Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91905300000/7/323430303a363832303a3a2f33322d3438203d3e2039383838.roa
File: 323430303a363832303a3a2f33322d3438203d3e2039383838.roa (raw, json)
Hash identifier: 4tm4MN9QTL5HgA19ejSzX7wIgqpXJptZ++BSfBg1Gjg=
Subject key identifier: C5:CE:97:96:F7:81:0E:35:8F:B2:D0:62:0D:2A:12:FD:0E:D6:76:CD
Certificate issuer: /CN=A919619E0000/serialNumber=4B1987D5160068092602529871C93EA320045A75
Certificate serial: 66EBA6BFB59FEABBEFCB58EAD6DEF67851C79E54
Authority key identifier: 4B:19:87:D5:16:00:68:09:26:02:52:98:71:C9:3E:A3:20:04:5A:75
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SxmH1RYAaAkmAlKYcck-oyAEWnU.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91905300000/7/323430303a363832303a3a2f33322d3438203d3e2039383838.roa
Signing time: Wed 03 Jan 2024 06:27:28 +0000
ROA not before: Wed 03 Jan 2024 06:22:28 +0000
ROA not after: Wed 01 Jan 2025 06:27:28 +0000
asID: 9888
IP address blocks: 2400:6820::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:eb:a6:bf:b5:9f:ea:bb:ef:cb:58:ea:d6:de:f6:78:51:c7:9e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919619E0000/serialNumber=4B1987D5160068092602529871C93EA320045A75
Validity
Not Before: Jan 3 06:22:28 2024 GMT
Not After : Jan 1 06:27:28 2025 GMT
Subject: CN=C5CE9796F7810E358FB2D0620D2A12FD0ED676CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ed:7f:d0:7f:ab:02:cb:c5:7d:be:93:e2:a2:
09:cf:86:ee:d0:96:64:83:23:42:73:b8:8d:ca:8b:
30:fe:60:24:8d:3a:d9:59:e4:96:a8:cd:4d:ca:d7:
25:97:97:a8:86:23:52:05:d1:7b:01:41:96:94:90:
24:47:4f:cc:5c:c6:d0:3d:66:9d:d3:c4:21:19:72:
48:92:aa:ec:8f:5d:69:8f:73:62:94:64:9a:e5:eb:
d6:b3:42:67:b9:15:f9:24:b9:30:c7:22:66:b9:97:
31:19:33:96:92:5a:ea:18:1b:93:37:25:ed:ff:dc:
6f:a6:9d:19:1c:23:5e:69:9c:88:6c:80:b3:d2:b9:
17:c6:2e:cf:5d:a4:10:a8:4c:b6:df:f7:fd:bf:fe:
3a:a5:dc:e6:78:5b:78:5d:98:16:ba:18:af:66:eb:
67:fd:80:67:2d:ec:46:ae:24:1d:42:49:55:f6:2c:
a2:a7:fc:d2:30:19:c2:4d:97:f2:01:c0:73:9a:ca:
a1:88:41:1c:08:e0:16:52:e2:a6:e4:99:68:2f:59:
2a:6f:ef:10:ad:ba:44:e3:f9:08:51:96:ef:57:96:
8f:f4:82:7d:47:e5:9f:97:4a:63:f7:de:2e:a9:60:
04:2c:bc:89:9b:b9:6b:f8:1f:cd:b4:a4:52:ca:70:
bd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CE:97:96:F7:81:0E:35:8F:B2:D0:62:0D:2A:12:FD:0E:D6:76:CD
X509v3 Authority Key Identifier:
keyid:4B:19:87:D5:16:00:68:09:26:02:52:98:71:C9:3E:A3:20:04:5A:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91905300000/7/4B1987D5160068092602529871C93EA320045A75.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SxmH1RYAaAkmAlKYcck-oyAEWnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/7/323430303a363832303a3a2f33322d3438203d3e2039383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:6820::/32
