Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa
File: 3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa (raw, json)
Hash identifier: VCxcYPKNqZmVpUguDZdAd9eDt8tw3dfSKJ1ozPCHw00=
Subject key identifier: DA:6A:E7:60:50:02:E3:BA:90:F9:06:04:FC:24:FB:24:2A:33:D2:27
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2682525BE6B78D2EBC5D34589B7B1BDD1D5F64D6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa
Signing time: Wed 13 Oct 2021 04:00:02 +0000
ROA not before: Wed 13 Oct 2021 03:55:02 +0000
ROA not after: Thu 13 Oct 2022 04:00:02 +0000
asID: 139397
IP address blocks: 123.253.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:82:52:5b:e6:b7:8d:2e:bc:5d:34:58:9b:7b:1b:dd:1d:5f:64:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 13 03:55:02 2021 GMT
Not After : Oct 13 04:00:02 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ed:4b:5d:ac:ef:22:64:77:84:e0:da:4f:b5:
d2:85:12:fd:66:1f:e3:f2:01:60:d8:44:39:e4:38:
c7:0c:12:e3:72:0d:5b:3d:cb:7f:96:bd:a9:56:5e:
6d:82:d9:c6:30:51:bf:1e:f2:e4:14:46:08:09:ec:
13:8f:33:ea:94:b5:81:7c:55:46:80:ad:da:9f:90:
bd:09:d0:fe:5d:23:52:e1:a1:90:d1:64:a5:13:7a:
8a:35:e4:9d:5f:39:68:d7:9d:e6:9c:44:aa:f4:5f:
1a:4e:60:09:24:00:e5:1d:e3:cb:f7:5e:57:18:21:
4e:8a:5c:f6:4b:4b:68:a1:fc:fe:53:c7:e5:a1:94:
f7:89:cb:6c:01:01:4d:60:79:c4:c5:53:33:3a:df:
3c:ce:bd:78:6b:ac:b7:20:79:76:86:97:e3:4d:56:
77:3b:bc:01:f8:20:1c:fe:e8:f0:f6:e1:1e:30:40:
d2:f1:74:ba:b1:14:31:4f:d1:ef:4b:ef:2a:66:8d:
63:58:f9:5b:64:b1:d5:9a:d7:0f:09:04:af:b1:e1:
73:a7:e4:24:4d:3d:b8:21:f0:66:a6:87:32:02:ed:
af:9d:16:3a:a4:b3:1e:28:98:1e:41:e7:33:b0:b7:
b8:a8:b8:e9:29:22:03:f2:e5:45:3d:48:3c:63:9b:
fa:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6A:E7:60:50:02:E3:BA:90:F9:06:04:FC:24:FB:24:2A:33:D2:27
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.253.252.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:40:8d:58:e7:6e:8c:06:a1:6f:03:eb:b7:88:6e:29:10:69:
3a:10:36:28:57:a8:53:80:c8:21:e7:b6:e3:ea:07:47:1b:70:
d7:ff:38:ce:14:9c:1c:e5:63:bd:78:14:c9:99:56:97:99:88:
60:e6:3d:f5:9e:53:26:47:58:c9:c1:51:0a:b9:a6:d4:64:bf:
2b:e0:df:03:2b:9e:e8:a9:23:09:bd:99:90:7c:db:85:34:59:
68:1a:3c:6b:9b:eb:fe:3a:58:58:fb:9f:98:80:c8:27:2e:fa:
da:ae:8d:dc:bf:a0:17:77:a6:9a:27:65:45:b2:ee:46:1d:d4:
e3:b6:e0:3c:96:2a:e7:7c:58:58:63:cb:49:5c:e1:7d:f3:aa:
f5:14:6d:8d:8c:8d:b7:1e:67:7f:67:25:db:ee:51:6e:80:50:
3e:28:42:46:ae:05:64:d9:63:f6:c0:3b:2a:5a:51:7e:9e:1f:
5b:35:cf:e4:ba:37:02:ba:3a:31:48:39:31:96:a3:24:65:c7:
df:d9:46:d8:8a:74:25:33:ac:85:e7:0d:33:23:45:97:70:0d:
16:23:a6:58:29:4a:2b:13:01:99:e0:fd:eb:61:d8:36:ad:9b:
5a:77:83:22:97:db:17:ac:d7:b9:57:a4:15:b1:54:7e:1c:d7:
20:09:aa:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:55 2023 by rpki-client on console-fra.rpki-client.org