9d:f7:66:bd:
cc:2b:61:50:31:ae:08:b6:2c:c1:8d:65:ef:22:53:7c:7e:f8:
af:b7:de:aa:bc:a8:6b:98:cb:f5:0f:08:b0:01:c5:87:4b:bc:
f0:71:f1:20:96:f8:de:93:01:ac:ee:aa:d7:fd:1e:fd:9f:69:
bd:5c:c0:24:f3:74:d8:9e:6a:fb:e2:e9:7a:5e:b9:6c:fe:6f:
de:9d:a6:05:53:25:86:87:2f:7a:bc:9d:15:19:19:97:ae:a0:
55:53:40:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 05:17:16 2024 by rpki-client on console-fra.rpki-client.org