Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9114E750000/0/323630323a666564613a313a3a2f34382d3438203d3e20333936333033.roa
File: 323630323a666564613a313a3a2f34382d3438203d3e20333936333033.roa (raw, json)
Hash identifier: LVUQILhg/rgMM8oRiyO2T1KVg8d2LKMPmN4K4rmsT7s=
Subject key identifier: 97:8C:FA:62:D1:97:B8:E4:C3:7B:1D:47:01:41:9A:24:36:8C:F3:4B
Certificate issuer: /CN=0108398CA988382C2A509BFDB39E146A76CF9DE0
Certificate serial: 4024EAD8500EC3CDF697C3A9A235EF955D43774E
Authority key identifier: 01:08:39:8C:A9:88:38:2C:2A:50:9B:FD:B3:9E:14:6A:76:CF:9D:E0
Authority info access: rsync://sakuya.nat.moe/repo/NATOCA/0/0108398CA988382C2A509BFDB39E146A76CF9DE0.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9114E750000/0/323630323a666564613a313a3a2f34382d3438203d3e20333936333033.roa
Signing time: Mon 28 Feb 2022 01:00:10 +0000
ROA not before: Mon 28 Feb 2022 00:55:10 +0000
ROA not after: Mon 27 Feb 2023 01:00:10 +0000
asID: 396303
IP address blocks: 2602:feda:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:24:ea:d8:50:0e:c3:cd:f6:97:c3:a9:a2:35:ef:95:5d:43:77:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0108398CA988382C2A509BFDB39E146A76CF9DE0
Validity
Not Before: Feb 28 00:55:10 2022 GMT
Not After : Feb 27 01:00:10 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3b:fc:00:eb:b7:aa:18:6a:30:3f:01:aa:fa:
cb:da:60:5e:a6:1a:ed:c4:fe:79:66:35:3c:12:79:
5e:c4:e7:1a:10:8f:59:55:71:92:5c:17:22:b5:01:
40:a2:57:f1:9a:68:05:b6:c4:eb:9d:a0:d2:5c:5a:
69:3f:15:15:40:ec:ff:25:fd:cd:af:65:f6:18:ed:
c8:8d:84:94:a5:65:81:61:0e:de:7b:c0:05:0b:b1:
b3:af:93:98:57:91:ad:fe:19:07:ac:89:27:87:7b:
aa:53:72:58:7b:99:81:bf:5f:f8:04:95:3d:81:7e:
67:15:af:85:2f:6e:72:41:0d:78:f5:26:99:4c:d2:
96:3d:fc:7b:6e:d6:df:4e:fb:db:21:37:b0:e9:c3:
b4:4e:83:3b:f7:a9:e0:61:f9:fc:e8:e5:9c:06:96:
77:30:05:17:b0:dd:ed:72:12:1e:8a:5a:9f:bf:89:
a3:87:ab:b5:a0:97:49:e9:5f:d9:70:4a:8a:84:82:
7c:6d:f2:8b:c4:5f:64:5f:0a:57:cc:e9:31:65:7f:
1e:9b:5d:c8:87:90:fa:7d:49:14:7d:39:7c:7d:db:
b4:7c:a8:65:68:d1:a2:5a:92:cc:3a:f6:37:4e:c3:
16:33:61:1e:3d:7e:35:04:ed:1b:f6:5b:0c:4e:0e:
0c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8C:FA:62:D1:97:B8:E4:C3:7B:1D:47:01:41:9A:24:36:8C:F3:4B
X509v3 Authority Key Identifier:
keyid:01:08:39:8C:A9:88:38:2C:2A:50:9B:FD:B3:9E:14:6A:76:CF:9D:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9114E750000/0/0108398CA988382C2A509BFDB39E146A76CF9DE0.crl
Authority Information Access:
CA Issuers - URI:rsync://sakuya.nat.moe/repo/NATOCA/0/0108398CA988382C2A509BFDB39E146A76CF9DE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9114E750000/0/323630323a666564613a313a3a2f34382d3438203d3e20333936333033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:feda:1::/48
Signature Algorithm: sha256WithRSAEncryption
66:9c:cb:e1:a6:55:b5:1b:43:0e:aa:78:cc:1e:ef:29:48:a4:
16:53:fa:da:71:ac:06:e6:76:d5:9a:83:bc:08:01:ff:90:01:
69:c1:2d:10:6e:f5:e3:7a:6a:e4:7f:be:9b:95:a7:d6:d4:16:
c9:4c:84:79:4e:94:59:2e:fe:2b:c7:0f:81:6d:b0:32:35:f2:
91:13:f8:61:2c:10:0d:3a:09:49:8b:6b:66:92:09:ef:18:cb:
2d:96:7e:9f:4e:76:ff:6e:91:9c:0d:03:c4:d0:92:68:bc:f1:
f2:b6:79:b8:9d:20:f8:76:b1:56:80:8f:9e:34:d4:96:08:cf:
ef:d0:47:8e:e8:19:12:db:43:8a:e3:e1:57:c5:04:0f:d8:1f:
a9:81:1f:7f:d0:02:d6:74:c7:f5:87:8b:71:70:84:56:19:57:
b4:df:f3:e6:ce:47:e0:1f:9b:0d:53:55:ce:36:9a:7a:6d:1c:
14:78:ea:42:b7:a5:82:bd:7d:1c:f8:5e:ec:04:66:c7:da:c7:
96:c4:26:3f:64:74:e8:e3:7c:ec:b1:cc:f2:08:8a:14:ef:c0:
bb:87:0f:00:00:86:a2:1f:3f:ab:d4:14:e3:0e:2a:f5:da:01:
40:3b:87:2b:c2:40:55:83:ba:26:d3:00:54:43:d4:7e:c4:7c:
dc:1d:82:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:50 2024 by rpki-client on console-ams.rpki-client.org