Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a383a3a2f34382d3438203d3e203134363138.roa
File: 326130323a356265303a383a3a2f34382d3438203d3e203134363138.roa (raw, json)
Hash identifier: S6D+gC0gO+uXY/7XkpXGZZFDV+W/XQvuMOToSrCph5c=
Subject key identifier: 9D:DD:95:E3:B4:C4:85:8B:83:FB:78:25:3C:9B:01:D9:F8:4D:AC:E6
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 6EB28854489A0BAC934B7EF11A6A0E505F86A436
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a383a3a2f34382d3438203d3e203134363138.roa
Signing time: Mon 04 Nov 2024 17:09:07 +0000
ROA not before: Mon 04 Nov 2024 17:04:07 +0000
ROA not after: Mon 03 Nov 2025 17:09:07 +0000
asID: 14618
IP address blocks: 2a02:5be0:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:b2:88:54:48:9a:0b:ac:93:4b:7e:f1:1a:6a:0e:50:5f:86:a4:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Nov 4 17:04:07 2024 GMT
Not After : Nov 3 17:09:07 2025 GMT
Subject: CN=9DDD95E3B4C4858B83FB78253C9B01D9F84DACE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:47:c7:9a:d2:ce:a4:7f:48:89:bd:cf:e4:5f:
61:db:3e:5d:4f:36:47:c8:8e:ff:87:a6:1a:b9:23:
cf:3b:74:56:bb:f9:9c:2d:85:90:5c:4c:fc:bc:4e:
12:51:c7:8a:e7:aa:81:77:37:17:06:bb:08:be:e8:
24:b8:03:7d:bc:4a:65:95:d2:60:80:7b:fc:57:30:
50:1b:78:e0:c9:d3:e9:1d:56:a2:38:46:a2:58:87:
18:50:ac:34:e4:7b:34:4a:2d:a3:75:d4:ac:83:79:
12:12:ec:6c:0f:a5:8b:aa:71:d5:9c:11:bd:1e:8d:
48:cd:c1:b9:74:66:76:ef:e2:43:f3:79:4c:bc:d6:
0b:fa:8d:51:05:39:8c:e0:2d:b3:1d:c0:cf:d1:f5:
85:ef:54:52:e9:08:d5:4b:97:88:22:dc:3e:54:32:
3e:d8:aa:d0:f1:02:94:3e:d2:b0:d3:7f:bd:6d:6d:
3c:10:dc:79:a8:3b:ba:5f:26:e6:42:bc:76:ad:23:
7c:41:94:19:49:74:c6:cb:80:e3:f4:ad:b4:5b:38:
f6:d3:2c:eb:c3:76:2a:7a:e0:6f:40:02:cd:42:fb:
ee:26:8d:c7:c8:e3:2a:41:00:f8:75:c3:27:fb:ae:
48:80:72:65:f1:72:d3:2d:79:c4:30:f5:dc:30:8d:
b1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DD:95:E3:B4:C4:85:8B:83:FB:78:25:3C:9B:01:D9:F8:4D:AC:E6
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a383a3a2f34382d3438203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:8::/48
Signature Algorithm: sha256WithRSAEncryption
10:db:96:7a:39:8e:f1:4f:ce:18:75:ad:b0:cc:03:b5:ec:62:
68:e7:57:cb:f5:c3:fc:a4:1d:98:6f:77:56:33:a5:12:4b:8a:
18:e2:3d:43:fe:f0:12:34:f0:f1:34:be:af:1a:1a:61:6a:17:
a1:cf:52:8b:90:81:e1:69:a9:f5:1e:95:3e:4c:62:0f:6b:9d:
c5:1c:95:9f:6e:5a:d0:70:12:b9:b2:80:58:60:87:42:8e:b5:
36:ac:d5:4d:91:5f:98:fa:90:1f:22:88:97:91:b9:4b:14:74:
9f:38:8e:8c:07:15:62:07:d9:4b:63:52:e6:9c:20:44:38:6d:
db:3a:54:96:8b:ec:ef:ae:73:87:86:0f:5a:b0:91:29:8b:30:
f7:fb:ad:66:d0:e1:da:cd:b5:a5:08:45:1d:80:d6:e0:34:0a:
8a:df:96:ca:59:36:54:3b:4e:25:96:6e:b9:e1:32:71:c1:89:
04:26:9c:0f:b2:bc:c2:3a:58:34:39:84:c2:20:2f:be:0c:15:
1e:c9:8c:93:19:f7:9e:8d:10:18:bc:e1:52:69:81:4e:cb:7d:
91:b3:0b:63:ba:d6:cf:8e:41:b3:0a:0f:51:58:2e:39:5a:14:
3f:1f:c7:49:b0:77:61:64:16:0b:f8:11:7d:d5:c9:e6:98:6a:
e4:d2:f8:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:05:54 2024 by rpki-client on console-fra.rpki-client.org