Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A916C75D0000/0/323430373a636463303a3a2f33322d3438203d3e20393833.roa
File: 323430373a636463303a3a2f33322d3438203d3e20393833.roa (raw, json)
Hash identifier: UHedkW33cWGBiYuEtnnF7j7CGRaUWDd/tRrQFEDk9H8=
Subject key identifier: B2:DD:15:1E:2C:D8:40:DA:C4:D3:8F:FD:00:F6:F7:A7:43:95:A3:2F
Certificate issuer: /CN=A916C75D0000/serialNumber=492C94B5D5EC5F8E371BA1D7C081A711B8E26A6D
Certificate serial: 343D2666AC07BA266B76A738EC14A50174BC32D7
Authority key identifier: 49:2C:94:B5:D5:EC:5F:8E:37:1B:A1:D7:C0:81:A7:11:B8:E2:6A:6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SSyUtdXsX443G6HXwIGnEbjiam0.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A916C75D0000/0/323430373a636463303a3a2f33322d3438203d3e20393833.roa
Signing time: Wed 19 Jun 2024 12:59:42 +0000
ROA not before: Wed 19 Jun 2024 12:54:42 +0000
ROA not after: Wed 18 Jun 2025 12:59:42 +0000
asID: 983
IP address blocks: 2407:cdc0::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:3d:26:66:ac:07:ba:26:6b:76:a7:38:ec:14:a5:01:74:bc:32:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C75D0000/serialNumber=492C94B5D5EC5F8E371BA1D7C081A711B8E26A6D
Validity
Not Before: Jun 19 12:54:42 2024 GMT
Not After : Jun 18 12:59:42 2025 GMT
Subject: CN=B2DD151E2CD840DAC4D38FFD00F6F7A74395A32F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:da:9f:5f:74:ed:f2:e6:c8:f2:f6:ac:60:51:
15:6d:dd:ab:9e:4d:50:9b:1d:0e:7a:43:81:6f:72:
26:2b:83:d5:79:72:2c:24:8b:b9:a3:df:60:cb:bd:
36:e3:7b:e1:f8:f4:e9:90:a0:a5:67:0b:3b:60:7c:
15:61:d2:24:81:e0:80:08:a8:93:8a:06:a8:7c:fb:
d1:ab:6f:21:45:bd:fa:3a:3c:b5:b8:e2:d2:34:83:
36:b5:ea:bb:5f:2a:6a:c1:b3:5d:37:c4:d3:e9:21:
30:0b:f6:d5:4a:df:ff:0f:9e:e5:f8:51:e9:7f:38:
b0:aa:d1:ee:9e:48:a5:f1:57:4d:c1:de:6f:72:1f:
f8:ac:43:c7:62:53:b6:58:1c:2b:71:3c:15:12:4a:
70:22:f8:9b:b1:c8:e6:3b:d7:44:18:33:91:a9:65:
e8:fc:a0:64:ea:66:b4:f5:5b:84:ca:45:e5:5d:c8:
8f:0b:dc:7d:30:53:5d:b9:77:8b:e7:14:c5:09:8c:
49:a5:fd:f2:ad:7b:df:7e:3b:28:55:c1:61:13:2c:
17:6f:38:f6:9a:cb:e4:9a:9e:69:24:12:89:2b:78:
ab:c0:dc:a9:2d:21:6d:0e:a8:f5:a5:45:90:37:d4:
be:27:1b:d2:17:cb:5c:6c:fd:b8:ef:56:56:eb:f1:
34:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DD:15:1E:2C:D8:40:DA:C4:D3:8F:FD:00:F6:F7:A7:43:95:A3:2F
X509v3 Authority Key Identifier:
keyid:49:2C:94:B5:D5:EC:5F:8E:37:1B:A1:D7:C0:81:A7:11:B8:E2:6A:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A916C75D0000/0/492C94B5D5EC5F8E371BA1D7C081A711B8E26A6D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SSyUtdXsX443G6HXwIGnEbjiam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A916C75D0000/0/323430373a636463303a3a2f33322d3438203d3e20393833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:cdc0::/32
