Route Origin Authorization
$ rpki-client -vvf rpki.apernet.io/repo/APERNET/0/323630323a666564613a3132613a3a2f3438203d3e203338303038.roa
File: 323630323a666564613a3132613a3a2f3438203d3e203338303038.roa (raw, json)
Hash identifier: HI0f01q3QfU6mzn1fFiV7ahtxhYxHGfLAZYtpox34M0=
Subject key identifier: 7E:72:C8:A9:D4:53:8C:27:C9:06:D8:52:FB:64:1F:D2:73:18:72:2F
Certificate issuer: /CN=2B493543892B31620E0FCE2FCA417069D0647A14
Certificate serial: 0FAEA0E36333CCCB4FCF4E9E31B243F087F40924
Authority key identifier: 2B:49:35:43:89:2B:31:62:0E:0F:CE:2F:CA:41:70:69:D0:64:7A:14
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/0/2B493543892B31620E0FCE2FCA417069D0647A14.cer
Subject info access: rsync://rpki.apernet.io/repo/APERNET/0/323630323a666564613a3132613a3a2f3438203d3e203338303038.roa
Signing time: Wed 13 Jul 2022 12:00:00 +0000
ROA not before: Wed 13 Jul 2022 11:55:00 +0000
ROA not after: Thu 13 Jul 2023 12:00:00 +0000
asID: 38008
IP address blocks: 2602:feda:12a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:ae:a0:e3:63:33:cc:cb:4f:cf:4e:9e:31:b2:43:f0:87:f4:09:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B493543892B31620E0FCE2FCA417069D0647A14
Validity
Not Before: Jul 13 11:55:00 2022 GMT
Not After : Jul 13 12:00:00 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d7:d5:72:e3:f3:d7:f8:31:11:d9:66:90:30:
c3:4a:bf:e8:fb:d6:7f:f2:96:56:c7:a9:24:27:6f:
11:b4:aa:b0:ce:dc:9c:cb:83:13:d2:11:fb:91:35:
ba:d9:d5:5d:84:38:96:6f:7d:39:a2:5b:75:a3:f8:
e6:ab:11:0b:b2:52:a6:3c:db:79:82:d0:33:18:cd:
f6:a5:d8:de:fb:4f:b1:69:9d:f0:d2:fe:08:8c:7f:
8c:69:2c:49:f2:ae:fb:a3:24:57:b5:2f:d5:2a:ec:
d6:83:f1:15:32:f3:a7:9e:0e:99:93:0f:bf:ec:84:
f3:fa:5f:10:51:5d:e7:41:24:38:37:38:90:a2:fb:
3a:75:ae:9f:cc:ed:1b:66:2c:09:99:76:ce:e3:c3:
5f:76:6a:de:09:c5:fc:97:d7:53:83:7e:c5:02:72:
aa:5f:16:1f:e3:61:d1:f6:de:5a:00:46:25:9a:ed:
e9:65:66:ad:5d:81:d4:9d:45:3f:5a:e2:28:21:3f:
bc:e0:02:eb:39:11:cc:62:da:b6:b0:ca:3b:32:fe:
6c:b2:b4:0e:a6:7b:c4:fc:66:e2:9c:e1:2f:95:5f:
d7:17:ae:96:9d:1d:b2:8b:a1:f6:ae:a3:63:8c:85:
e5:f3:13:ed:35:f8:36:61:7d:10:ff:ef:09:22:92:
de:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:72:C8:A9:D4:53:8C:27:C9:06:D8:52:FB:64:1F:D2:73:18:72:2F
X509v3 Authority Key Identifier:
keyid:2B:49:35:43:89:2B:31:62:0E:0F:CE:2F:CA:41:70:69:D0:64:7A:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apernet.io/repo/APERNET/0/2B493543892B31620E0FCE2FCA417069D0647A14.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/0/2B493543892B31620E0FCE2FCA417069D0647A14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.apernet.io/repo/APERNET/0/323630323a666564613a3132613a3a2f3438203d3e203338303038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:feda:12a::/48
Signature Algorithm: sha256WithRSAEncryption
09:64:c8:21:b1:a0:ae:a0:9c:b1:e3:a8:b9:e0:12:31:9a:4d:
2e:6b:05:46:6a:56:4c:9a:06:e6:c9:05:ab:fd:05:98:4b:0a:
c3:95:76:a0:8e:48:09:de:d2:ce:09:d8:43:b3:df:b4:ce:45:
3c:6a:ec:24:0f:8e:a8:54:a2:d7:54:9a:31:94:ec:08:53:6c:
43:86:4f:ba:04:10:6d:31:bb:cd:d1:26:18:a9:62:cf:7c:ee:
8b:3e:5d:75:77:a7:95:98:7c:a3:ed:51:7b:fc:08:dc:10:df:
18:2e:74:c3:f2:e5:28:da:b2:18:bc:a2:f3:11:39:f4:63:30:
b5:56:1d:c2:1b:57:bc:d9:cb:f5:5b:ce:90:1d:a6:23:dd:58:
dc:4e:e3:48:7d:ef:77:a5:3b:f5:f8:14:6f:00:64:f9:6a:da:
df:7f:02:81:f6:91:60:f7:56:1d:60:3d:c3:8a:d3:46:c8:52:
0e:1f:d5:a1:aa:a9:bb:c5:a9:4c:35:c9:f5:fa:f3:07:cb:a1:
0e:cf:a0:26:a1:51:f4:df:67:fb:46:3e:76:0e:91:9e:1d:52:
e1:5f:ab:c7:d5:f7:a1:53:ae:59:23:c2:7d:b0:91:39:af:77:
61:89:8e:df:b6:0a:95:64:e1:8d:4a:42:a8:29:0c:8d:81:88:
49:19:ba:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-ams.rpki-client.org