Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/0/323430373a636463303a3a2f33322d3438203d3e20393833.roa
File: 323430373a636463303a3a2f33322d3438203d3e20393833.roa (raw, json)
Hash identifier: RWCUO5fal31CMYz/lYbX+KrTL5/mo7XCEzfmHA4TWoU=
Subject key identifier: 95:63:7D:38:BB:96:D4:97:55:95:34:0B:DC:87:7E:81:C6:B2:32:9A
Certificate issuer: /CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Certificate serial: 47612784266D3150AA2B086403B7F52A6843410F
Authority key identifier: 90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/0/323430373a636463303a3a2f33322d3438203d3e20393833.roa
Signing time: Tue 07 May 2024 11:00:00 +0000
ROA not before: Tue 07 May 2024 10:55:00 +0000
ROA not after: Tue 06 May 2025 11:00:00 +0000
asID: 983
IP address blocks: 2407:cdc0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.crl
rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 19:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:61:27:84:26:6d:31:50:aa:2b:08:64:03:b7:f5:2a:68:43:41:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Validity
Not Before: May 7 10:55:00 2024 GMT
Not After : May 6 11:00:00 2025 GMT
Subject: CN=3082010A0282010100C7BA770051B0D9ACA9EBF9403FE63143CC5A2A9378D161D12AFDE0F091034101A67CA8DF15FECAB1F4332EFEDCC0C56BB839083C2ED03ED5D824BC808AB62D0010DE1BBFB6034F35CB1E6080A7946E8A09C7FEC4B6874A3DFD4A2E55D78A0BC47F1C71F97970E817CC19789A64CD802837F633981BDFDDBC10AE3C6C32D86FFC4FB840A4884B06E76A470DD6F08ED299C53BE2B2B2281D4CBAB0B189F66BAD2CBC839C2214EA58FF6DD0E383928E6E16FB0997A9FD7B67345FA841C89275043E896CFA6D557206CD6469A3643B095BD0765DA8F8AA92FA12669B2BE7D2917B04004F8D2684B1984F94778B8EA4447D3FF1394600F8EBD6C87C4A84868C4C41650203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ba:77:00:51:b0:d9:ac:a9:eb:f9:40:3f:e6:
31:43:cc:5a:2a:93:78:d1:61:d1:2a:fd:e0:f0:91:
03:41:01:a6:7c:a8:df:15:fe:ca:b1:f4:33:2e:fe:
dc:c0:c5:6b:b8:39:08:3c:2e:d0:3e:d5:d8:24:bc:
80:8a:b6:2d:00:10:de:1b:bf:b6:03:4f:35:cb:1e:
60:80:a7:94:6e:8a:09:c7:fe:c4:b6:87:4a:3d:fd:
4a:2e:55:d7:8a:0b:c4:7f:1c:71:f9:79:70:e8:17:
cc:19:78:9a:64:cd:80:28:37:f6:33:98:1b:df:dd:
bc:10:ae:3c:6c:32:d8:6f:fc:4f:b8:40:a4:88:4b:
06:e7:6a:47:0d:d6:f0:8e:d2:99:c5:3b:e2:b2:b2:
28:1d:4c:ba:b0:b1:89:f6:6b:ad:2c:bc:83:9c:22:
14:ea:58:ff:6d:d0:e3:83:92:8e:6e:16:fb:09:97:
a9:fd:7b:67:34:5f:a8:41:c8:92:75:04:3e:89:6c:
fa:6d:55:72:06:cd:64:69:a3:64:3b:09:5b:d0:76:
5d:a8:f8:aa:92:fa:12:66:9b:2b:e7:d2:91:7b:04:
00:4f:8d:26:84:b1:98:4f:94:77:8b:8e:a4:44:7d:
3f:f1:39:46:00:f8:eb:d6:c8:7c:4a:84:86:8c:4c:
41:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:63:7D:38:BB:96:D4:97:55:95:34:0B:DC:87:7E:81:C6:B2:32:9A
X509v3 Authority Key Identifier:
keyid:90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/0/323430373a636463303a3a2f33322d3438203d3e20393833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:cdc0::/32
Signature Algorithm: sha256WithRSAEncryption
92:c6:91:1f:ab:f2:3e:de:69:b1:83:94:da:e4:2a:1d:76:1e:
50:32:5f:57:9e:86:a3:b9:7f:68:90:ee:00:10:19:f8:21:e3:
e9:c7:04:3f:4d:b0:dc:9f:f7:f4:b9:0f:03:1c:ed:87:45:d5:
73:28:7d:46:ea:41:7d:17:4f:6e:9f:5c:a8:21:81:25:8a:e6:
84:32:0e:6d:67:c6:3f:ba:77:74:32:99:ef:eb:b5:6e:fb:ba:
b4:99:5c:ca:ea:ba:7b:80:16:76:f3:32:f5:79:6b:e1:e8:98:
42:c8:13:a8:3b:ad:e0:64:0a:57:c8:2d:8e:1e:1d:48:e7:af:
b2:fb:cb:f8:bb:67:e5:ab:45:13:44:bf:6e:04:70:22:ce:8c:
95:21:8e:8f:aa:f4:32:71:75:7f:11:30:80:6b:c8:8a:b0:30:
e9:df:c6:af:2b:a9:c6:37:42:61:a6:fe:8e:e2:13:ae:c7:fb:
e1:5d:bf:bb:f8:e4:73:f8:51:a6:7d:5f:f2:78:c1:db:6e:ea:
5e:91:85:8c:13:4c:6d:ed:4b:36:72:e3:38:5f:e2:dc:4e:9e:
89:58:ce:0a:bf:d9:c6:cd:51:08:72:f0:47:e7:e5:9e:c0:34:
67:f4:0d:e0:bd:f5:00:99:5d:3d:cb:a5:ca:74:df:ad:eb:d9:
70:49:8f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 20:05:19 2024 by rpki-client on console-fra.rpki-client.org