Signature Algorithm: sha256WithRSAEncryption
a3:9b:68:68:4c:e6:0e:1e:cf:c7:08:bb:7f:1a:ae:7a:43:2e:
4f:d3:bc:ae:96:26:cd:c7:35:ab:d0:6b:65:3b:bd:88:33:fa:
31:b6:50:2d:a4:88:c6:d4:a7:b0:f7:41:3d:f9:53:66:11:b1:
0a:76:bf:97:c9:1d:99:5d:a5:82:31:c9:97:fe:e0:5e:83:a0:
a4:23:ab:60:83:f8:94:5a:20:fb:d7:66:fd:02:fe:cb:42:30:
5e:85:fc:2f:c9:64:8a:88:e2:2d:80:14:ab:89:ab:1f:1f:2d:
0f:0b:9c:78:58:32:53:2b:79:1e:6b:7a:3e:a2:42:8d:78:f2:
da:a8:ae:13:2f:d8:79:aa:28:fb:2c:94:ad:98:f9:af:5b:3c:
1b:c5:6b:a6:a3:67:d9:48:37:d9:66:6a:c8:ed:6b:9f:3a:c8:
1d:51:b8:a9:1d:89:ab:66:d1:3a:61:47:99:6c:50:5b:10:f4:
d1:c5:74:51:36:56:73:02:a5:77:9e:62:56:67:3b:e9:ad:c0:
d3:fc:e0:4f:6d:0a:b4:f1:24:4a:6f:5c:19:9a:9d:07:f4:a0:
cc:3c:61:00:56:fc:a6:86:99:f9:e9:ac:01:e1:37:e5:e3:9a:
14:28:eb:62:85:2e:14:f7:cd:13:dd:ac:bf:39:51:1f:a8:e5:
c7:5b:4d:80
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIUND0mZqwHuiZrdqc47BSlAXS8MtcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxNkM3NUQwMDAwMTEwLwYDVQQFEyg0OTJDOTRCNUQ1
RUM1RjhFMzcxQkExRDdDMDgxQTcxMUI4RTI2QTZEMB4XDTI0MDYxOTEyNTQ0MloX
DTI1MDYxODEyNTk0MlowMzExMC8GA1UEAxMoQjJERDE1MUUyQ0Q4NDBEQUM0RDM4
RkZEMDBGNkY3QTc0Mzk1QTMyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAIran1907fLmyPL2rGBRFW3dq55NUJsdDnpDgW9yJiuD1XlyLCSLuaPfYMu9
NuN74fj06ZCgpWcLO2B8FWHSJIHggAiok4oGqHz70atvIUW9+jo8tbji0jSDNrXq
u18qasGzXTfE0+khMAv21Urf/w+e5fhR6X84sKrR7p5IpfFXTcHeb3If+KxDx2JT
tlgcK3E8FRJKcCL4m7HI5jvXRBgzkall6PygZOpmtPVbhMpF5V3IjwvcfTBTXbl3
i+cUxQmMSaX98q173347KFXBYRMsF2849prL5JqeaSQSiSt4q8DcqS0hbQ6o9aVF
kDfUvicb0hfLXGz9uO9WVuvxNDsCAwEAAaOCAgwwggIIMB0GA1UdDgQWBBSy3RUe
LNhA2sTTj/0A9venQ5WjLzAfBgNVHSMEGDAWgBRJLJS11exfjjcbodfAgacRuOJq
bTAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp
LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE2Qzc1RDAwMDAvMC80OTJDOTRC
NUQ1RUM1RjhFMzcxQkExRDdDMDgxQTcxMUI4RTI2QTZELmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9TU3lVdGRYc1g0
NDNHNkhYd0lHbkViamlhbTAuY2VyMIGFBggrBgEFBQcBCwR5MHcwdQYIKwYBBQUH
MAuGaXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxNkM3
NUQwMDAwLzAvMzIzNDMwMzczYTYzNjQ2MzMwM2EzYTJmMzMzMjJkMzQzODIwM2Qz
ZTIwMzkzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUAJAfNwDANBgkqhkiG9w0BAQsFAAOCAQEAo5to
aEzmDh7Pxwi7fxquekMuT9O8rpYmzcc1q9BrZTu9iDP6MbZQLaSIxtSnsPdBPflT
ZhGxCna/l8kdmV2lgjHJl/7gXoOgpCOrYIP4lFog+9dm/QL+y0IwXoX8L8lkioji
LYAUq4mrHx8tDwuceFgyUyt5Hmt6PqJCjXjy2qiuEy/Yeaoo+yyUrZj5r1s8G8Vr
pqNn2Ug32WZqyO1rnzrIHVG4qR2Jq2bROmFHmWxQWxD00cV0UTZWcwKld55iVmc7
6a3A0/zgT20KtPEkSm9cGZqdB/SgzDxhAFb8poaZ+emsAeE35eOaFCjrYoUuFPfN
E92svzlRH6jlx1tNgA==
-----END CERTIFICATE-----
Generated at Thu Aug 15 08:47:21 2024 by rpki-client on console-ams.rpki-client.org