Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/323430343a626463303a3a2f33322d3438203d3e20313338383339.roa
File: 323430343a626463303a3a2f33322d3438203d3e20313338383339.roa (raw, json)
Hash identifier: K7vzUlePpkwtV9X10s1/tUgGUi/thpVAz/UXb2tXGKg=
Subject key identifier: 28:0A:16:0D:31:86:B1:C8:22:31:B0:57:46:BE:64:B8:70:79:61:91
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 37B08D3C4C0D8F39AD45204B9D3C08714C5F1CC6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323430343a626463303a3a2f33322d3438203d3e20313338383339.roa
Signing time: Wed 06 Oct 2021 05:00:01 +0000
ROA not before: Wed 06 Oct 2021 04:55:01 +0000
ROA not after: Thu 06 Oct 2022 05:00:01 +0000
asID: 138839
IP address blocks: 2404:bdc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:b0:8d:3c:4c:0d:8f:39:ad:45:20:4b:9d:3c:08:71:4c:5f:1c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 6 04:55:01 2021 GMT
Not After : Oct 6 05:00:01 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:d3:66:e0:91:d2:1b:58:10:e9:c3:1b:e6:
27:cb:7c:f3:7a:c2:26:7d:c6:4a:e8:c0:09:d8:dd:
49:88:f0:94:6a:5e:05:ab:76:4a:75:02:13:51:bd:
f7:74:36:d6:a3:c8:89:bc:4c:b2:41:4c:57:64:38:
5a:35:f3:40:7a:e3:ea:bd:1c:72:51:7b:81:76:0c:
75:6c:0f:57:1c:bf:57:c2:b3:bf:3e:2b:ee:30:02:
c8:24:85:a5:1d:4f:f8:ac:0b:e0:83:d3:3e:a7:bc:
ca:96:de:1b:ad:ab:34:f3:57:0f:4b:b1:2b:9a:7d:
ab:ce:bd:bb:bc:a4:31:6b:87:18:d7:1e:ab:a9:57:
31:77:6a:8b:89:18:ad:dc:bc:6f:61:61:f8:9b:61:
5c:26:d2:1b:2f:b9:27:61:16:69:af:28:68:6b:10:
6f:c3:13:28:24:54:fc:00:42:81:f3:6f:22:4a:e7:
fa:2b:e2:9e:d8:11:af:65:df:38:d9:be:30:2e:e3:
37:7a:59:b9:b9:ea:d9:e1:90:5e:c0:e2:02:0d:cd:
17:f9:04:65:1c:35:90:4f:d1:d3:3b:b7:49:21:f3:
98:be:eb:3e:31:43:67:54:e7:d1:a4:bd:f7:e6:d0:
e4:de:bc:4b:af:f9:0b:4c:e9:0d:ed:7b:40:79:8b:
3c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0A:16:0D:31:86:B1:C8:22:31:B0:57:46:BE:64:B8:70:79:61:91
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323430343a626463303a3a2f33322d3438203d3e20313338383339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:bdc0::/32
Signature Algorithm: sha256WithRSAEncryption
2b:b1:72:67:6b:17:5a:60:10:58:2b:08:01:81:fe:d5:47:0b:
d9:fb:0e:be:77:12:63:d9:2d:f7:16:c3:fc:65:12:7c:af:7e:
1a:75:54:0f:a9:34:69:b0:5e:3e:3d:9a:62:12:9f:15:a8:7c:
fa:fa:9b:14:25:6e:89:9e:cf:e0:31:34:a0:3e:6b:a7:cc:68:
9a:9b:52:b1:fb:72:c9:63:6b:77:07:ab:9f:de:40:42:ac:69:
af:d4:49:17:f8:10:49:13:db:ed:8c:07:87:d0:f1:4a:c6:a0:
5f:e8:ca:b3:0d:bb:9b:8f:3f:f2:92:0a:6e:b8:53:f0:4e:09:
