Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/0/3130332e3137322e34302e302f32332d3234203d3e203338313336.roa
File: 3130332e3137322e34302e302f32332d3234203d3e203338313336.roa (raw, json)
Hash identifier: 4pKjx79c+o+OFXc93FCc5KLeNfHmlD87mPjkkC5sTPQ=
Subject key identifier: F4:1B:A6:91:5E:C7:A1:E2:21:EC:F6:DB:11:D7:92:02:79:1E:69:79
Certificate issuer: /CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Certificate serial: 040DBEB3B501643679D960528345E379BD8B02F7
Authority key identifier: 90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/0/3130332e3137322e34302e302f32332d3234203d3e203338313336.roa
Signing time: Tue 18 Jun 2024 16:25:10 +0000
ROA not before: Tue 18 Jun 2024 16:20:10 +0000
ROA not after: Tue 17 Jun 2025 16:25:10 +0000
asID: 38136
IP address blocks: 103.172.40.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:0d:be:b3:b5:01:64:36:79:d9:60:52:83:45:e3:79:bd:8b:02:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Validity
Not Before: Jun 18 16:20:10 2024 GMT
Not After : Jun 17 16:25:10 2025 GMT
Subject: CN=F41BA6915EC7A1E221ECF6DB11D79202791E6979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:9b:41:e3:94:ea:0a:27:da:b4:6f:4b:4f:
d2:cd:36:88:a6:9b:64:c1:ac:04:6f:be:87:4c:f2:
82:86:18:70:17:13:80:1e:66:74:41:27:bb:3d:66:
83:b4:07:9f:4b:4d:50:3b:d6:da:fb:cd:92:ec:b1:
6e:35:34:b9:9e:83:75:10:95:1c:54:22:e8:18:bb:
18:fc:44:c0:32:38:61:17:f1:4e:5a:1c:ba:71:f5:
63:ca:9d:45:9a:65:1a:55:80:3e:41:f6:9b:6c:26:
f4:ae:2b:01:08:0f:8d:8e:c7:93:92:b9:48:49:ab:
ae:bf:9f:ff:82:5b:17:5f:3f:7b:a1:a7:03:81:d8:
3d:d9:87:31:40:9c:07:bd:16:72:c0:2e:d9:a1:d2:
02:5a:13:c4:87:15:02:dd:7a:d0:51:08:4f:8d:18:
7c:f3:eb:8b:31:f9:e7:5b:04:4c:7b:85:69:98:59:
5c:bb:c0:05:5d:a5:d6:8a:9f:82:02:e1:21:7b:0b:
69:ff:d6:70:89:66:97:9c:37:33:f4:68:56:f4:24:
d6:19:0c:44:b8:69:06:62:6f:c9:9f:d6:80:9d:85:
6f:c6:6c:c3:2a:4c:2d:52:83:91:cf:42:87:fa:dd:
b5:0e:e2:01:fe:30:8e:65:90:10:64:ce:80:59:4c:
65:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1B:A6:91:5E:C7:A1:E2:21:EC:F6:DB:11:D7:92:02:79:1E:69:79
X509v3 Authority Key Identifier:
keyid:90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/0/3130332e3137322e34302e302f32332d3234203d3e203338313336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.40.0/23
Signature Algorithm: sha256WithRSAEncryption
96:37:fe:d7:35:15:4b:15:3f:15:fb:b0:c8:d1:99:3d:85:a6:
8c:ec:b3:f0:26:a1:e9:29:2b:3a:50:73:5a:41:0c:58:aa:56:
9b:87:97:da:d5:cf:c0:fd:76:70:bd:99:db:3e:df:ba:6e:73:
5a:ec:f2:80:ce:30:24:47:27:27:98:e7:5f:12:ca:fa:f4:fe:
43:e1:70:db:11:28:60:a1:5e:d0:45:fb:db:47:ba:34:eb:3c:
b6:6c:1a:b6:d1:9d:f1:e3:8d:57:02:4f:08:f9:87:f8:50:af:
9e:49:02:8d:d9:26:ee:19:07:94:eb:12:bd:4f:df:f4:7e:b9:
38:88:52:46:1e:3d:d4:1f:a4:52:47:86:5e:98:20:e9:da:40:
9f:f8:0d:31:d2:64:b4:da:74:35:90:8e:e7:57:6b:0d:91:5f:
44:d6:de:86:ba:5f:d7:a0:d1:78:79:67:1e:ab:94:9e:8d:4c:
62:96:d3:7d:3d:c4:f8:66:62:34:d2:4b:d8:07:c3:5a:22:d4:
8a:39:0e:ab:b7:50:61:a5:33:d3:c0:29:b8:49:f2:de:44:70:
0d:db:92:f6:f8:98:a7:a2:12:b2:25:98:78:0d:1d:c2:d1:c6:
9d:e2:0b:9d:ab:d7:34:a9:0c:d7:bf:4b:cb:91:6d:f7:36:73:
5e:92:1f:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 15:54:35 2024 by rpki-client on console-fra.rpki-client.org