Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/2/323430313a323132303a3a2f33322d3438203d3e203338313336.roa
File: 323430313a323132303a3a2f33322d3438203d3e203338313336.roa (raw, json)
Hash identifier: Y7E6ht6cLpIBLq3ANWiIbsbAcX09RDubrq5mdJSQQE8=
Subject key identifier: 8B:67:75:FE:6E:44:A3:5A:CE:22:0C:95:34:45:FD:F2:40:F3:F3:D5
Certificate issuer: /CN=A91130000000/serialNumber=B70B10266A28A9F2E9DF2F7EFD4399B69E488B34
Certificate serial: 61CCF8C20AEFD13554340C8D50BFDB489E9FCA79
Authority key identifier: B7:0B:10:26:6A:28:A9:F2:E9:DF:2F:7E:FD:43:99:B6:9E:48:8B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/2/323430313a323132303a3a2f33322d3438203d3e203338313336.roa
Signing time: Mon 11 Mar 2024 10:18:36 +0000
ROA not before: Mon 11 Mar 2024 10:13:36 +0000
ROA not after: Mon 10 Mar 2025 10:18:36 +0000
asID: 38136
IP address blocks: 2401:2120::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.crl
rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 May 2024 02:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:cc:f8:c2:0a:ef:d1:35:54:34:0c:8d:50:bf:db:48:9e:9f:ca:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91130000000/serialNumber=B70B10266A28A9F2E9DF2F7EFD4399B69E488B34
Validity
Not Before: Mar 11 10:13:36 2024 GMT
Not After : Mar 10 10:18:36 2025 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:38:b1:ec:da:29:6f:b0:4c:0f:fc:ec:82:5e:
3f:e4:62:ec:b8:dd:98:7d:67:47:05:c5:81:ea:70:
2b:c5:27:64:8a:d2:92:69:20:0f:ab:23:13:f7:4c:
0a:2b:95:24:f1:4a:91:54:ec:d6:0a:8a:d3:aa:2f:
60:7b:0a:f9:49:d9:1f:cf:fc:6a:01:c7:55:5b:19:
c1:7c:d4:65:1d:4e:ef:8d:0d:81:60:b5:e2:c0:be:
e3:cf:9f:af:cd:54:8f:54:6c:1a:40:18:9b:b3:a3:
9f:0b:46:de:41:b8:b4:11:fd:e7:ff:83:e0:70:c6:
cf:65:df:54:e1:35:a2:05:b4:a3:31:6f:45:76:59:
b3:a9:ee:f3:28:2c:7a:78:d5:0a:37:9d:02:95:38:
f8:2c:4a:49:bf:c2:46:a3:86:7b:42:58:c7:71:70:
e4:d3:47:3e:b7:70:cd:77:51:f4:41:39:a4:61:41:
83:84:94:cf:3c:c8:be:ab:bf:8f:6e:3c:20:3e:e4:
c0:3b:67:17:9b:50:52:e8:08:76:70:86:ab:50:5b:
ed:ce:0c:3c:b5:f2:dd:2d:dc:19:2b:e4:d8:3d:80:
46:de:23:9e:d6:8a:bf:17:0d:90:d0:fd:81:d0:fa:
c8:c1:e6:7b:bb:64:2d:06:eb:ae:0d:65:0b:97:21:
e9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:67:75:FE:6E:44:A3:5A:CE:22:0C:95:34:45:FD:F2:40:F3:F3:D5
X509v3 Authority Key Identifier:
keyid:B7:0B:10:26:6A:28:A9:F2:E9:DF:2F:7E:FD:43:99:B6:9E:48:8B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/2/B70B10266A28A9F2E9DF2F7EFD4399B69E488B34.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/twsQJmooqfLp3y9-_UOZtp5IizQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/2/323430313a323132303a3a2f33322d3438203d3e203338313336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2120::/32
Signature Algorithm: sha256WithRSAEncryption
2b:b6:52:4b:b0:b6:ac:0a:18:40:37:7e:87:dd:80:c0:2d:f6:
a0:48:82:7d:3e:8d:4b:39:41:c9:f8:b5:0c:a9:98:a3:f1:da:
9f:5a:4a:7c:48:e5:0b:70:4b:ab:9a:1b:f1:22:8f:da:b1:54:
0b:26:f6:1c:8e:e3:19:62:05:ac:da:99:d5:6c:ba:98:aa:9e:
16:24:33:63:2a:69:df:b8:bd:a4:07:ac:05:82:16:0d:7a:1a:
d5:ec:ec:d8:d8:bf:3c:f4:bf:f4:5e:1d:e0:65:19:25:e9:29:
0e:b8:94:0c:56:46:5b:34:b7:89:18:51:65:d5:b8:35:47:e7:
5f:1d:78:16:d3:89:1b:8e:67:6e:5a:6a:b4:63:cb:6c:f3:13:
38:80:08:2f:48:e0:4a:c1:ba:7a:4a:00:d6:d7:07:96:8f:8f:
dd:af:5d:68:25:ac:0a:b1:5f:c0:df:1c:15:e0:87:90:0b:fe:
70:54:f4:9e:90:fc:c0:6b:08:b3:79:c7:a0:24:ad:8f:1b:24:
86:4c:4b:72:63:5f:57:f0:01:ed:11:c7:a7:a0:35:16:73:41:
72:ff:9e:75:e2:af:b5:00:08:d1:5b:c4:fb:fc:24:00:cf:12:
ff:9f:c9:65:66:34:3e:ba:a0:01:6d:be:aa:3d:7a:8e:a4:37:
2c:96:eb:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:53:23 2024 by rpki-client on console-fra.rpki-client.org