2a:f1:99:c1:e2:16:c2:a7:a8:98:8f:33:cb:2a:c3:5a:2f:e3:
64:47:e0:7a:2a:3d:fb:1f:38:e1:d8:b4:94:20:23:9b:c4:f8:
00:af:f1:ee:53:c8:d1:dc:c2:e3:23:4c:dd:b4:21:00:8e:6f:
ed:a4:a1:49:7d:b6:94:29:30:61:9f:49:04:ff:08:3c:90:28:
bf:3d:0b:17:73:a7:92:27:ac:42:55:9d:04:4f:36:12:4d:9c:
87:fe:bb:25:fc:98:23:58:98:5d:6e:da:45:31:19:ab:49:04:
f8:ce:67:60:98:b8:85:3f:3a:27:03:bd:57:60:93:b6:b1:18:
d0:72:8d:ec
-----BEGIN CERTIFICATE-----
MIIHCTCCBfGgAwIBAgIUN7CNPEwNjzmtRSBLnTwIcUxfHMYwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMTAwNjA0NTUwMVoX
DTIyMTAwNjA1MDAwMVowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBCQjlDRDM2NkUwOTFEMjFCNTgxMEU5QzMxQkU2MjdDQjdDRjM3QUMyMjY3
REM2NEFFOEMwMDlEOERENDk4OEYwOTQ2QTVFMDVBQjc2NEE3NTAyMTM1MUJERjc3
NDM2RDZBM0M4ODlCQzRDQjI0MTRDNTc2NDM4NUEzNUYzNDA3QUUzRUFCRDFDNzI1
MTdCODE3NjBDNzU2QzBGNTcxQ0JGNTdDMkIzQkYzRTJCRUUzMDAyQzgyNDg1QTUx
RDRGRjhBQzBCRTA4M0QzM0VBN0JDQ0E5NkRFMUJBREFCMzRGMzU3MEY0QkIxMkI5
QTdEQUJDRUJEQkJCQ0E0MzE2Qjg3MThENzFFQUJBOTU3MzE3NzZBOEI4OTE4QURE
Q0JDNkY2MTYxRjg5QjYxNUMyNkQyMUIyRkI5Mjc2MTE2NjlBRjI4Njg2QjEwNkZD
MzEzMjgyNDU0RkMwMDQyODFGMzZGMjI0QUU3RkEyQkUyOUVEODExQUY2NURGMzhE
OUJFMzAyRUUzMzc3QTU5QjlCOUVBRDlFMTkwNUVDMEUyMDIwRENEMTdGOTA0NjUx
QzM1OTA0RkQxRDMzQkI3NDkyMUYzOThCRUVCM0UzMTQzNjc1NEU3RDFBNEJERjdF
NkQwRTRERUJDNEJBRkY5MEI0Q0U5MERFRDdCNDA3OThCM0M4MzAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7nNNm4JHSG1gQ6cMb5ifL
fPN6wiZ9xkrowAnY3UmI8JRqXgWrdkp1AhNRvfd0NtajyIm8TLJBTFdkOFo180B6
4+q9HHJRe4F2DHVsD1ccv1fCs78+K+4wAsgkhaUdT/isC+CD0z6nvMqW3hutqzTz
Vw9LsSuafavOvbu8pDFrhxjXHqupVzF3aouJGK3cvG9hYfibYVwm0hsvuSdhFmmv
KGhrEG/DEygkVPwAQoHzbyJK5/or4p7YEa9l3zjZvjAu4zd6Wbm56tnhkF7A4gIN
zRf5BGUcNZBP0dM7t0kh85i+6z4xQ2dU59Gkvffm0OTevEuv+QtM6Q3te0B5izyD
AgMBAAGjggIAMIIB/DAdBgNVHQ4EFgQUKAoWDTGGscgiMbBXRr5kuHB5YZEwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBggYIKwYB
BQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMyMzQzMDM0M2E2MjY0NjMzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEvcAwDQYJKoZI
hvcNAQELBQADggEBACuxcmdrF1pgEFgrCAGB/tVHC9n7Dr53EmPZLfcWw/xlEnyv
fhp1VA+pNGmwXj49mmISnxWofPr6mxQlbomez+AxNKA+a6fMaJqbUrH7cslja3cH
q5/eQEKsaa/USRf4EEkT2+2MB4fQ8UrGoF/oyrMNu5uPP/KSCm64U/BOCSrxmcHi
FsKnqJiPM8sqw1ov42RH4HoqPfsfOOHYtJQgI5vE+ACv8e5TyNHcwuMjTN20IQCO
b+2koUl9tpQpMGGfSQT/CDyQKL89Cxdzp5InrEJVnQRPNhJNnIf+uyX8mCNYmF1u
2kUxGatJBPjOZ2CYuIU/OicDvVdgk7axGNByjew=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:56 2023 by rpki-client on console-fra.rpki-client.org