Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/34352e3235302e3130332e302f32342d3234203d3e203435373135.roa
File: 34352e3235302e3130332e302f32342d3234203d3e203435373135.roa (raw, json)
Hash identifier: RKJZrTcW9ifLx3fdzyMrKuKyjjAxr3kJlg6s/y+UtJY=
Subject key identifier: 5A:0E:FB:4D:C4:79:FC:70:1C:BC:78:D6:3B:C1:18:7E:51:32:21:20
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 471B7FAC654409AEC959776DF2665C6AEF6D8A62
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34352e3235302e3130332e302f32342d3234203d3e203435373135.roa
Signing time: Tue 12 Oct 2021 03:00:00 +0000
ROA not before: Tue 12 Oct 2021 02:55:00 +0000
ROA not after: Wed 12 Oct 2022 03:00:00 +0000
asID: 45715
IP address blocks: 45.250.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:1b:7f:ac:65:44:09:ae:c9:59:77:6d:f2:66:5c:6a:ef:6d:8a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 12 02:55:00 2021 GMT
Not After : Oct 12 03:00:00 2022 GMT
Subject: CN=3082010A0282010100CA1B169235C493A70ADD260976EECE6013DA447A132A19B5F6B04B462C0772313E55B8E1C9325094B1DB97F99749AE10715887804B44AB9F081A06788101F3CC0D10B04FA62F4C8C67E6477930DF009A667152A183363B5C61B798D463A56DFDF7BA93C98230668264FBF081F33EB86795FFCE6B1FF493FBC1800CE2D9E46F4AFB742C8F98BCDB793D0D5FCF2DAB9626316EE724B19045B4F3F1626DD1A79DACD565F0BB8CDAC0FCCC3309E098BADD290A28A1E04A412FEC29B83BFC4A97E1F7E9A19AD778C9F1AC35653BC0EA93B72CB694082EA957358C8C537D052BE6B63F268FF96D5FB29D72DDD54D509E5A42287A016BBD9BB63E40170672C8AB1A8C0D0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1b:16:92:35:c4:93:a7:0a:dd:26:09:76:ee:
ce:60:13:da:44:7a:13:2a:19:b5:f6:b0:4b:46:2c:
07:72:31:3e:55:b8:e1:c9:32:50:94:b1:db:97:f9:
97:49:ae:10:71:58:87:80:4b:44:ab:9f:08:1a:06:
78:81:01:f3:cc:0d:10:b0:4f:a6:2f:4c:8c:67:e6:
47:79:30:df:00:9a:66:71:52:a1:83:36:3b:5c:61:
b7:98:d4:63:a5:6d:fd:f7:ba:93:c9:82:30:66:82:
64:fb:f0:81:f3:3e:b8:67:95:ff:ce:6b:1f:f4:93:
fb:c1:80:0c:e2:d9:e4:6f:4a:fb:74:2c:8f:98:bc:
db:79:3d:0d:5f:cf:2d:ab:96:26:31:6e:e7:24:b1:
90:45:b4:f3:f1:62:6d:d1:a7:9d:ac:d5:65:f0:bb:
8c:da:c0:fc:cc:33:09:e0:98:ba:dd:29:0a:28:a1:
e0:4a:41:2f:ec:29:b8:3b:fc:4a:97:e1:f7:e9:a1:
9a:d7:78:c9:f1:ac:35:65:3b:c0:ea:93:b7:2c:b6:
94:08:2e:a9:57:35:8c:8c:53:7d:05:2b:e6:b6:3f:
26:8f:f9:6d:5f:b2:9d:72:dd:d5:4d:50:9e:5a:42:
28:7a:01:6b:bd:9b:b6:3e:40:17:06:72:c8:ab:1a:
8c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0E:FB:4D:C4:79:FC:70:1C:BC:78:D6:3B:C1:18:7E:51:32:21:20
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34352e3235302e3130332e302f32342d3234203d3e203435373135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.250.103.0/24
Signature Algorithm: sha256WithRSAEncryption
88:91:85:11:f2:e2:12:9d:f3:c1:50:f9:42:f4:50:2d:d2:4c:
d0:3a:1e:0b:11:4f:7a:cc:09:ea:0f:6a:51:12:11:9f:70:d4:
