Route Origin Authorization
$ rpki-client -vvf rpki.rand.apnic.net/repo/pubServerRand/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa
File: 323430383a323030303a3a2f32342d3234203d3e2034363038.roa (raw, json)
Hash identifier: ueR6HW/0k5lG04xdD3Y0+Upw+LYFEF2fOhVrgEKZSM4=
Subject key identifier: 6A:66:98:02:97:77:E5:45:84:57:04:DB:C2:29:99:64:A0:EC:6D:88
Certificate issuer: /CN=A91872ED0000/serialNumber=8F34F1F953AD0365767E21EABE35AB46B55B3E58
Certificate serial: 6829D8E76828021ED8ADB084660B4FF6486682E0
Authority key identifier: 8F:34:F1:F9:53:AD:03:65:76:7E:21:EA:BE:35:AB:46:B5:5B:3E:58
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzTx-VOtA2V2fiHqvjWrRrVbPlg.cer
Subject info access: rsync://rpki.rand.apnic.net/repo/pubServerRand/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa
Signing time: Thu 31 Mar 2022 10:00:00 +0000
ROA not before: Thu 31 Mar 2022 09:55:00 +0000
ROA not after: Fri 31 Mar 2023 10:00:00 +0000
asID: 4608
IP address blocks: 2408:2000::/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:29:d8:e7:68:28:02:1e:d8:ad:b0:84:66:0b:4f:f6:48:66:82:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91872ED0000/serialNumber=8F34F1F953AD0365767E21EABE35AB46B55B3E58
Validity
Not Before: Mar 31 09:55:00 2022 GMT
Not After : Mar 31 10:00:00 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cf:24:b7:20:02:2e:cf:35:f9:11:9b:25:41:
c1:6e:df:40:a4:31:95:9c:7c:79:13:e5:42:c1:56:
2a:a6:3c:05:0b:0e:ad:6e:1f:25:df:0c:5c:c8:1b:
46:fa:20:9b:26:9a:5e:62:8a:a4:2c:01:1a:ff:33:
e2:94:e2:37:24:5d:e3:7d:f6:2a:a3:be:ce:8c:20:
af:93:80:87:e8:7a:33:90:8b:fb:1f:64:a5:e8:3a:
cd:65:4f:68:cd:e6:3f:76:44:fe:34:a6:58:5a:1b:
19:8a:93:f7:ad:4b:a3:d6:37:8a:d8:ec:ff:ae:54:
43:29:9b:24:6a:27:b5:69:c4:15:04:9e:82:52:dc:
ab:cc:58:93:6a:07:ea:8c:8f:72:8c:b2:9b:d4:bf:
12:34:39:11:75:10:eb:05:82:08:cb:3d:a4:16:c1:
27:b7:ab:02:c1:10:2b:86:d3:bc:c1:70:41:90:91:
d7:5b:c2:74:7c:9a:93:43:b8:f7:82:99:e6:46:9a:
d5:62:6b:de:8f:29:a4:43:df:4d:51:dc:61:94:76:
0e:2f:ad:54:a9:15:88:8c:28:55:5d:5b:98:3c:07:
9a:0d:15:c6:e6:d8:22:8c:d9:be:65:42:79:0e:b3:
91:23:ab:fb:54:81:40:67:2b:45:30:95:ae:77:f0:
44:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:66:98:02:97:77:E5:45:84:57:04:DB:C2:29:99:64:A0:EC:6D:88
X509v3 Authority Key Identifier:
keyid:8F:34:F1:F9:53:AD:03:65:76:7E:21:EA:BE:35:AB:46:B5:5B:3E:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.rand.apnic.net/repo/pubServerRand/0/8F34F1F953AD0365767E21EABE35AB46B55B3E58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzTx-VOtA2V2fiHqvjWrRrVbPlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.rand.apnic.net/repo/pubServerRand/0/323430383a323030303a3a2f32342d3234203d3e2034363038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2408:2000::/24
Signature Algorithm: sha256WithRSAEncryption
3e:3d:42:4d:3e:fb:06:ff:d0:65:97:70:1b:78:75:e4:3f:b0:
7b:52:8d:76:ca:93:ec:64:ec:34:9a:dd:31:ff:5d:8f:d5:9c:
cb:21:f9:35:76:67:9a:fc:90:6f:14:24:e2:9b:fa:09:c2:b5:
6c:41:fc:89:32:df:39:94:be:ce:83:c5:ab:65:7a:20:3a:d5:
fe:c8:d7:7e:e2:1e:ad:04:47:38:92:14:2c:26:a6:a0:d2:19:
83:3d:b6:ea:04:c2:0d:65:6d:da:3c:39:e7:b9:a7:ae:d8:0d:
86:44:cd:e5:da:f6:6c:9a:8f:f9:b0:08:80:6e:b0:ee:ef:63:
79:b4:96:9b:17:77:15:a5:a8:5a:dc:39:96:e8:f6:e0:c2:de:
a5:bb:a8:ef:7d:a9:82:55:2f:8d:cc:0c:b1:66:c7:5d:dd:cb:
54:b7:be:ec:22:ab:d9:5a:61:68:cf:cc:60:fd:b6:97:83:f5:
53:3a:97:f8:d0:bd:eb:ce:f3:41:9c:87:45:5c:97:4f:34:33:
51:a4:fc:c9:1c:fc:09:ba:e5:6d:12:fe:68:7f:f0:37:e4:31:
15:6d:58:f0:b1:a4:2c:a4:07:8a:83:61:9b:ef:f6:b5:92:7e:
cd:97:ac:3e:8b:cb:37:1b:2f:73:51:43:6f:ee:06:b9:54:ef:
b4:48:47:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:44 2023 by rpki-client on console-ams.rpki-client.org