Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa
File: 323430333a376530303a3a2f33322d3438203d3e2037353436.roa (raw, json)
Hash identifier: Kxb90CXH6CMSXvWzjc9fpBhV8G0Ol0T3Vx0vlyxyafg=
Subject key identifier: F1:A6:81:BF:95:BF:F2:D2:49:AD:88:7C:9C:7B:B7:DC:1C:47:CE:C5
Certificate issuer: /CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4
Certificate serial: 302D5B2728FABF6CDC4B4343AF1772E0BF976E77
Authority key identifier: B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa
Signing time: Sun 03 Nov 2024 05:08:53 +0000
ROA not before: Sun 03 Nov 2024 05:03:53 +0000
ROA not after: Sun 02 Nov 2025 05:08:53 +0000
asID: 7546
IP address blocks: 2403:7e00::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:2d:5b:27:28:fa:bf:6c:dc:4b:43:43:af:17:72:e0:bf:97:6e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4
Validity
Not Before: Nov 3 05:03:53 2024 GMT
Not After : Nov 2 05:08:53 2025 GMT
Subject: CN=F1A681BF95BFF2D249AD887C9C7BB7DC1C47CEC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:74:bb:ec:50:81:90:dc:55:54:5b:59:44:17:
91:83:a1:2e:cc:83:e2:fc:3c:9e:d3:52:d1:dc:29:
10:43:9e:3c:8c:8d:b2:d6:f4:83:39:64:6f:8f:b9:
19:d0:1b:85:cf:8f:60:b1:f6:41:6a:68:e2:c3:9b:
b7:ed:60:dd:36:ed:cd:8e:e5:12:ac:1e:a0:fe:30:
a8:22:5f:c7:ba:fc:28:de:d7:d5:a7:d1:ba:69:e0:
e2:fe:5f:58:6b:32:a1:35:14:d0:94:f0:f1:ee:59:
06:7f:cf:36:4c:82:2e:a4:f7:d2:19:5a:d9:3e:f3:
17:3c:9e:d1:c7:ef:e3:5a:b1:43:fe:9c:21:9a:40:
dd:ba:7b:ae:81:83:76:62:65:50:22:dd:4e:76:98:
91:c2:58:58:3f:fd:2d:58:08:0d:67:cb:96:3f:41:
4c:4a:f7:36:8e:f5:22:63:07:bd:cc:1a:23:bf:d7:
6d:d1:66:d4:a9:e5:7c:d7:cd:f9:a3:4b:c3:5f:cc:
71:58:66:1d:a5:9c:f5:94:25:07:d7:27:7e:8e:a1:
39:42:9e:7b:29:e2:ab:67:9c:eb:5e:fd:c6:30:4b:
85:37:da:32:91:b6:c8:c6:9b:55:f3:5e:9c:fd:6d:
e0:7d:62:5d:8e:1f:cb:2f:98:2d:41:84:53:03:54:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A6:81:BF:95:BF:F2:D2:49:AD:88:7C:9C:7B:B7:DC:1C:47:CE:C5
X509v3 Authority Key Identifier:
keyid:B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:7e00::/32
Signature Algorithm: sha256WithRSAEncryption
93:e1:1e:cd:34:d0:9c:cc:32:8a:57:f0:f0:a0:92:38:be:9e:
99:41:a7:04:e5:70:98:e4:94:30:e0:6d:61:d3:e0:2b:64:72:
6c:17:6e:07:31:cc:f8:8a:d9:8e:06:38:26:aa:c8:94:5b:ff:
6b:6f:f2:15:29:4c:b4:41:eb:f0:3a:2b:81:99:cf:f6:04:60:
20:98:5b:9b:51:1f:97:d2:b1:ab:55:4b:dd:33:7f:82:b8:9b:
c1:d8:88:28:34:44:30:56:e5:15:3e:09:ee:0d:21:c3:2b:3b:
41:fd:55:56:52:cb:e8:86:a2:bd:1c:c8:cb:e6:1a:a8:3e:8e:
6a:23:1d:d5:17:6a:a4:9f:db:3c:bc:76:41:95:94:9b:0a:18:
4b:87:e6:c8:f0:0a:9b:79:19:5b:bf:d8:e0:df:4c:e1:74:15:
5f:06:fc:d2:7a:88:d3:8b:7e:cb:f6:11:0f:21:59:57:f5:c9:
fb:e8:7a:99:8b:36:ec:55:4c:67:d8:0f:be:c5:5f:bc:c1:02:
34:28:7b:86:d8:49:2a:c0:db:88:47:a2:49:7b:e0:50:00:ca:
32:bb:bc:8d:bf:fc:11:1e:31:d9:02:98:56:8e:b5:3b:77:8d:
98:9f:34:d4:01:24:51:dd:23:36:3d:24:c0:9b:4e:48:00:50:
94:51:ca:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 11:00:41 2024 by rpki-client on console-ams.rpki-client.org