2f:8c:61:51:d5:d8:0b:b6:c2:70:89:c8:44:1e:a4:e1:71:4d:
d2:2a:0c:23:f1:59:af:ce:ab:72:bd:37:10:ca:f5:fd:28:f5:
b6:1a:9a:a6:7b:1f:73:9f:8b:bc:e1:2d:af:9e:ae:53:0e:6a:
df:8a:eb:2e:70:ed:9d:ea:e1:e1:8b:7f:fd:12:c4:36:84:b4:
bc:11:e9:40:c9:6c:87:bc:af:17:6b:59:61:6b:9a:2f:05:14:
52:74:59:74:1a:63:19:3f:92:a8:0d:8c:31:ac:51:1c:d8:79:
d4:9b:53:88:30:13:7d:85:45:6d:82:04:7a:16:41:13:be:20:
52:1b:46:e7:16:a7:fe:46:c7:43:7d:f5:95:e1:79:1e:67:f7:
ec:ea:ca:02:b4:2a:70:9c:9e:69:4b:a4:1a:01:3d:ac:b0:2a:
46:a2:d9:2c:8d:88:5f:87:4d:7f:9a:77:4d:14:8b:cb:83:04:
bf:78:7b:14:13:9c:90:9d:86:6b:0f:0d:2a:d7:69:db:bb:4d:
9f:ca:81:6b:b1:45:9d:23:f2:bc:fd:e0:f1:07:9c:1b:ae:47:
03:34:06:7d
-----BEGIN CERTIFICATE-----
MIIHCDCCBfCgAwIBAgIURxt/rGVECa7JWXdt8mZcau9timIwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMTAxMjAyNTUwMFoX
DTIyMTAxMjAzMDAwMFowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBDQTFCMTY5MjM1QzQ5M0E3MEFERDI2MDk3NkVFQ0U2MDEzREE0NDdBMTMy
QTE5QjVGNkIwNEI0NjJDMDc3MjMxM0U1NUI4RTFDOTMyNTA5NEIxREI5N0Y5OTc0
OUFFMTA3MTU4ODc4MDRCNDRBQjlGMDgxQTA2Nzg4MTAxRjNDQzBEMTBCMDRGQTYy
RjRDOEM2N0U2NDc3OTMwREYwMDlBNjY3MTUyQTE4MzM2M0I1QzYxQjc5OEQ0NjNB
NTZERkRGN0JBOTNDOTgyMzA2NjgyNjRGQkYwODFGMzNFQjg2Nzk1RkZDRTZCMUZG
NDkzRkJDMTgwMENFMkQ5RTQ2RjRBRkI3NDJDOEY5OEJDREI3OTNEMEQ1RkNGMkRB
Qjk2MjYzMTZFRTcyNEIxOTA0NUI0RjNGMTYyNkREMUE3OURBQ0Q1NjVGMEJCOENE
QUMwRkNDQzMzMDlFMDk4QkFERDI5MEEyOEExRTA0QTQxMkZFQzI5QjgzQkZDNEE5
N0UxRjdFOUExOUFENzc4QzlGMUFDMzU2NTNCQzBFQTkzQjcyQ0I2OTQwODJFQTk1
NzM1OEM4QzUzN0QwNTJCRTZCNjNGMjY4RkY5NkQ1RkIyOUQ3MkRERDU0RDUwOUU1
QTQyMjg3QTAxNkJCRDlCQjYzRTQwMTcwNjcyQzhBQjFBOEMwRDAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKGxaSNcSTpwrdJgl27s5g
E9pEehMqGbX2sEtGLAdyMT5VuOHJMlCUsduX+ZdJrhBxWIeAS0SrnwgaBniBAfPM
DRCwT6YvTIxn5kd5MN8AmmZxUqGDNjtcYbeY1GOlbf33upPJgjBmgmT78IHzPrhn
lf/Oax/0k/vBgAzi2eRvSvt0LI+YvNt5PQ1fzy2rliYxbucksZBFtPPxYm3Rp52s
1WXwu4zawPzMMwngmLrdKQoooeBKQS/sKbg7/EqX4ffpoZrXeMnxrDVlO8Dqk7cs
tpQILqlXNYyMU30FK+a2PyaP+W1fsp1y3dVNUJ5aQih6AWu9m7Y+QBcGcsirGowN
AgMBAAGjggH/MIIB+zAdBgNVHQ4EFgQUWg77TcR5/HAcvHjWO8EYflEyISAwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBggYIKwYB
BQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzM0MzUyZTMyMzUzMDJlMzEzMDMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzQzNTM3MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC36ZzANBgkqhkiG
9w0BAQsFAAOCAQEAiJGFEfLiEp3zwVD5QvRQLdJM0DoeCxFPeswJ6g9qURIRn3DU
L4xhUdXYC7bCcInIRB6k4XFN0ioMI/FZr86rcr03EMr1/Sj1thqapnsfc5+LvOEt
r56uUw5q34rrLnDtnerh4Yt//RLENoS0vBHpQMlsh7yvF2tZYWuaLwUUUnRZdBpj
GT+SqA2MMaxRHNh51JtTiDATfYVFbYIEehZBE74gUhtG5xan/kbHQ331leF5Hmf3
7OrKArQqcJyeaUukGgE9rLAqRqLZLI2IX4dNf5p3TRSLy4MEv3h7FBOckJ2Gaw8N
Ktdp27tNn8qBa7FFnSPyvP3g8QecG65HAzQGfQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:56 2023 by rpki-client on console-fra.rpki-client.org