Signature Algorithm: sha256WithRSAEncryption
09:58:76:8b:3d:1e:e6:ea:3c:24:6e:5d:17:ae:2a:8a:c4:fa:
34:45:c7:7a:d3:e3:d0:fd:ad:76:00:a4:03:27:45:e9:c7:f0:
b7:27:92:3d:32:15:4d:64:9a:6a:60:42:6c:08:9d:65:a0:e4:
ee:a1:db:db:ef:37:c7:8c:5a:49:18:96:a4:8a:2e:23:cd:74:
05:9e:8a:e2:9d:ef:28:ee:ae:d8:25:37:85:85:30:65:7c:6a:
c6:b2:e1:0c:4f:dd:f4:67:fb:19:44:47:3c:14:df:fa:e1:71:
1d:45:22:7b:9b:d5:88:b6:8a:12:54:da:61:b8:ae:87:2f:2e:
3c:12:b9:92:27:c5:8b:13:f9:7f:3c:9e:ab:ef:41:17:5d:4b:
95:23:28:1f:0e:2e:e1:3a:a4:8c:82:d5:d0:a6:48:a4:7c:05:
08:bb:89:e6:e0:fb:09:bb:3b:4d:0c:4e:d4:99:9e:dc:ee:b0:
24:f4:03:21:70:a3:06:64:c6:22:2d:08:75:35:c7:d9:e1:c5:
32:ac:f0:55:c1:c0:64:ce:b9:5d:ba:66:04:f9:b5:21:57:83:
ea:54:35:92:a1:b8:82:8e:b0:f3:a5:4b:16:a5:57:6e:4f:fc:
d9:5c:db:f0:c3:50:82:8c:e2:76:75:e1:73:8d:25:1c:3c:66:
57:02:7c:ae
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgIUZuumv7Wf6rvvy1jq1t72eFHHnlQwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxOTYxOUUwMDAwMTEwLwYDVQQFEyg0QjE5ODdENTE2
MDA2ODA5MjYwMjUyOTg3MUM5M0VBMzIwMDQ1QTc1MB4XDTI0MDEwMzA2MjIyOFoX
DTI1MDEwMTA2MjcyOFowMzExMC8GA1UEAxMoQzVDRTk3OTZGNzgxMEUzNThGQjJE
MDYyMEQyQTEyRkQwRUQ2NzZDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN/tf9B/qwLLxX2+k+KiCc+G7tCWZIMjQnO4jcqLMP5gJI062VnklqjNTcrX
JZeXqIYjUgXRewFBlpSQJEdPzFzG0D1mndPEIRlySJKq7I9daY9zYpRkmuXr1rNC
Z7kV+SS5MMciZrmXMRkzlpJa6hgbkzcl7f/cb6adGRwjXmmciGyAs9K5F8Yuz12k
EKhMtt/3/b/+OqXc5nhbeF2YFroYr2brZ/2AZy3sRq4kHUJJVfYsoqf80jAZwk2X
8gHAc5rKoYhBHAjgFlLipuSZaC9ZKm/vEK26ROP5CFGW71eWj/SCfUfln5dKY/fe
LqlgBCy8iZu5a/gfzbSkUspwvYECAwEAAaOCAg4wggIKMB0GA1UdDgQWBBTFzpeW
94EONY+y0GINKhL9DtZ2zTAfBgNVHSMEGDAWgBRLGYfVFgBoCSYCUphxyT6jIARa
dTAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp
LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE5MDUzMDAwMDAvNy80QjE5ODdE
NTE2MDA2ODA5MjYwMjUyOTg3MUM5M0VBMzIwMDQ1QTc1LmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9TeG1IMVJZQWFB
a21BbEtZY2NrLW95QUVXblUuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH
MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTA1
MzAwMDAwLzcvMzIzNDMwMzAzYTM2MzgzMjMwM2EzYTJmMzMzMjJkMzQzODIwM2Qz
ZTIwMzkzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYB
BQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAGggMA0GCSqGSIb3DQEBCwUAA4IBAQAJ
WHaLPR7m6jwkbl0XriqKxPo0Rcd60+PQ/a12AKQDJ0Xpx/C3J5I9MhVNZJpqYEJs
CJ1loOTuodvb7zfHjFpJGJakii4jzXQFnorine8o7q7YJTeFhTBlfGrGsuEMT930
Z/sZREc8FN/64XEdRSJ7m9WItooSVNphuK6HLy48ErmSJ8WLE/l/PJ6r70EXXUuV
IygfDi7hOqSMgtXQpkikfAUIu4nm4PsJuztNDE7UmZ7c7rAk9AMhcKMGZMYiLQh1
NcfZ4cUyrPBVwcBkzrldumYE+bUhV4PqVDWSobiCjrDzpUsWpVduT/zZXNvww1CC
jOJ2deFzjSUcPGZXAnyu
-----END CERTIFICATE-----
Generated at Mon Nov 4 07:08:46 2024 by rpki-client on console-fra.rpki-client.org