Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a353a3a2f34382d3438203d3e203630343932.roa
File: 326130323a356265303a353a3a2f34382d3438203d3e203630343932.roa (raw, json)
Hash identifier: 7c8uzzaFSrk9EtJy1PrHy/Ma8ew18c6rPzsY/tYigq4=
Subject key identifier: 07:4C:5E:7C:75:11:AF:8A:D0:98:0D:7E:C6:31:95:54:F3:20:C3:82
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 3140097A3C53BBB585123F3DEFEBB4236ED68D9A
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a353a3a2f34382d3438203d3e203630343932.roa
Signing time: Thu 17 Aug 2023 10:04:20 +0000
ROA not before: Thu 17 Aug 2023 09:59:20 +0000
ROA not after: Thu 15 Aug 2024 10:04:20 +0000
asID: 60492
IP address blocks: 2a02:5be0:5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:40:09:7a:3c:53:bb:b5:85:12:3f:3d:ef:eb:b4:23:6e:d6:8d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Aug 17 09:59:20 2023 GMT
Not After : Aug 15 10:04:20 2024 GMT
Subject: CN=074C5E7C7511AF8AD0980D7EC6319554F320C382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:85:a0:13:7b:ee:66:56:1c:6c:53:68:9b:8f:
85:a8:cd:1b:97:bf:91:2b:b7:4a:3d:a7:f5:02:92:
fa:01:e6:6b:58:83:df:ff:0e:53:72:b3:b1:4e:63:
15:cc:29:25:8f:e8:5a:64:61:70:bb:59:65:17:6d:
81:7c:cb:33:0a:db:07:57:c7:9d:85:a8:62:df:0b:
9a:25:5c:98:30:2e:95:f8:27:e6:36:1b:24:fe:cd:
3f:46:c8:aa:8f:16:b9:de:17:40:ec:0d:80:99:33:
7d:10:f6:41:3e:e4:3d:5f:ae:b8:f1:58:d0:b8:f2:
a1:3e:3e:81:47:f0:fa:d6:77:c5:43:b2:34:34:49:
98:b1:7f:c7:0b:f8:3b:8a:fa:61:1f:1e:77:d9:a2:
42:55:ab:d5:fd:26:32:9d:73:5c:ba:e9:7e:5b:79:
15:59:e8:df:85:ee:c5:1f:77:74:ac:7c:40:f5:90:
64:de:38:6c:1b:b2:85:4c:b6:c6:5e:97:01:7b:08:
e4:a9:a6:da:04:78:e6:92:0e:f2:8f:19:06:f4:c6:
e0:f0:4d:1a:3f:03:5a:97:af:71:c1:4e:91:70:b7:
df:32:a5:f0:8c:31:fd:8b:cf:00:19:f4:1d:c0:84:
b2:0d:cb:ee:a7:5f:2c:c4:75:d8:62:fa:ff:31:0b:
c3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4C:5E:7C:75:11:AF:8A:D0:98:0D:7E:C6:31:95:54:F3:20:C3:82
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a353a3a2f34382d3438203d3e203630343932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:5::/48
Signature Algorithm: sha256WithRSAEncryption
62:a5:c5:70:68:c8:37:f2:ac:c5:42:a1:bb:b8:b6:13:b6:08:
50:10:6b:b4:4d:fa:b2:98:02:b4:80:fa:86:61:1a:70:fe:3d:
18:6f:00:8a:02:08:96:53:67:bd:b4:67:07:53:62:9a:ba:08:
df:e8:07:b0:fa:b5:b2:8a:64:42:78:ab:42:10:a9:fe:c6:b2:
04:ab:c8:41:6e:62:c6:bf:2d:82:25:85:db:3c:80:b2:a9:4e:
80:13:bc:ac:93:11:34:44:e0:97:f7:d0:2b:76:54:13:f2:cf:
0b:57:75:ea:49:fe:2f:cc:6b:2f:58:9a:89:28:1b:18:21:dc:
9f:b8:91:12:97:a7:d8:df:ef:db:39:2b:db:1e:f1:04:a0:18:
88:af:6d:6c:ab:ab:be:60:f5:58:f9:90:34:4d:5f:12:e4:dc:
0f:03:64:71:96:67:e3:ee:65:97:64:8a:89:c6:ed:7f:ae:3b:
17:d4:c5:64:24:d4:e0:a4:a0:f0:e1:50:d5:d6:31:41:bc:5d:
4d:f9:41:77:a7:d3:11:c7:53:11:64:9a:ab:f9:58:b5:67:53:
1a:ed:72:f5:76:dc:f6:1b:0e:91:af:7e:3d:bf:c8:60:a6:e5:
3c:42:bb:c0:ba:7f:ae:2f:a8:3b:31:7a:ce:5c:da:73:c1:09:
24:4a:13:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 05:17:16 2024 by rpki-client on console-fra.rpki-client.org