Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/323030313a6466303a376230303a3a2f34382d3438203d3e2030.roa
File: 323030313a6466303a376230303a3a2f34382d3438203d3e2030.roa (raw, json)
Hash identifier: uU83M4xX2UwB60+QspuJBOkxMWToxGoLhL8LHF1IMdU=
Subject key identifier: B7:3B:86:32:D2:88:AE:A8:5B:DB:88:E9:30:27:B0:43:D2:75:A2:0C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3CFC58D5E817046E1F689483735153B888070EBB
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323030313a6466303a376230303a3a2f34382d3438203d3e2030.roa
Signing time: Mon 31 Jan 2022 03:56:01 +0000
ROA not before: Mon 31 Jan 2022 03:51:01 +0000
ROA not after: Tue 31 Jan 2023 03:56:01 +0000
asID: 0
IP address blocks: 2001:df0:7b00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:fc:58:d5:e8:17:04:6e:1f:68:94:83:73:51:53:b8:88:07:0e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 31 03:51:01 2022 GMT
Not After : Jan 31 03:56:01 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6e:ee:b2:b4:7d:8c:f9:8f:cd:8d:b9:76:72:
bc:59:0f:a4:4c:a9:f9:fe:fc:ab:4f:9d:3b:b7:4f:
b5:1e:4f:2b:ff:55:c7:c9:40:c0:c4:03:84:61:e2:
8a:17:3a:aa:92:0f:77:3d:73:74:a6:9c:b6:c9:cc:
53:96:ab:51:34:98:c0:c8:07:92:70:35:dd:42:0d:
d1:c2:94:17:08:7d:c0:20:c5:b2:e8:d3:95:ec:d4:
9b:3f:13:a0:e1:d3:52:07:41:f9:3c:bf:aa:63:a9:
aa:d5:5a:45:2e:be:a4:ef:99:33:e8:1a:b6:60:6e:
6b:f2:34:06:b9:9e:c9:0f:8f:bd:ba:cf:06:a9:55:
bb:ae:9e:c7:92:a6:93:09:45:3b:e6:e6:92:67:5e:
19:b2:60:cc:8b:1e:70:6c:c0:09:4c:e6:6c:4b:12:
71:cb:be:75:f7:62:8a:7e:3d:4d:32:28:04:6b:10:
8f:3d:79:27:51:36:e3:f4:2c:a4:db:94:2d:46:bb:
48:a8:88:d7:e7:8c:fa:14:5b:81:4a:ce:a4:33:52:
9f:00:2f:d4:d0:cc:7c:1c:72:e5:ef:9c:ca:d0:c9:
fd:78:d2:a2:42:6f:47:c2:3f:2c:6b:ca:d7:e0:4c:
b8:44:f3:10:fd:10:89:e8:ef:62:2c:2b:1e:0d:34:
c4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3B:86:32:D2:88:AE:A8:5B:DB:88:E9:30:27:B0:43:D2:75:A2:0C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323030313a6466303a376230303a3a2f34382d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:7b00::/48
Signature Algorithm: sha256WithRSAEncryption
32:9f:93:50:67:30:cc:74:d3:ed:b9:e4:3c:f3:7d:58:da:b0:
74:fb:73:8f:a2:79:13:80:02:0e:27:b7:68:23:9a:6e:8c:60:
9e:28:db:91:ba:04:29:05:b0:f3:d3:ee:99:a7:1d:33:a5:1b:
b7:f6:dc:de:a0:3e:00:f3:29:7b:ae:9c:33:e0:75:89:cf:af:
1c:91:f6:15:e9:80:e7:56:10:ea:1a:3a:dc:fd:68:52:65:0d:
a6:44:86:5d:53:fa:81:5f:33:df:dc:24:d7:f2:31:34:b4:56:
da:a0:3f:1a:06:03:8f:0e:cc:bf:61:26:76:3b:8a:ca:78:ee:
64:16:c0:48:12:0c:06:50:31:d9:25:67:7d:b7:70:5d:eb:7f:
71:c1:35:57:a5:0c:39:d9:0c:75:d0:e0:b6:69:9a:1a:1d:df:
32:97:02:14:1f:57:c6:68:60:b1:42:10:95:81:71:cc:82:5e:
3b:86:49:15:54:7a:17:94:00:e4:00:ab:42:84:c8:3c:40:2d:
cd:19:43:3d:1f:e6:28:fb:33:c8:6a:18:b9:cd:1e:08:7d:0b:
91:e0:99:5d:75:b8:08:16:10:b4:c2:97:3e:61:87:5f:38:f5:
d7:46:98:f4:db:07:a6:d7:0e:5e:c6:24:b2:2c:57:87:6e:e2:
74:ba:51:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:12 2024 by rpki-client on console-fra.rpki-client.org