Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3230332e3131392e31332e302f32342d3234203d3e2034363232.roa
File: 3230332e3131392e31332e302f32342d3234203d3e2034363232.roa (raw, json)
Hash identifier: 767WJ1ehe1ghzTlo2Hw7tCfmndJSsbIsuPZ/eO/xkEs=
Subject key identifier: 96:DB:85:89:0B:21:F8:93:E5:8A:EA:B3:51:A0:AA:C8:47:0D:3C:D9
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 041ECF89969EC87FE7B853438E87CBA461368178
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230332e3131392e31332e302f32342d3234203d3e2034363232.roa
Signing time: Tue 21 Dec 2021 08:00:00 +0000
ROA not before: Tue 21 Dec 2021 07:55:00 +0000
ROA not after: Wed 21 Dec 2022 08:00:00 +0000
asID: 4622
IP address blocks: 203.119.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:1e:cf:89:96:9e:c8:7f:e7:b8:53:43:8e:87:cb:a4:61:36:81:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Dec 21 07:55:00 2021 GMT
Not After : Dec 21 08:00:00 2022 GMT
Subject: CN=3082010A0282010100B2284973C3188550F5CECCEEA8DC2F56E68F7881DFAEE63FF6D372DAB0B770B10FE3390A1D6A717D385972261F6B29F83676889F2DB071F0C8595CA8C9F6F1EC51B52CB03117B5DCE0A65309944EEC75DEBBA2FCD9D2233603CB10B1B359EF8A6C51F33DAFC2DE0A524087E651D5BC43C268AF60418C1DE99E467EE0CB26EBE95ACB7921C331F802E9C5245449DDBBC3E4CE74A8AE39731A774B22AF233F69E75F6E9521FD8628F6F5BCF1D58B769B88DA1F62AD5795D4BACF92632F816DE51748DBF587DCA66581AEACD1C835B566DF0E48D7DBB7743700EAAB3DAF1CD3BB2EC6AF1F6C24B1F17513000984619D5FF8AAFDBEDB9666AFFFD57F76A8128311270203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:28:49:73:c3:18:85:50:f5:ce:cc:ee:a8:dc:
2f:56:e6:8f:78:81:df:ae:e6:3f:f6:d3:72:da:b0:
b7:70:b1:0f:e3:39:0a:1d:6a:71:7d:38:59:72:26:
1f:6b:29:f8:36:76:88:9f:2d:b0:71:f0:c8:59:5c:
a8:c9:f6:f1:ec:51:b5:2c:b0:31:17:b5:dc:e0:a6:
53:09:94:4e:ec:75:de:bb:a2:fc:d9:d2:23:36:03:
cb:10:b1:b3:59:ef:8a:6c:51:f3:3d:af:c2:de:0a:
52:40:87:e6:51:d5:bc:43:c2:68:af:60:41:8c:1d:
e9:9e:46:7e:e0:cb:26:eb:e9:5a:cb:79:21:c3:31:
f8:02:e9:c5:24:54:49:dd:bb:c3:e4:ce:74:a8:ae:
39:73:1a:77:4b:22:af:23:3f:69:e7:5f:6e:95:21:
fd:86:28:f6:f5:bc:f1:d5:8b:76:9b:88:da:1f:62:
ad:57:95:d4:ba:cf:92:63:2f:81:6d:e5:17:48:db:
f5:87:dc:a6:65:81:ae:ac:d1:c8:35:b5:66:df:0e:
48:d7:db:b7:74:37:00:ea:ab:3d:af:1c:d3:bb:2e:
c6:af:1f:6c:24:b1:f1:75:13:00:09:84:61:9d:5f:
f8:aa:fd:be:db:96:66:af:ff:d5:7f:76:a8:12:83:
11:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DB:85:89:0B:21:F8:93:E5:8A:EA:B3:51:A0:AA:C8:47:0D:3C:D9
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230332e3131392e31332e302f32342d3234203d3e2034363232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.119.13.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4a:79:6c:84:a1:b2:84:8b:13:6d:9d:7d:92:ff:87:09:18:
e7:c2:73:26:af:8a:d6:94:80:95:aa:e9:df:c5:c2:f7:6b:f9:
fb:92:bb:02:76:a9:a6:d8:30:75:bc:41:88:39:d6:bc:0e:d7:
1d:93:fa:a2:6d:ea:d6:43:0e:1c:f9:02:bc:e5:dd:60:c1:e5:
70:0a:56:f7:5d:d0:d1:23:10:c3:cf:ad:d6:b7:a9:1b:ce:77:
5a:06:97:66:4f:f4:6a:c3:6c:5f:fd:5f:73:63:24:2b:c6:1b:
d1:bb:a5:ad:5c:36:d1:50:3d:b7:6a:58:3d:bf:52:15:cc:a9:
1d:f3:e6:a7:ca:ca:70:1b:31:29:50:b6:93:db:03:85:14:fd:
cd:1d:50:9f:a9:ae:e5:3f:98:7f:03:8f:69:99:23:e1:da:22:
fa:59:ee:44:c2:b9:f5:18:12:9d:d4:7b:c0:a4:11:be:ae:34:
ad:75:e1:3f:e8:64:91:73:d2:ff:04:de:d1:88:ee:03:d3:bd:
95:09:d8:fd:0e:b3:6a:7d:bf:c9:79:f0:39:4f:f2:0d:5a:d1:
3e:a2:0a:4f:f9:76:55:dc:78:27:eb:0c:fc:c9:c6:d4:92:c7:
3d:73:df:d1:33:dc:02:d5:55:46:6f:ed:96:7d:e3:c9:13:13:
7d:1b:94:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:10 2023 by rpki-client on console-ams.rpki-client.org