Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/323030313a6466353a396638303a3a2f34382d3438203d3e203538383231.roa
File: 323030313a6466353a396638303a3a2f34382d3438203d3e203538383231.roa (raw, json)
Hash identifier: 0AXL3Bn+GfLIqyMihZKltWJLVKW2mwKu1Cz8ilvcInU=
Subject key identifier: 6F:6E:B1:47:30:25:53:DC:5E:93:93:30:12:02:12:7A:AC:EC:0B:E4
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6AC6787D8F1EA27E22D9B4044381053753E4AED5
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323030313a6466353a396638303a3a2f34382d3438203d3e203538383231.roa
Signing time: Fri 07 Jan 2022 09:06:12 +0000
ROA not before: Fri 07 Jan 2022 09:01:12 +0000
ROA not after: Sat 07 Jan 2023 09:06:12 +0000
asID: 58821
IP address blocks: 2001:df5:9f80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:c6:78:7d:8f:1e:a2:7e:22:d9:b4:04:43:81:05:37:53:e4:ae:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 7 09:01:12 2022 GMT
Not After : Jan 7 09:06:12 2023 GMT
Subject: CN=3082010A0282010100C9BFE6D430ED1B23DE1A2435D1F4D5EC928DF9D42FD0F9731BB5258AF3183F7E8FD4F0AC66290EC831967CD6DA13171BC13806C091D8EA2FCAA6D893BAEE27DB08484E32883A89C743905A266B854E2017CDEE8782D05426A49150B168E788E16C195C6E35134270F11D7C503F17819173C2A6FEC40A0C42934787B08CCD9EB45FC2A906D5DDB1ABF4779365B9CB54724567F3A6189D013277EAB08E17E765E30542FF23210DBAFCDA8563A473B3E81EB0749FCE89CA5829B39BCD161991EF8D5F6039C309DF839D04C91C5339664D4D623C20F2413F545DBB6587CBA7B9AE23CE0351FAB6AA084099F0DD1382111ABE4B5F153834CB778E8DFFFA2D2F39F8BD0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:e6:d4:30:ed:1b:23:de:1a:24:35:d1:f4:
d5:ec:92:8d:f9:d4:2f:d0:f9:73:1b:b5:25:8a:f3:
18:3f:7e:8f:d4:f0:ac:66:29:0e:c8:31:96:7c:d6:
da:13:17:1b:c1:38:06:c0:91:d8:ea:2f:ca:a6:d8:
93:ba:ee:27:db:08:48:4e:32:88:3a:89:c7:43:90:
5a:26:6b:85:4e:20:17:cd:ee:87:82:d0:54:26:a4:
91:50:b1:68:e7:88:e1:6c:19:5c:6e:35:13:42:70:
f1:1d:7c:50:3f:17:81:91:73:c2:a6:fe:c4:0a:0c:
42:93:47:87:b0:8c:cd:9e:b4:5f:c2:a9:06:d5:dd:
b1:ab:f4:77:93:65:b9:cb:54:72:45:67:f3:a6:18:
9d:01:32:77:ea:b0:8e:17:e7:65:e3:05:42:ff:23:
21:0d:ba:fc:da:85:63:a4:73:b3:e8:1e:b0:74:9f:
ce:89:ca:58:29:b3:9b:cd:16:19:91:ef:8d:5f:60:
39:c3:09:df:83:9d:04:c9:1c:53:39:66:4d:4d:62:
3c:20:f2:41:3f:54:5d:bb:65:87:cb:a7:b9:ae:23:
ce:03:51:fa:b6:aa:08:40:99:f0:dd:13:82:11:1a:
be:4b:5f:15:38:34:cb:77:8e:8d:ff:fa:2d:2f:39:
f8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:6E:B1:47:30:25:53:DC:5E:93:93:30:12:02:12:7A:AC:EC:0B:E4
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323030313a6466353a396638303a3a2f34382d3438203d3e203538383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df5:9f80::/48
Signature Algorithm: sha256WithRSAEncryption
97:0b:f8:cf:a4:ab:8f:c2:6e:00:28:f8:bd:51:b5:a0:b0:56:
41:ba:81:15:26:e1:cd:6b:41:d9:0a:d3:8b:81:b4:30:36:83:
0e:07:4d:b3:e7:d0:de:9b:46:ab:81:12:96:ec:95:82:5c:bd:
ce:ac:7a:9d:14:8b:21:e9:30:b7:51:ad:33:3c:c7:9f:32:b6:
18:50:19:32:f4:3f:0e:d8:0e:f5:83:64:79:d1:c3:8b:7b:64:
54:6a:e4:ee:a6:73:cf:81:83:ee:b5:92:90:0d:ed:2a:d1:b5:
e6:7f:3f:0a:3a:39:2b:3e:cf:85:87:a1:a8:59:bd:a5:99:15:
b9:d9:29:0a:05:a6:f9:6c:92:0b:65:46:c0:10:b0:3f:31:2d:
c0:15:89:95:b4:0c:4c:8f:7d:0e:de:58:38:97:04:41:4e:18:
a4:cb:ea:8a:88:ed:af:8f:b7:27:e9:77:1d:24:77:b0:51:9f:
af:55:6c:c0:18:12:02:d0:d8:35:2b:c2:af:83:59:8a:22:5f:
59:d6:61:61:79:6e:39:15:44:d3:c4:39:d1:fb:48:d7:8c:4e:
e4:0f:f0:02:cf:4d:5a:e2:b7:a2:b4:e7:21:d1:0c:c3:de:70:
bf:16:a3:9c:33:4b:c3:dc:da:0a:e3:2e:78:34:f5:bf:60:58:
91:58:cc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:12 2024 by rpki-client on console-fra.rpki-client.org