Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A916C75D0000/1/323430313a323132303a3a2f33322d3438203d3e20393833.roa
File: 323430313a323132303a3a2f33322d3438203d3e20393833.roa (raw, json)
Hash identifier: iVPU1z8xAzQgMGbsoDFuWjsylOlC+g0YwUt41drOhbc=
Subject key identifier: F7:68:C9:01:E8:F8:05:25:24:35:AD:E9:74:20:0B:28:83:24:06:2B
Certificate issuer: /CN=A91130000000/serialNumber=E3B1D97CE75EC9867761EB52E2B0EB09AA96B906
Certificate serial: 472BBFF3E0ECC84E70959BABE4AFA661BA0FEB46
Authority key identifier: E3:B1:D9:7C:E7:5E:C9:86:77:61:EB:52:E2:B0:EB:09:AA:96:B9:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47HZfOdeyYZ3YetS4rDrCaqWuQY.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A916C75D0000/1/323430313a323132303a3a2f33322d3438203d3e20393833.roa
Signing time: Wed 26 Jun 2024 02:49:04 +0000
ROA not before: Wed 26 Jun 2024 02:44:04 +0000
ROA not after: Wed 25 Jun 2025 02:49:04 +0000
asID: 983
IP address blocks: 2401:2120::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:2b:bf:f3:e0:ec:c8:4e:70:95:9b:ab:e4:af:a6:61:ba:0f:eb:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91130000000/serialNumber=E3B1D97CE75EC9867761EB52E2B0EB09AA96B906
Validity
Not Before: Jun 26 02:44:04 2024 GMT
Not After : Jun 25 02:49:04 2025 GMT
Subject: CN=F768C901E8F805252435ADE974200B288324062B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:25:8b:cb:e0:26:24:99:c9:64:db:73:ef:61:
3f:af:58:56:bc:15:44:66:22:12:23:f8:d7:b0:20:
00:8d:52:0e:30:12:84:f9:06:3d:07:e7:d3:ec:ec:
79:e7:54:66:5a:39:c7:19:45:60:cf:6a:f1:52:dc:
f5:cf:23:2f:20:a4:8e:56:59:8d:31:74:48:49:a4:
10:e7:9d:6b:de:f2:12:7d:d2:76:6c:86:30:ac:58:
09:8e:40:79:57:6f:f8:42:c4:da:a6:4a:69:da:10:
4f:65:8b:97:1b:57:60:70:61:bc:7c:2b:30:01:3f:
b2:3a:06:6f:6b:df:c4:95:2e:72:71:62:47:83:30:
a7:34:6f:3b:af:88:ee:0d:b1:30:4d:e7:13:c4:3b:
cb:5d:a9:d2:91:10:3a:69:14:a6:4d:89:98:05:94:
4c:17:54:c1:a8:c8:a2:00:ae:f1:07:72:4c:8a:7b:
51:08:38:07:f9:ce:b0:ff:6b:12:71:8a:56:77:d1:
de:15:5a:21:1c:f0:67:d2:1c:4b:f4:86:96:65:c1:
d5:88:98:b0:c5:73:19:1d:70:bd:f1:e5:cb:24:76:
09:12:da:fe:3b:94:21:bb:2c:5d:ee:02:1e:8a:0d:
9f:e7:16:5b:8b:20:74:d7:9e:95:b8:11:50:d9:f3:
36:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:68:C9:01:E8:F8:05:25:24:35:AD:E9:74:20:0B:28:83:24:06:2B
X509v3 Authority Key Identifier:
keyid:E3:B1:D9:7C:E7:5E:C9:86:77:61:EB:52:E2:B0:EB:09:AA:96:B9:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A916C75D0000/1/E3B1D97CE75EC9867761EB52E2B0EB09AA96B906.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47HZfOdeyYZ3YetS4rDrCaqWuQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A916C75D0000/1/323430313a323132303a3a2f33322d3438203d3e20393833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2120::/32
Signature Algorithm: sha256WithRSAEncryption
86:69:db:9a:07:c7:68:3c:bd:16:eb:f2:e2:4c:55:66:18:c1:
52:43:af:76:6b:c2:15:af:5e:cd:a2:19:06:a3:7d:78:2f:41:
d0:b3:2d:ef:aa:4b:72:59:1c:a1:47:a8:d9:04:14:0a:a8:1e:
25:87:48:e4:ca:c6:e9:8a:01:36:b1:a6:2d:23:a8:02:47:27:
3c:b7:1e:50:60:59:85:1e:41:de:0d:cc:a5:dc:89:ad:a4:a8:
7c:15:0b:7f:95:ee:99:34:50:59:a0:f2:b0:7a:27:8f:a9:23:
e8:a9:b7:3c:ab:46:4f:2f:3f:66:e1:e2:50:67:d8:df:cf:26:
a8:ed:8b:48:ab:dd:40:ff:25:c1:87:f1:93:f4:94:8f:51:ed:
cb:a2:d7:8f:a1:df:cd:56:40:4e:94:87:34:89:6d:5a:1d:49:
d9:f8:7f:6e:3f:ab:11:98:6c:1c:61:35:78:d7:42:dd:da:3f:
03:e7:6d:8d:d7:b0:bd:40:78:08:96:cb:da:cf:2a:b2:0c:4c:
30:50:2b:d0:f9:96:d5:78:19:c3:b0:8d:ee:bb:cb:2a:ba:b8:
20:c3:d9:b6:a2:8a:31:ac:69:3e:a2:32:d6:8a:d4:aa:b4:ed:
f3:48:55:d3:bd:06:3a:82:10:6d:d6:dc:fc:e9:44:5c:ab:d1:
a8:c9:de:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 00:04:00 2024 by rpki-client on console-fra.rpki-client.org