Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/3139352e3133302e3231372e302f32342d3234203d3e203432343237.roa
File: 3139352e3133302e3231372e302f32342d3234203d3e203432343237.roa (raw, json)
Hash identifier: n3CfhZS+SdEJ1kdBdiO52lOhxzaTAFuJCHLsbWQmdkg=
Subject key identifier: B6:AF:67:C1:D9:9F:38:03:7D:05:BF:DD:AE:B7:51:29:6D:3E:BD:11
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 69E10138A73D432E077D030153361371FA865615
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/3139352e3133302e3231372e302f32342d3234203d3e203432343237.roa
Signing time: Fri 01 Sep 2023 11:14:34 +0000
ROA not before: Fri 01 Sep 2023 11:09:34 +0000
ROA not after: Fri 30 Aug 2024 11:14:34 +0000
asID: 42427
IP address blocks: 195.130.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:e1:01:38:a7:3d:43:2e:07:7d:03:01:53:36:13:71:fa:86:56:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Sep 1 11:09:34 2023 GMT
Not After : Aug 30 11:14:34 2024 GMT
Subject: CN=B6AF67C1D99F38037D05BFDDAEB751296D3EBD11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:04:06:ba:bc:65:36:c1:ee:53:c7:e9:36:32:
b2:9a:b8:c1:23:b5:10:78:9f:c4:a1:6b:6e:5a:8e:
5c:51:6c:1d:9e:61:4d:64:3b:1a:18:42:64:54:4e:
6a:77:81:8f:14:5a:78:d5:64:2c:d2:ab:1c:f4:71:
71:b7:ed:5c:37:2d:6b:93:29:cb:06:6d:87:ab:69:
3a:97:9b:50:5f:cb:9b:13:66:c6:51:33:fa:3c:e5:
a1:ba:87:c3:e6:40:dc:8d:e4:48:77:87:82:14:f4:
c3:85:c9:55:b5:2c:3a:c9:9b:20:6e:f7:01:1d:e6:
7c:4b:cf:ca:fe:e9:d1:bf:0a:21:6e:94:27:28:53:
01:4f:fb:bd:3e:0a:39:a4:a3:07:33:63:af:88:2e:
25:81:a1:d6:20:a7:73:e5:e5:b2:30:c0:47:c8:b0:
00:73:42:57:c0:e4:45:24:3a:8d:ac:8d:61:f7:dd:
e8:50:26:66:d6:3c:cb:36:00:3b:6a:f7:16:e1:34:
8f:80:c0:97:d0:e5:70:3c:14:ed:c0:b6:0f:a8:a4:
39:73:63:95:f7:58:d0:2c:29:da:01:82:c4:b6:90:
3f:3e:fb:20:ae:8a:4f:7d:dd:b7:4d:de:18:bf:0c:
f4:2c:a0:9c:77:e9:fc:18:7c:cd:4e:a5:c7:de:f1:
d8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:AF:67:C1:D9:9F:38:03:7D:05:BF:DD:AE:B7:51:29:6D:3E:BD:11
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/3139352e3133302e3231372e302f32342d3234203d3e203432343237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.217.0/24
Signature Algorithm: sha256WithRSAEncryption
87:7c:1b:9c:07:81:23:25:b4:6c:9e:cb:3c:2f:6a:39:42:75:
52:b5:fb:a7:39:33:5f:83:f2:74:37:f5:14:ca:70:41:1e:0a:
46:5d:1f:9b:80:be:63:60:34:83:81:29:f8:f7:9d:25:e7:15:
99:49:76:0d:94:fa:39:eb:ed:a4:64:3b:f5:cb:2b:06:58:7f:
9a:0c:02:a4:3f:bd:6b:fc:87:0c:17:a1:11:98:3d:05:20:cb:
26:1f:fa:07:5c:2c:3f:90:7e:74:0e:27:1c:af:63:e0:9f:41:
10:fd:c7:e9:05:08:02:7e:99:d7:4c:b0:56:8e:b8:27:4f:c1:
72:45:17:60:60:a1:ff:b9:40:6d:26:66:ce:a4:c2:62:ba:c7:
e8:69:51:69:52:89:72:eb:de:2c:c6:a4:1e:93:e3:ec:46:8f:
85:12:d0:17:88:d0:b1:bb:88:9c:de:c7:61:0d:bd:c6:53:2f:
4a:47:08:c0:e5:7e:c4:f0:cf:db:4e:30:46:da:29:a2:de:07:
8d:f8:6d:62:5e:35:14:45:6b:ce:e8:64:c3:cf:c4:0b:17:33:
b4:37:22:69:c2:98:4a:7c:39:3f:b6:cb:0d:c2:f8:4a:70:52:
f0:32:ba:0e:c6:42:25:09:e0:fe:d8:04:39:9d:f4:97:22:36:
06:ee:29:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 06:35:05 2024 by rpki-client on console-ams.rpki-client.org