Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e3132352e38302e302f32332d3234203d3e2030.roa
File: 3230322e3132352e38302e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: ve/sRzbgLIE2Yd+LDjF+9R1N0DUb/plvujs9vVRS8Dg=
Subject key identifier: E9:ED:04:6F:55:A6:30:1A:54:DB:9D:4E:67:74:64:07:0F:50:75:76
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 281147D7FF8200D21A502E0998036898664777D0
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e3132352e38302e302f32332d3234203d3e2030.roa
Signing time: Wed 02 Feb 2022 07:00:02 +0000
ROA not before: Wed 02 Feb 2022 06:55:02 +0000
ROA not after: Thu 02 Feb 2023 07:00:02 +0000
asID: 0
IP address blocks: 202.125.80.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:11:47:d7:ff:82:00:d2:1a:50:2e:09:98:03:68:98:66:47:77:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Feb 2 06:55:02 2022 GMT
Not After : Feb 2 07:00:02 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a8:9c:3c:41:a2:30:a9:fe:94:2a:35:35:37:
d9:61:41:26:33:eb:54:c0:1c:9c:06:16:0f:90:3d:
2b:4d:38:2a:b1:eb:f1:f5:9e:72:aa:ac:ac:41:d8:
f5:25:87:7b:88:3f:5a:dd:7a:7c:6d:9c:1e:12:a8:
76:66:b3:89:cd:31:f7:fe:4d:6e:1b:d7:b8:bd:3f:
2c:7a:81:cb:98:6d:ef:84:73:c6:ee:90:7b:42:c4:
c3:e9:6d:f9:dd:62:40:48:15:46:64:04:4b:06:89:
d1:b9:3e:08:4c:aa:2c:f8:89:6b:50:2c:97:52:4d:
97:09:e3:1a:65:fc:94:6b:a2:b7:a2:88:3e:e3:e6:
37:36:25:ce:a7:e1:82:56:e2:5c:74:c4:20:f4:d9:
dd:86:2e:b2:77:29:72:3e:d7:34:cf:42:d8:d1:89:
51:ed:db:1b:28:ae:3f:bf:43:b6:fc:7e:1b:01:00:
66:e2:1a:12:81:f6:a9:60:53:d8:34:69:f5:7f:52:
4d:da:ac:e9:2e:45:46:0c:a3:c9:d0:cc:7c:68:83:
f8:9e:a8:b0:4d:90:9f:69:c6:48:b7:4b:ef:f7:6a:
56:7c:ab:68:25:9a:99:8c:dd:2e:a8:e0:47:64:50:
7a:df:37:1d:35:17:69:33:86:e7:76:31:a3:94:60:
84:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:ED:04:6F:55:A6:30:1A:54:DB:9D:4E:67:74:64:07:0F:50:75:76
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e3132352e38302e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.125.80.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:62:0b:f9:3c:01:48:66:be:b6:fb:06:ba:6e:30:41:44:9f:
71:fd:d2:5a:c5:ab:b3:4a:f0:5f:7c:69:ef:a4:bb:1b:ed:cb:
79:3c:14:33:ef:f8:ee:10:17:1c:69:8b:87:1d:4f:5a:22:12:
b5:fb:0b:a0:18:4c:c7:ea:97:ef:64:d9:44:54:c1:c7:26:94:
fd:93:c7:60:16:5d:bb:a9:6f:12:ec:c8:09:8f:a0:61:f7:33:
7e:65:98:37:92:f4:d1:1e:c8:e7:76:26:de:08:ce:74:a9:11:
38:5f:dc:a0:cd:b3:0d:6c:c0:f7:68:6b:84:ba:41:b5:89:25:
a9:b3:23:2f:8d:65:e4:7d:ab:28:1d:7b:4b:0f:c0:0e:ed:49:
