Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a333a3a2f34382d3438203d3e203339353838.roa
File: 326130323a356265303a333a3a2f34382d3438203d3e203339353838.roa (raw, json)
Hash identifier: d2UIn7JgjJV7hP0rCta1O+j1GCnKGV69Qrmk9UtjvXc=
Subject key identifier: B3:49:EF:F3:78:23:58:DE:EF:38:D0:66:08:52:8F:ED:FF:AD:4D:B0
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 7D39DAC952699422FAE36E36B150F70145435D21
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a333a3a2f34382d3438203d3e203339353838.roa
Signing time: Fri 01 Sep 2023 11:14:33 +0000
ROA not before: Fri 01 Sep 2023 11:09:33 +0000
ROA not after: Fri 30 Aug 2024 11:14:33 +0000
asID: 39588
IP address blocks: 2a02:5be0:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:39:da:c9:52:69:94:22:fa:e3:6e:36:b1:50:f7:01:45:43:5d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Sep 1 11:09:33 2023 GMT
Not After : Aug 30 11:14:33 2024 GMT
Subject: CN=B349EFF3782358DEEF38D06608528FEDFFAD4DB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:92:51:06:55:f9:5b:7d:aa:1d:c6:af:73:15:
67:5f:eb:41:25:57:18:97:33:09:6a:5a:ea:a4:96:
4b:0d:9a:05:f1:e0:fd:8b:c5:4e:95:45:87:f0:4f:
37:01:76:c2:4e:db:7b:9d:45:93:da:8e:8f:7c:c2:
15:b2:7c:1d:fb:6f:89:6c:7a:2f:3b:05:cf:4e:f0:
78:84:18:a0:3b:4f:e0:7d:07:aa:59:1d:91:6f:ea:
25:6b:ec:6d:59:78:7f:34:c3:94:82:cc:08:c9:de:
fe:f3:e4:62:d8:c7:8a:f5:5a:59:fc:37:1c:58:81:
1c:67:22:ac:9a:1f:6f:89:b6:2a:78:96:69:60:e0:
11:e1:47:53:f5:e4:bc:7d:b6:1e:7d:01:20:b6:0f:
6c:8d:26:80:a7:16:3e:c7:97:fe:87:57:18:0d:a8:
42:54:b3:b1:23:fe:7a:a0:f7:b4:e2:9a:d8:d7:c4:
d5:67:6d:d8:50:57:af:a7:f7:5c:5d:31:94:0a:ff:
d0:ea:6b:3e:d0:94:22:f6:b2:28:1a:32:4e:88:c1:
99:77:6a:82:2d:6c:d9:99:88:81:83:6b:06:61:3f:
5a:0f:6c:30:7a:4c:08:c6:61:5d:b7:29:72:e0:37:
0b:01:ed:6e:df:eb:63:53:d6:49:41:62:01:bc:ab:
2f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:49:EF:F3:78:23:58:DE:EF:38:D0:66:08:52:8F:ED:FF:AD:4D:B0
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a333a3a2f34382d3438203d3e203339353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:3::/48
Signature Algorithm: sha256WithRSAEncryption
78:3b:56:04:15:40:5b:46:9f:a3:5a:19:69:43:b3:00:df:e2:
1d:6c:39:86:d2:29:26:c0:c9:3c:6d:dd:f0:a7:94:3b:c9:78:
fe:da:4c:b5:0b:f0:17:5c:d8:a4:8e:89:19:d1:84:7d:c9:40:
02:75:cf:ea:37:2a:49:c1:ee:e9:c5:76:63:b5:25:a7:b5:3d:
bc:c8:41:14:c7:09:1e:60:54:e3:57:8a:4f:97:f7:9a:1a:5b:
a1:87:77:e4:69:2d:53:49:d1:97:f0:5f:af:75:ef:f5:7a:59:
c5:0a:61:e8:e5:13:93:41:bc:69:53:28:31:ec:50:84:ab:31:
08:df:ba:6d:d2:01:5b:11:38:85:f2:a4:fd:5d:44:dc:9a:eb:
94:24:82:dc:69:72:68:61:33:42:44:61:81:4a:58:4f:57:57:
d5:cc:ec:06:9e:eb:ce:7a:4e:e2:16:09:d8:74:8d:62:c0:0e:
70:23:24:b7:8d:fa:cc:bf:fc:35:a7:5a:88:06:62:1e:50:8d:
91:29:fa:74:ab:02:1f:11:e1:82:83:fa:cb:2e:10:9d:b1:5c:
0c:35:3e:cd:30:5f:b0:ac:f3:0c:79:96:df:2d:66:72:2a:e7:
8e:e7:5e:ca:34:b5:19:e3:32:5c:3d:62:52:48:86:fe:5d:f8:
5e:e9:b5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 05:17:16 2024 by rpki-client on console-fra.rpki-client.org