Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e35372e302e302f32302d3234203d3e2039333236.roa
File: 3230322e35372e302e302f32302d3234203d3e2039333236.roa (raw, json)
Hash identifier: GuHOjNYZf4uKa//dUx/J2Y3ZNSqowU9R82tLN11yFSc=
Subject key identifier: A7:1C:9E:8B:4D:93:B7:89:99:B0:6E:F7:B2:B9:70:22:1A:A6:5C:B5
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 60A1EEF231E5684BAE164F09303BC8FF4267DFAB
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e35372e302e302f32302d3234203d3e2039333236.roa
Signing time: Wed 28 Apr 2021 02:18:37 +0000
ROA not before: Wed 28 Apr 2021 02:13:37 +0000
ROA not after: Thu 28 Apr 2022 02:18:37 +0000
asID: 9326
IP address blocks: 202.57.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:a1:ee:f2:31:e5:68:4b:ae:16:4f:09:30:3b:c8:ff:42:67:df:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 28 02:13:37 2021 GMT
Not After : Apr 28 02:18:37 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:45:e1:25:46:5a:73:fe:f3:27:a6:0c:4e:60:
79:5c:1d:22:46:92:a7:2d:fb:f7:9e:43:62:2a:d1:
97:b7:f2:f4:eb:e0:2d:c4:8c:15:cd:96:23:84:43:
28:f3:fc:aa:b6:2d:c5:6b:de:99:12:20:a4:c5:06:
46:e2:ee:fb:e6:12:f2:22:f0:5a:b5:59:13:1f:ae:
bb:b6:5c:c2:80:93:49:dd:42:76:64:89:30:98:4e:
21:7f:91:e5:ff:d1:0d:37:bc:45:10:6b:c9:8c:ef:
ef:4d:00:6c:0f:8d:97:6c:15:da:f4:1e:08:8b:7f:
60:59:c6:08:54:e4:03:5e:a4:54:25:dc:7c:4f:99:
fd:76:9f:0c:bc:04:3a:4e:d0:7e:7d:a3:40:55:2f:
ec:ae:d9:75:b0:ec:a4:d5:83:b9:90:e0:39:6f:6e:
7b:c0:4e:b3:75:cc:5d:d6:ad:87:e4:2d:9f:d7:37:
14:a9:46:27:9f:07:9d:1c:9b:fe:a7:b6:8b:b1:f4:
1b:16:20:a7:49:e6:42:dd:3a:45:3b:72:a8:ac:f4:
9f:39:75:68:65:ce:43:a2:c0:56:77:17:01:fd:07:
0e:02:c4:46:4a:1e:ee:7a:1f:b5:61:25:a9:02:19:
00:7e:0d:f7:4a:12:8d:c6:6e:21:fa:4f:77:92:b6:
90:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1C:9E:8B:4D:93:B7:89:99:B0:6E:F7:B2:B9:70:22:1A:A6:5C:B5
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e35372e302e302f32302d3234203d3e2039333236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.0.0/20
Signature Algorithm: sha256WithRSAEncryption
31:cc:39:b5:ef:cd:9a:50:f3:a3:f9:80:14:bc:df:22:ac:54:
1c:75:37:22:50:68:60:d5:e4:24:74:e8:5a:c5:2a:bb:3b:0f:
e2:c8:25:aa:11:40:d6:b3:80:6a:8b:a1:cc:f2:49:02:f4:5c:
90:b0:a1:07:18:e4:da:59:5b:02:a1:ec:be:9c:18:5c:27:44:
5a:00:95:ed:90:1d:a2:82:55:3a:9a:be:bd:03:c3:9e:42:79:
0e:75:db:c6:07:e2:c0:fe:30:16:d9:fd:29:b0:b9:5f:32:ea:
e3:37:a0:b3:a7:66:a1:f5:5e:4d:14:14:5c:67:4f:2a:5f:04:
fe:a4:2e:cd:9b:a2:d4:09:8e:29:46:31:c7:e1:33:a4:d3:60:
f3:42:ff:98:63:f9:66:0a:97:7b:18:f0:c9:1d:b6:15:90:05:
01:ae:14:d6:94:db:f9:08:73:b3:1f:21:26:5e:d2:3d:7d:5e:
de:b1:dd:89:3f:32:b6:9c:fb:2b:fa:8e:ed:2a:fd:f4:39:33:
ea:2c:65:ed:20:ee:e3:de:31:69:d0:cc:df:83:b4:4e:1d:ef:
6e:73:ab:a0:c5:aa:4b:d9:a2:e0:e2:f3:a1:90:69:6a:d6:e1:
dc:fe:a3:65:a7:f2:43:06:04:26:ef:35:fb:9b:eb:a5:2d:c8:
7e:d0:5e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:12 2024 by rpki-client on console-fra.rpki-client.org