90:e7:d7:99:65:7c:0d:1e:a1:52:23:5b:17:c8:bf:f5:4b:5b:
ae:ca:f0:b2:a1:b0:46:a9:b5:78:bc:4c:63:30:3e:c1:d3:48:
9c:19:fe:d2:87:dd:29:67:10:f1:ad:ff:72:2b:ca:8c:b4:78:
79:e3:db:a7:d1:7f:bf:96:2a:ce:1f:e2:d8:6d:63:d0:36:4b:
ea:fb:96:4f:cb:b0:cd:67:e3:46:8e:c8:17:24:d0:8b:b1:19:
f8:1e:03:95:b3:19:3e:a3:3c:6d:9f:38:8a:11:53:f8:05:25:
3b:5b:89:7f
-----BEGIN CERTIFICATE-----
MIIG/zCCBeegAwIBAgIUKBFH1/+CANIaUC4JmANomGZHd9AwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIyMDIwMjA2NTUwMloX
DTIzMDIwMjA3MDAwMlowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBBOUE4OUMzQzQxQTIzMEE5RkU5NDJBMzUzNTM3RDk2MTQxMjYzM0VCNTRD
MDFDOUMwNjE2MEY5MDNEMkI0RDM4MkFCMUVCRjFGNTlFNzJBQUFDQUM0MUQ4RjUy
NTg3N0I4ODNGNUFERDdBN0M2RDlDMUUxMkE4NzY2NkIzODlDRDMxRjdGRTRENkUx
QkQ3QjhCRDNGMkM3QTgxQ0I5ODZERUY4NDczQzZFRTkwN0I0MkM0QzNFOTZERjlE
RDYyNDA0ODE1NDY2NDA0NEIwNjg5RDFCOTNFMDg0Q0FBMkNGODg5NkI1MDJDOTc1
MjREOTcwOUUzMUE2NUZDOTQ2QkEyQjdBMjg4M0VFM0U2MzczNjI1Q0VBN0UxODI1
NkUyNUM3NEM0MjBGNEQ5REQ4NjJFQjI3NzI5NzIzRUQ3MzRDRjQyRDhEMTg5NTFF
RERCMUIyOEFFM0ZCRjQzQjZGQzdFMUIwMTAwNjZFMjFBMTI4MUY2QTk2MDUzRDgz
NDY5RjU3RjUyNEREQUFDRTkyRTQ1NDYwQ0EzQzlEMENDN0M2ODgzRjg5RUE4QjA0
RDkwOUY2OUM2NDhCNzRCRUZGNzZBNTY3Q0FCNjgyNTlBOTk4Q0REMkVBOEUwNDc2
NDUwN0FERjM3MUQzNTE3NjkzMzg2RTc3NjMxQTM5NDYwODQyMTAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpqJw8QaIwqf6UKjU1N9lh
QSYz61TAHJwGFg+QPStNOCqx6/H1nnKqrKxB2PUlh3uIP1rdenxtnB4SqHZms4nN
Mff+TW4b17i9Pyx6gcuYbe+Ec8bukHtCxMPpbfndYkBIFUZkBEsGidG5PghMqiz4
iWtQLJdSTZcJ4xpl/JRroreiiD7j5jc2Jc6n4YJW4lx0xCD02d2GLrJ3KXI+1zTP
QtjRiVHt2xsorj+/Q7b8fhsBAGbiGhKB9qlgU9g0afV/Uk3arOkuRUYMo8nQzHxo
g/ieqLBNkJ9pxki3S+/3alZ8q2glmpmM3S6o4EdkUHrfNx01F2kzhud2MaOUYIQh
AgMBAAGjggH2MIIB8jAdBgNVHQ4EFgQU6e0Eb1WmMBpU251OZ3RkBw9QdXYwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjB6BggrBgEF
BQcBCwRuMGwwagYIKwYBBQUHMAuGXnJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5l
dC9yZXBvL0lETklDLUlELzIvMzIzMDMyMmUzMTMyMzUyZTM4MzAyZTMwMmYzMjMz
MmQzMjM0MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcp9UDANBgkqhkiG9w0BAQsFAAOC
AQEAPWIL+TwBSGa+tvsGum4wQUSfcf3SWsWrs0rwX3xp76S7G+3LeTwUM+/47hAX
HGmLhx1PWiIStfsLoBhMx+qX72TZRFTBxyaU/ZPHYBZdu6lvEuzICY+gYfczfmWY
N5L00R7I53Ym3gjOdKkROF/coM2zDWzA92hrhLpBtYklqbMjL41l5H2rKB17Sw/A
Du1JkOfXmWV8DR6hUiNbF8i/9UtbrsrwsqGwRqm1eLxMYzA+wdNInBn+0ofdKWcQ
8a3/civKjLR4eePbp9F/v5Yqzh/i2G1j0DZL6vuWT8uwzWfjRo7IFyTQi7EZ+B4D
lbMZPqM8bZ84ihFT+AUlO1uJfw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:55 2023 by rpki-client on console-fra.rpki-client.org