Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/0/3130332e3137322e34302e302f32332d3234203d3e203338313336.roa
File: 3130332e3137322e34302e302f32332d3234203d3e203338313336.roa (raw, json)
Hash identifier: FUVKsMCJl3ocOz6Dz/uCI4VUDqInotrLV40crKncjh4=
Subject key identifier: BF:B3:74:6D:E3:67:70:15:BD:1E:83:85:4D:4A:E4:DF:EC:B3:22:23
Certificate issuer: /CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Certificate serial: 79F4F8D25FD5A840639F4F70289070FFDB7EC9C6
Authority key identifier: 90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/0/3130332e3137322e34302e302f32332d3234203d3e203338313336.roa
Signing time: Wed 19 Jul 2023 14:00:00 +0000
ROA not before: Wed 19 Jul 2023 13:55:00 +0000
ROA not after: Wed 17 Jul 2024 14:00:00 +0000
asID: 38136
IP address blocks: 103.172.40.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.crl
rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 11:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:f4:f8:d2:5f:d5:a8:40:63:9f:4f:70:28:90:70:ff:db:7e:c9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Validity
Not Before: Jul 19 13:55:00 2023 GMT
Not After : Jul 17 14:00:00 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:3e:93:4f:44:d1:68:3d:19:dc:2a:1e:07:1d:
bc:f0:15:66:c8:b8:87:db:d3:f6:83:ef:00:5a:77:
06:2e:21:65:f0:7b:ea:13:95:39:87:89:3d:4c:9e:
f8:f2:79:1b:38:a1:47:fc:a5:21:0a:85:59:71:4e:
0e:f0:f1:c1:37:9f:54:c5:a8:6e:60:a5:0d:06:be:
74:2c:2b:30:0d:bf:4e:0f:f7:7f:8e:e3:37:75:ea:
b3:85:1c:95:98:0c:b7:f7:bf:0e:b3:42:7c:54:6f:
34:5b:82:3e:ee:8e:fd:c9:f0:8d:19:c6:bf:a2:0c:
bd:1e:0a:6c:d0:08:0e:d8:2e:fd:54:fa:38:41:a1:
f9:d5:1d:e2:8d:aa:2a:3a:39:c4:31:d7:d6:15:c1:
64:8a:35:e1:bf:60:b9:5f:ae:10:e5:88:33:27:f2:
39:44:65:ca:1c:ef:83:ff:e6:f2:96:37:c5:da:7a:
39:cb:26:1b:a0:7d:96:8e:a6:e3:e4:52:e1:cf:4d:
cb:1b:7e:82:7a:97:74:42:1d:bd:fe:7c:e0:90:34:
6a:b1:d7:12:39:d7:88:a8:3f:d6:8c:ac:e6:93:9b:
c5:07:cf:1e:62:2c:a7:d0:b4:d9:ba:d0:bf:e8:15:
1a:04:fc:2c:f0:d8:0c:03:25:e9:97:99:f3:ae:cf:
1c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B3:74:6D:E3:67:70:15:BD:1E:83:85:4D:4A:E4:DF:EC:B3:22:23
X509v3 Authority Key Identifier:
keyid:90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/0/3130332e3137322e34302e302f32332d3234203d3e203338313336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.40.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:90:b1:ea:bc:b4:8b:f5:30:dc:ca:cc:6e:5b:61:4a:26:68:
70:bf:72:60:c6:e8:4b:8e:9b:3f:de:bb:17:5a:65:23:45:d4:
dd:0d:c6:9b:0d:07:fe:b3:2a:79:d9:0d:b2:b8:fa:48:c7:7c:
bd:18:ca:26:da:3a:40:00:b4:cf:d4:65:35:ae:03:50:b5:69:
f3:52:b1:07:11:7a:a3:77:12:d1:42:b1:2d:6b:70:e5:25:fe:
68:c0:e5:54:17:ac:16:1a:c0:51:d6:3b:ac:c6:01:ea:50:95:
69:2d:ad:04:4f:85:4f:70:87:83:1a:74:42:68:aa:42:02:b9:
31:4f:8e:99:65:e9:d9:6b:62:21:d4:45:9c:9b:73:73:48:13:
3e:d1:cf:ee:ec:22:4e:53:21:b7:59:4f:63:04:f7:86:f0:95:
06:12:66:15:d7:8d:9c:5f:08:06:5f:e0:af:eb:4e:6e:e4:e4:
b8:8f:f3:19:34:29:8a:2d:fe:e3:46:6f:3d:65:a6:4c:8a:59:
c2:d4:97:0a:56:9a:63:e3:61:40:08:fb:e9:8c:43:3b:a4:34:
08:7e:e5:b8:a2:6a:fe:fa:3d:93:ed:48:b2:aa:d6:bd:71:6b:
dd:3c:3a:35:a6:50:c3:8c:84:78:56:55:10:f2:34:d3:f5:3a:
7e:ea:d8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 12:05:46 2024 by rpki-client on console-ams.rpki-client.org