Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a363a3a2f34382d3438203d3e203136353039.roa
File: 326130323a356265303a363a3a2f34382d3438203d3e203136353039.roa (raw, json)
Hash identifier: I7OyW/gbf5Vr7hw0o2+Ehu0jh7u3347o3XPp8JcI3E0=
Subject key identifier: 6C:B4:D6:47:3C:D6:4C:75:62:42:1D:49:9C:20:E0:1F:18:1D:36:AE
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 05040F77C192DA3BEBFE4E7A5C719025D615BFC6
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a363a3a2f34382d3438203d3e203136353039.roa
Signing time: Thu 18 Jul 2024 10:18:21 +0000
ROA not before: Thu 18 Jul 2024 10:13:21 +0000
ROA not after: Thu 17 Jul 2025 10:18:21 +0000
asID: 16509
IP address blocks: 2a02:5be0:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:04:0f:77:c1:92:da:3b:eb:fe:4e:7a:5c:71:90:25:d6:15:bf:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Jul 18 10:13:21 2024 GMT
Not After : Jul 17 10:18:21 2025 GMT
Subject: CN=6CB4D6473CD64C7562421D499C20E01F181D36AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5c:85:4b:0e:10:de:0f:87:a3:d3:dd:2d:96:
17:ba:98:c5:f2:4f:d5:49:a6:60:c4:33:cf:ba:36:
99:ab:ff:8c:69:e3:4d:18:67:41:30:8a:f5:1c:71:
f1:ff:44:6a:d0:b3:46:f0:40:93:0c:f5:66:1a:a2:
bf:23:0a:d4:ee:8b:df:51:d0:87:77:62:4f:17:8b:
ef:f3:fd:18:a5:31:c1:c5:11:5c:ae:43:c7:20:fc:
66:7e:17:45:ad:75:2c:62:a6:6c:b2:9e:db:43:94:
f0:12:14:ab:e3:f1:5d:03:1e:23:1f:8d:16:57:55:
51:f4:e2:25:e9:65:b6:65:14:72:a2:54:12:db:06:
89:d1:62:77:1c:4b:d2:2c:67:8a:28:8b:fb:1a:6f:
2a:52:ee:9b:8f:d4:bd:3a:9f:90:a7:56:e0:8c:7c:
6b:4d:c6:ac:8b:52:2e:77:fe:73:07:0f:68:60:48:
d3:cf:15:c1:2a:21:72:99:80:35:8b:7d:82:a1:9c:
51:f5:f4:c2:8b:a3:b8:1b:96:79:d3:7b:d1:2c:21:
ec:41:40:b4:05:88:11:b5:67:5f:97:16:e4:66:6d:
6f:f3:89:64:7a:70:8e:4c:97:59:8b:f3:73:20:be:
42:60:1d:81:ad:fc:0b:6e:48:cf:07:7e:e5:d7:ee:
8b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B4:D6:47:3C:D6:4C:75:62:42:1D:49:9C:20:E0:1F:18:1D:36:AE
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a363a3a2f34382d3438203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:6::/48
Signature Algorithm: sha256WithRSAEncryption
98:32:58:9e:0b:14:ac:91:e6:70:ac:a6:8e:72:e6:d4:6d:82:
fb:8a:7a:45:00:5f:f3:77:2c:d1:30:05:73:b6:35:39:53:28:
92:cf:d7:9c:12:c7:22:19:24:2a:b3:1e:7b:9e:3e:f1:7e:16:
0e:6d:a4:7e:d9:62:8a:83:cd:b3:29:12:5b:7f:04:a0:1b:da:
02:39:1c:7a:c4:88:7f:42:f0:5f:80:c6:0c:25:8e:3e:83:27:
e7:9d:af:8d:5f:18:f2:d8:6b:ce:e6:fc:66:8a:78:bc:99:de:
bf:6b:38:fb:a4:09:e9:a8:5e:24:64:83:23:8f:bc:b6:be:cf:
58:c3:15:81:43:00:79:ee:aa:0a:ca:f6:d5:db:84:1e:c2:70:
58:08:6f:86:14:ad:d2:ff:70:59:c5:7c:89:b2:1c:ab:2a:9d:
af:7d:60:d4:74:cf:0d:c7:e4:7b:2b:6f:48:b1:99:4d:e5:ca:
a0:b3:35:09:44:c1:f7:f5:26:78:94:94:18:ea:c5:d3:07:9a:
40:69:f2:65:50:33:2b:2d:89:26:fc:a2:e9:0c:c7:80:99:d2:
e9:cd:14:b7:96:90:45:2d:07:8f:57:77:dd:f8:c5:71:b3:4d:
67:2e:68:82:8f:16:8a:3f:95:e4:e2:6f:26:35:31:c1:87:3e:
94:24:d0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:03 2024 by rpki-client on console-ams.rpki-client.org