Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/2/3130332e3234382e3232382e302f32332d3234203d3e20393833.roa
File: 3130332e3234382e3232382e302f32332d3234203d3e20393833.roa (raw, json)
Hash identifier: DmVse/GrWz3FEaNiONznIWK3HWDTTI8NkxJkAE0BH2A=
Subject key identifier: F4:BE:48:EA:5A:BF:A3:5D:C3:0F:EB:B3:07:6F:28:E5:76:E7:B6:46
Certificate issuer: /CN=A91130000000/serialNumber=B70B10266A28A9F2E9DF2F7EFD4399B69E488B34
Certificate serial: 45CB9F87DDF1F7DC2C122F096C04FE8296920EE7
Authority key identifier: B7:0B:10:26:6A:28:A9:F2:E9:DF:2F:7E:FD:43:99:B6:9E:48:8B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/2/3130332e3234382e3232382e302f32332d3234203d3e20393833.roa
Signing time: Mon 11 Mar 2024 10:17:59 +0000
ROA not before: Mon 11 Mar 2024 10:12:59 +0000
ROA not after: Mon 10 Mar 2025 10:17:59 +0000
asID: 983
IP address blocks: 103.248.228.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.crl
rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 01 Jun 2024 18:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:cb:9f:87:dd:f1:f7:dc:2c:12:2f:09:6c:04:fe:82:96:92:0e:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91130000000/serialNumber=B70B10266A28A9F2E9DF2F7EFD4399B69E488B34
Validity
Not Before: Mar 11 10:12:59 2024 GMT
Not After : Mar 10 10:17:59 2025 GMT
Subject: CN=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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6a:94:f7:ab:63:21:b5:c4:82:9e:42:6b:93:
95:00:ce:8a:9a:f8:27:a1:91:a4:52:21:45:0a:24:
5b:68:f3:a3:a4:4a:e1:01:e4:ca:46:ce:d6:ba:75:
d0:41:9c:77:85:02:b5:94:bd:6d:71:84:6b:85:55:
ae:d3:b2:a1:3a:95:ff:a7:ec:71:09:80:49:70:05:
f6:1f:00:db:4d:6a:09:30:60:b1:a0:e8:3a:c6:86:
b2:32:b4:7d:35:a7:05:00:4e:eb:e9:84:05:8a:1d:
9d:09:5b:66:a9:3c:c5:a1:04:28:69:6a:bf:50:ad:
92:93:c7:f6:55:c7:33:1b:20:e5:1d:25:3a:ce:81:
17:5e:36:ee:63:9f:ad:6a:cf:dc:30:5f:89:30:fa:
f6:ad:de:3c:29:83:97:3e:e7:76:3e:81:17:72:fd:
b0:39:e1:6a:35:5d:c8:63:d9:93:72:06:2f:50:6b:
78:f5:35:df:5c:c2:a5:50:1c:69:56:38:49:61:7d:
7a:3c:39:0a:ab:e0:f6:8e:6c:2b:9d:be:a1:d1:d2:
05:39:a2:d3:0e:98:0d:49:ec:c3:91:e7:47:d5:87:
1a:f4:2e:8d:05:19:7c:08:4a:29:02:27:db:82:ba:
42:aa:6f:47:6f:ea:4a:cc:c6:fb:15:96:0f:0c:ac:
46:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:BE:48:EA:5A:BF:A3:5D:C3:0F:EB:B3:07:6F:28:E5:76:E7:B6:46
X509v3 Authority Key Identifier:
keyid:B7:0B:10:26:6A:28:A9:F2:E9:DF:2F:7E:FD:43:99:B6:9E:48:8B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/2/3130332e3234382e3232382e302f32332d3234203d3e20393833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.248.228.0/23
Signature Algorithm: sha256WithRSAEncryption
38:ed:14:3f:23:e2:3b:a7:30:bc:7d:2f:d7:68:da:a3:e6:24:
77:a8:ed:53:c1:77:a4:90:c2:b6:8b:e8:d3:1f:c0:da:30:8b:
04:3b:39:70:04:29:38:6a:8b:54:2e:c0:dc:b8:9a:9d:69:a1:
c4:38:22:37:b8:c3:15:5c:5f:e2:0a:9a:d2:ee:22:a8:fe:09:
99:9f:30:e0:f5:bb:78:57:bf:8a:ea:27:3a:13:4e:73:c6:8e:
02:11:a2:44:99:7b:57:fe:42:e0:78:a9:b2:f6:b0:15:9a:87:
98:39:8f:f8:f7:33:ba:29:56:bd:d4:bb:84:fd:23:87:80:4a:
2f:6e:39:b0:d8:e0:ad:b2:65:88:41:eb:13:0a:53:04:0c:db:
32:75:1f:17:ea:fb:66:de:b6:7a:49:8b:ce:4f:c3:18:bc:d9:
c2:26:12:9f:ee:45:c7:ab:2e:f1:53:f2:5e:27:ec:32:05:6f:
e5:58:31:13:6d:ad:ef:17:db:8f:70:4c:65:ad:a3:77:33:8c:
e6:93:eb:d8:4f:92:ff:89:a9:3b:b3:e7:b0:0c:cc:b9:ed:39:
e3:ed:17:b6:f5:d9:13:35:17:2d:4d:23:7b:3d:b3:38:c4:5b:
29:28:c2:ec:23:42:b9:fb:e8:b7:25:42:71:23:43:b1:97:c1:
69:34:f7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 20:33:55 2024 by rpki-client on console-ams.rpki-client.org