Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa
File: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (raw, json)
Hash identifier: vPNzCWIyYtOZe7f96h5td6D6Uft0FnbonKfbUAHHDjE=
Subject key identifier: 9A:B1:1C:47:1D:25:D5:04:3D:F2:C2:65:6F:EB:F3:10:F5:5F:45:12
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 789A04FBEB4B208EB64D428E1494CC0393DEEA6B
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa
Signing time: Wed 13 Mar 2024 04:51:09 +0000
ROA not before: Wed 13 Mar 2024 04:46:09 +0000
ROA not after: Wed 12 Mar 2025 04:51:09 +0000
asID: 152407
IP address blocks: 157.20.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:9a:04:fb:eb:4b:20:8e:b6:4d:42:8e:14:94:cc:03:93:de:ea:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 13 04:46:09 2024 GMT
Not After : Mar 12 04:51:09 2025 GMT
Subject: CN=9AB11C471D25D5043DF2C2656FEBF310F55F4512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:e0:d8:a1:21:7b:04:da:98:a0:26:29:b6:
1c:77:5e:5d:b4:14:f0:78:8d:56:52:80:50:7a:ee:
4b:38:f8:e5:20:ae:e9:d8:a3:d7:65:84:f6:ba:b2:
bb:05:fa:a8:72:f4:aa:8c:22:49:93:83:b4:84:38:
c3:3f:06:b1:bb:ad:29:55:d0:c5:30:ff:e8:b1:a4:
03:51:e4:2d:4b:25:30:8a:12:95:62:e5:e6:74:a1:
bf:1d:16:73:1b:04:e6:78:66:15:aa:32:49:ce:d4:
59:83:53:c7:e7:81:24:88:e5:50:82:2e:ea:4a:3a:
7f:35:7e:a8:6f:1c:e9:9c:b7:e4:e8:65:19:c3:30:
78:46:8d:d8:2d:a7:2a:55:d3:b7:2b:95:79:c9:5d:
5b:c0:a1:76:ff:92:d1:53:82:64:ab:21:99:16:f9:
22:ac:b4:14:4f:1d:2c:e8:4d:b5:c3:3a:ff:d1:3a:
9c:1c:c7:1b:da:a3:e1:18:13:f2:97:7f:4f:14:46:
8a:f6:43:79:af:c8:98:d8:11:d1:19:b9:2f:c8:4b:
7b:9a:6b:73:f2:53:8d:f4:37:48:c4:68:1f:dc:0d:
c3:3a:c5:4a:79:67:65:5d:a1:50:bb:0a:e3:08:b1:
6d:ce:3e:9b:0c:11:0e:76:f9:4a:2e:31:eb:89:61:
d3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B1:1C:47:1D:25:D5:04:3D:F2:C2:65:6F:EB:F3:10:F5:5F:45:12
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e39322e302f32332d3234203d3e20313532343037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.92.0/23
Signature Algorithm: sha256WithRSAEncryption
84:55:6b:3d:10:ee:58:8d:c7:c5:bf:ff:28:12:1c:8a:19:aa:
2b:83:5b:a8:81:d8:03:a3:6d:b0:05:dc:87:66:0a:2d:94:53:
2a:24:14:9e:03:aa:14:3d:4d:f2:11:c5:70:8a:55:68:c1:26:
30:60:a2:5d:1c:e8:30:db:ce:15:df:17:83:86:7e:57:b5:b1:
a3:c1:5a:40:56:80:78:b3:38:9e:a0:8b:57:7f:39:7b:92:f2:
bb:48:ce:e4:50:09:59:e8:6a:ca:04:5e:4c:fb:3d:35:5a:75:
67:4c:48:d4:08:05:41:49:60:84:8e:3c:cc:50:73:bb:c6:7b:
b1:94:23:ff:e5:20:c6:c4:57:62:26:1e:9d:71:6e:d9:a4:b2:
fe:3e:47:16:c5:9e:9f:88:1d:65:29:de:55:72:27:52:ff:cd:
4e:4b:37:c4:21:95:bb:74:c0:79:ec:5f:d3:31:78:1b:2d:12:
bf:09:ae:20:b5:d8:43:bd:9a:d2:09:ab:43:ad:30:23:52:2b:
a0:8b:98:c4:41:15:51:30:88:5b:67:b8:f9:81:82:93:4a:f9:
18:de:e3:c0:20:0e:a0:13:29:42:e7:1d:8f:11:d6:55:3a:0f:
91:c0:b9:9b:0b:66:eb:5d:90:ee:3b:b9:af:2b:43:3c:c5:02:
67:ba:b0:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:59:10 2025 by rpki-client