Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/2/3130332e3234382e3232382e302f32332d3234203d3e203338313336.roa
File: 3130332e3234382e3232382e302f32332d3234203d3e203338313336.roa (raw, json)
Hash identifier: k2+vQ0P80E8+hSMx1exXRxB1C4tEn5OwavtebUwpMfo=
Subject key identifier: 80:CD:17:34:0C:F5:95:2E:89:8B:06:7E:FC:5F:67:D4:CD:DD:CC:FA
Certificate issuer: /CN=A91130000000/serialNumber=B70B10266A28A9F2E9DF2F7EFD4399B69E488B34
Certificate serial: 4654E2F26B896B798C8D9923BD79959DD5D56DF9
Authority key identifier: B7:0B:10:26:6A:28:A9:F2:E9:DF:2F:7E:FD:43:99:B6:9E:48:8B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/2/3130332e3234382e3232382e302f32332d3234203d3e203338313336.roa
Signing time: Mon 11 Mar 2024 10:18:09 +0000
ROA not before: Mon 11 Mar 2024 10:13:09 +0000
ROA not after: Mon 10 Mar 2025 10:18:09 +0000
asID: 38136
IP address blocks: 103.248.228.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.crl
rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 May 2024 18:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:54:e2:f2:6b:89:6b:79:8c:8d:99:23:bd:79:95:9d:d5:d5:6d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91130000000/serialNumber=B70B10266A28A9F2E9DF2F7EFD4399B69E488B34
Validity
Not Before: Mar 11 10:13:09 2024 GMT
Not After : Mar 10 10:18:09 2025 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:97:e2:34:aa:0d:04:26:59:57:21:96:a3:9f:
0d:66:8f:95:a3:11:dc:02:61:d5:4c:19:26:0b:9e:
13:dc:6b:6c:c1:4b:7a:dd:2b:d0:5e:77:ed:95:f2:
ed:83:b2:95:fa:e8:cc:44:09:43:3d:5c:9e:ba:97:
32:a3:3c:b6:d3:1b:5b:5a:17:7c:84:61:32:72:f1:
ed:b7:98:fd:9c:a9:69:f2:84:7b:a6:59:17:22:58:
17:12:eb:11:c0:e7:a3:3f:28:ea:62:58:cd:e6:53:
01:b8:7f:1b:7b:6a:83:20:38:cd:18:26:f3:1f:fa:
1c:ce:31:03:7a:4b:b2:9c:dd:96:b5:51:50:b4:7a:
6d:ce:48:51:e7:f6:3a:fd:04:ab:24:28:0b:2c:a3:
88:f0:ea:7f:90:ad:12:e5:79:9f:bf:03:a5:b2:e5:
d5:c9:ff:b5:33:3d:6e:f7:92:d8:01:6a:75:ce:ae:
a7:19:7c:9c:29:70:b7:bf:ef:eb:24:93:26:41:04:
19:41:29:0d:d4:f9:6f:91:97:2f:37:88:ee:f6:59:
f6:75:21:32:d1:01:c4:ad:eb:44:8a:31:36:71:a1:
16:87:74:bd:ee:41:e9:e1:ff:54:00:99:1a:e5:ee:
44:06:7b:3a:72:ae:c6:f2:77:25:ba:1d:85:25:15:
91:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CD:17:34:0C:F5:95:2E:89:8B:06:7E:FC:5F:67:D4:CD:DD:CC:FA
X509v3 Authority Key Identifier:
keyid:B7:0B:10:26:6A:28:A9:F2:E9:DF:2F:7E:FD:43:99:B6:9E:48:8B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/2/3130332e3234382e3232382e302f32332d3234203d3e203338313336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.248.228.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:c9:9d:b8:41:cc:3f:69:5f:be:2d:74:12:32:e0:9e:1b:24:
20:3b:db:55:48:fc:af:ad:4e:b9:1a:7e:30:78:34:00:94:fb:
cf:5b:8d:54:ee:d3:af:04:88:f9:cd:08:a4:15:ee:e7:ea:b2:
68:cb:02:f5:2c:3a:88:fe:3c:cd:01:f9:2c:ca:cd:09:a5:de:
b1:4d:d0:ff:02:6c:bf:f0:0a:4f:b7:c4:84:4f:0d:98:01:47:
a9:7a:4e:99:f5:11:64:b1:63:7d:2e:88:6f:60:d2:03:e6:47:
0d:49:db:c5:9c:b4:fe:df:57:00:77:99:d3:e0:91:26:85:1d:
e6:19:28:e4:11:2e:0d:dd:fb:d9:81:80:08:1a:ba:d0:c7:1b:
49:5b:13:1e:dd:22:b9:ce:6c:8f:56:85:36:a1:44:3c:f1:47:
5d:9e:03:e7:9f:c8:e5:32:d8:d2:9b:13:fc:c9:c2:22:b0:c0:
68:2c:f2:a1:77:42:f8:9a:4b:ad:6f:a0:45:e4:58:68:3a:0a:
ed:71:de:9c:05:11:50:c5:80:a4:3b:11:bb:81:2c:75:b1:2f:
41:56:bd:c9:52:e3:55:e7:54:4c:94:16:5d:1a:cc:4b:c8:31:
2d:ea:c6:76:86:46:e0:8e:bf:d7:c3:94:b8:94:4f:83:cb:43:
d5:8b:c1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 20:08:40 2024 by rpki-client on console-ams.rpki-client.org