Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3131362e36382e3136352e302f32342d3234203d3e203538353532.roa
File:                     3131362e36382e3136352e302f32342d3234203d3e203538353532.roa (raw, json)
Hash identifier:          qc+HiFLS6Df2nsxoHgDQSsrVLe5ZMJAVuzN8mle+P/E=
Subject key identifier:   3E:DE:1B:62:2D:AE:7E:23:22:F9:99:8D:48:26:F5:4F:12:02:BB:A8
Certificate issuer:       /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial:       670FEF04EF3E5D97CFA504C10491222FDA92B856
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3131362e36382e3136352e302f32342d3234203d3e203538353532.roa
Signing time:             Thu 24 Feb 2022 09:00:01 +0000
ROA not before:           Thu 24 Feb 2022 08:55:01 +0000
ROA not after:            Fri 24 Feb 2023 09:00:01 +0000
asID:                     58552
IP address blocks:        116.68.165.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:0f:ef:04:ef:3e:5d:97:cf:a5:04:c1:04:91:22:2f:da:92:b8:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
        Validity
            Not Before: Feb 24 08:55:01 2022 GMT
            Not After : Feb 24 09:00:01 2023 GMT
        Subject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
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:37:79:68:6f:f6:05:02:aa:2b:1b:59:6f:61:
                    6c:6f:a0:c0:af:10:69:d9:d4:14:cf:c9:79:c0:59:
                    a9:7c:8c:63:c8:66:1e:7f:2f:ea:a6:80:9f:b7:c5:
                    b8:51:58:68:d7:2a:39:18:1b:cc:ad:92:09:87:65:
                    aa:07:50:5f:4e:e1:fe:18:34:a9:41:d5:d1:ac:c0:
                    03:97:63:34:d1:9b:d5:1a:df:98:e3:a6:f8:19:ba:
                    de:1c:b4:97:42:dd:e8:7b:94:26:c7:70:3e:d8:7b:
                    5c:20:7c:6d:4f:a9:a8:98:2f:a9:19:44:30:47:45:
                    64:6a:b3:34:86:2a:3c:ea:37:a8:71:67:e0:20:ce:
                    2b:d0:63:3b:25:01:72:1c:66:db:49:b6:b9:4e:f0:
                    a5:ab:64:64:86:a7:5e:90:cc:e4:a0:9e:33:f5:b0:
                    5c:29:e0:1a:df:17:f5:43:6b:ad:74:6e:6b:11:a0:
                    d9:4c:b2:20:73:cd:38:89:29:1d:c7:b3:ad:6e:9b:
                    4a:09:ca:fc:97:0c:4e:2d:8a:ac:2f:17:8c:12:8b:
                    9b:c3:c6:7e:f4:36:83:af:b0:41:cc:ae:ea:c2:26:
                    bd:95:97:22:ac:6e:3e:64:aa:6c:3c:0e:df:f4:68:
                    2d:b6:79:16:33:05:79:31:7d:38:1d:c5:09:71:ac:
                    5f:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:DE:1B:62:2D:AE:7E:23:22:F9:99:8D:48:26:F5:4F:12:02:BB:A8
            X509v3 Authority Key Identifier:
                keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3131362e36382e3136352e302f32342d3234203d3e203538353532.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  116.68.165.0/24

    Signature Algorithm: sha256WithRSAEncryption
         97:88:aa:5d:1b:f6:53:79:df:8f:c5:e2:2a:45:c5:1f:4f:6e:
         02:53:43:72:85:7c:3c:71:0f:67:aa:5f:6c:c9:85:db:43:55:
         1d:5d:4c:08:b0:40:ac:bf:10:39:c8:1d:ef:a6:15:3a:7a:6a:
         45:ff:5e:e5:6c:ce:e3:67:46:e5:35:77:8d:6e:40:ea:f8:b5:
         9d:f4:b3:fd:c9:98:c8:5f:78:df:2e:bf:82:4e:a3:23:12:81:
         47:ee:07:c1:bc:51:43:a8:b7:3b:ae:96:38:f5:d3:71:16:03:
         32:94:8f:fa:ae:d9:af:8e:c3:e0:f7:68:af:4e:6a:6a:6b:3a:
         bd:72:43:b9:e5:c7:02:48:3b:3d:d6:c5:fe:d0:9d:06:87:39:
         8c:01:b8:63:d1:0c:91:16:f9:14:7a:bd:66:87:95:b2:9e:ff:
         ef:56:14:ec:87:51:f7:d1:d0:cd:44:68:f7:c8:2a:f8:c6:d2:
         d5:f3:0f:ea:01:8d:fc:c5:f2:e7:d2:27:f2:64:03:80:81:42:
         ab:94:52:cc:f4:2f:01:97:3c:e0:28:f2:fe:47:0e:8e:ea:d8:
         56:b9:ec:9b:c4:bd:08:2b:c8:a2:8e:bb:74:b6:90:3c:f6:60:
         b6:aa:4b:cc:64:d8:56:c1:39:9d:8b:ee:01:e8:ee:6d:44:1d:
         24:24:85:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:12 2024 by rpki-client on console-fra.rpki-client.org