Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa
File: 323430333a376530303a3a2f33322d3438203d3e2037353436.roa (raw, json)
Hash identifier: 6JJmB2YmO/BTCE+XoC/8ZqqWFLCh8EMD0RHpPHcgN84=
Subject key identifier: 31:07:8F:52:D4:C0:40:5A:6A:83:2D:25:BE:4C:4F:A2:90:1D:DE:5B
Certificate issuer: /CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4
Certificate serial: 57E440C3DC29432FD46993F6D953D1158C73F438
Authority key identifier: B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa
Signing time: Sun 03 Dec 2023 04:12:02 +0000
ROA not before: Sun 03 Dec 2023 04:07:02 +0000
ROA not after: Sun 01 Dec 2024 04:12:02 +0000
asID: 7546
IP address blocks: 2403:7e00::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:e4:40:c3:dc:29:43:2f:d4:69:93:f6:d9:53:d1:15:8c:73:f4:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E539C0000/serialNumber=B7351B05B1619E9DE395F0B2FFC9EE1129F300B4
Validity
Not Before: Dec 3 04:07:02 2023 GMT
Not After : Dec 1 04:12:02 2024 GMT
Subject: CN=31078F52D4C0405A6A832D25BE4C4FA2901DDE5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:77:15:ac:c0:10:51:34:d9:8e:80:cc:08:
52:0e:c9:6c:0c:22:d5:02:a5:06:ec:1f:4c:14:c9:
28:89:c2:d0:c1:25:54:68:af:08:75:3d:f3:eb:06:
ad:0a:71:5a:86:d5:af:10:1c:e9:70:6c:2e:05:f4:
fb:2d:bd:97:c6:d1:b4:a1:13:f5:af:68:37:e4:5b:
c0:0c:c0:54:ab:fd:3a:a4:fb:0f:53:b9:22:8c:df:
49:a2:ea:71:80:1c:85:36:7d:5b:3d:82:c5:64:c4:
76:38:19:ef:70:93:09:d3:b4:7d:bd:72:06:08:df:
c0:6b:c1:36:c4:5d:4a:d3:d4:85:61:54:8b:98:ca:
43:d2:b4:7f:70:26:ed:85:b3:e1:be:d8:81:a0:f8:
c9:4e:8a:d8:56:c9:8f:89:44:c3:c6:96:88:58:49:
32:d6:28:cf:5b:53:05:d5:d3:84:45:7f:43:f4:82:
b7:83:66:95:28:af:74:56:f4:91:70:4a:25:cc:48:
8f:51:6b:06:7a:ed:3b:ea:c1:ad:75:32:c6:58:89:
62:8e:16:5a:69:91:6c:12:7a:54:d0:dd:3b:f1:6d:
0c:45:fd:f1:f6:4b:ec:69:5f:24:e1:bb:fa:1f:d8:
f0:18:ff:e3:8b:d3:4c:27:ee:4f:2a:4b:27:52:8e:
65:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:07:8F:52:D4:C0:40:5A:6A:83:2D:25:BE:4C:4F:A2:90:1D:DE:5B
X509v3 Authority Key Identifier:
keyid:B7:35:1B:05:B1:61:9E:9D:E3:95:F0:B2:FF:C9:EE:11:29:F3:00:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/B7351B05B1619E9DE395F0B2FFC9EE1129F300B4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tzUbBbFhnp3jlfCy_8nuESnzALQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/4/323430333a376530303a3a2f33322d3438203d3e2037353436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:7e00::/32
Signature Algorithm: sha256WithRSAEncryption
30:0a:07:7d:c4:ff:97:a6:e7:6b:8d:ec:f5:a1:95:f3:db:3e:
f2:de:14:5e:92:74:1f:d6:8c:96:d8:a9:4f:01:db:ed:a4:03:
d1:f6:3b:b2:3c:42:e9:96:02:5a:da:97:85:3b:f2:e0:da:d4:
5b:63:72:b3:60:58:00:7c:47:f8:f8:90:d9:84:ad:9e:76:fb:
7a:c8:25:04:65:ed:d8:d2:b4:fb:4b:ab:e0:3e:45:01:31:dd:
54:d3:5f:2c:0c:aa:3b:b9:45:c8:63:83:9a:79:33:70:d9:ec:
0a:d7:b8:58:42:c0:5f:dd:ff:5f:d2:f6:99:73:05:a0:a4:29:
e8:8c:2e:59:7b:51:d4:6e:be:d8:d6:cd:22:97:c1:39:fc:ba:
25:ba:c5:71:46:1b:77:67:74:42:55:65:e2:67:32:0d:be:89:
7e:66:93:89:9a:3a:39:73:a2:7b:cb:59:d2:75:98:50:31:57:
ed:d6:91:50:4e:24:d6:a0:dc:08:75:2a:e8:bf:e8:f1:7e:1c:
9a:00:01:e9:51:80:8f:b9:15:11:36:0a:c9:ed:b3:75:a8:87:
30:4f:7f:34:f8:5c:0a:51:d7:b0:7a:13:ee:b2:0e:8f:fc:bf:
af:37:81:b0:89:af:ef:dd:f4:03:8f:51:fa:42:a9:ff:42:8d:
9e:ab:5d:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 11:27:28 2024 by rpki-client on console-fra.rpki-client.org