Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/2/3139332e372e3230342e302f32342d3234203d3e203432343237.roa
File: 3139332e372e3230342e302f32342d3234203d3e203432343237.roa (raw, json)
Hash identifier: 3ovpGOt8Z/loW4U3gJMJXsm91mVTK7y0fkPalfGS0w8=
Subject key identifier: 78:04:0E:64:C3:5C:0D:3F:11:86:16:6E:76:C4:F5:3C:EE:B2:4C:2F
Certificate issuer: /CN=211a048890969fa7d4b6aef8c020cda4444ec2e5
Certificate serial: 57BEC2C6CE25E12C03E6F2CF5C9E5FB238EC0EEF
Authority key identifier: 21:1A:04:88:90:96:9F:A7:D4:B6:AE:F8:C0:20:CD:A4:44:4E:C2:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IRoEiJCWn6fUtq74wCDNpEROwuU.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/2/3139332e372e3230342e302f32342d3234203d3e203432343237.roa
Signing time: Fri 02 Aug 2024 11:24:33 +0000
ROA not before: Fri 02 Aug 2024 11:19:33 +0000
ROA not after: Fri 01 Aug 2025 11:24:33 +0000
asID: 42427
IP address blocks: 193.7.204.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:be:c2:c6:ce:25:e1:2c:03:e6:f2:cf:5c:9e:5f:b2:38:ec:0e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=211a048890969fa7d4b6aef8c020cda4444ec2e5
Validity
Not Before: Aug 2 11:19:33 2024 GMT
Not After : Aug 1 11:24:33 2025 GMT
Subject: CN=78040E64C35C0D3F1186166E76C4F53CEEB24C2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:91:d4:38:0b:06:61:b5:d2:44:0f:e4:4e:5f:
6d:d0:58:35:f7:01:51:e7:32:a8:c5:df:89:71:33:
3a:58:58:2c:64:95:14:57:8f:b3:3d:d4:4b:9c:a1:
4c:cb:39:e5:82:0d:a9:4e:df:2d:87:0a:68:cb:b6:
48:f7:e7:b1:f7:28:5c:19:06:bf:d7:b0:df:c7:f0:
44:01:49:2a:2e:d7:2d:5f:1d:aa:e0:84:7d:88:f3:
ed:6c:9f:62:c3:dd:2c:b4:30:6d:61:23:7f:eb:97:
03:be:24:e3:fd:86:fc:8c:b7:60:a4:ae:8e:3c:50:
7c:36:11:4f:9a:9a:38:fc:eb:86:8f:70:ac:b6:0e:
ca:77:1a:c3:e8:37:8c:fc:d4:dc:87:18:0b:90:00:
37:fe:a8:d6:4a:9e:04:90:82:ca:af:f8:e2:b7:07:
69:c9:f0:dd:57:8d:a9:f4:b6:d1:73:c3:d3:0f:a8:
a6:12:19:d4:a6:61:8a:8c:94:08:93:c7:9e:66:16:
ff:3c:61:79:fe:ec:13:d7:b1:c0:68:dc:ff:5c:14:
de:61:5c:14:82:26:75:fd:56:9e:51:bf:a8:28:bc:
b3:40:b1:a1:37:41:3a:44:8c:99:ba:20:be:b1:c3:
59:f0:2c:2a:c6:96:23:c5:c2:1a:e6:f0:7b:a1:e1:
cd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:04:0E:64:C3:5C:0D:3F:11:86:16:6E:76:C4:F5:3C:EE:B2:4C:2F
X509v3 Authority Key Identifier:
keyid:21:1A:04:88:90:96:9F:A7:D4:B6:AE:F8:C0:20:CD:A4:44:4E:C2:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/2/211A048890969FA7D4B6AEF8C020CDA4444EC2E5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IRoEiJCWn6fUtq74wCDNpEROwuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/2/3139332e372e3230342e302f32342d3234203d3e203432343237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.7.204.0/24
Signature Algorithm: sha256WithRSAEncryption
61:f9:0f:78:1b:81:85:a5:13:35:b8:44:97:12:f3:f7:f5:7a:
3f:d5:51:7d:a8:23:6d:51:d3:73:7b:e2:9b:4e:5f:78:ae:dd:
59:7d:58:fc:f0:56:65:c9:00:57:d6:10:71:7e:4e:5c:96:d6:
0d:0f:5a:76:b2:57:ae:2c:93:8e:dc:4e:76:c4:4e:f8:ea:4f:
f5:84:f5:1a:db:e7:34:a3:08:2f:c7:33:92:2e:0c:43:ee:b1:
b7:5f:7f:0a:5c:a6:81:9a:45:cf:83:2f:aa:b4:23:d3:b2:cb:
1f:e0:60:d5:b0:5f:9d:2a:79:85:80:40:ad:05:1c:81:b6:40:
9b:92:cd:bc:7c:4a:9d:4b:77:67:21:93:76:45:a7:31:21:37:
64:7e:51:32:59:1b:27:80:bd:06:34:51:75:59:ae:ab:41:a1:
91:53:1a:60:20:0f:8c:3e:f6:bc:5a:d3:22:5d:1a:f8:f3:c1:
f2:4e:a5:fb:56:58:e9:45:b7:94:f5:e3:ac:4f:97:8b:3b:58:
41:83:b2:5e:2a:62:f2:14:77:77:51:b7:49:17:5c:2c:33:3d:
bd:9c:e3:72:42:29:0d:7a:d4:8c:6c:49:56:34:e8:48:1e:a1:
22:f9:c2:b9:29:bd:82:cd:df:b1:36:4a:fb:a3:1f:8b:4b:9d:
ee:ab:52:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:36:01 2024 by rpki-client on console-ams.rpki-client.org