Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e35382e3139322e302f32302d3234203d3e203435373031.roa
File: 3230322e35382e3139322e302f32302d3234203d3e203435373031.roa (raw, json)
Hash identifier: r/QSqT8BqZW4jDk5Zr+Wb3F935Rp4e8lrdPRReGEaVM=
Subject key identifier: 67:9C:89:F2:38:C8:06:C7:4C:80:96:6E:3F:91:FB:26:9D:76:2F:41
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0D0E52B4C795DEEA086ED8D29D200B7E1E72194B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e35382e3139322e302f32302d3234203d3e203435373031.roa
Signing time: Wed 09 Jun 2021 04:20:41 +0000
ROA not before: Wed 09 Jun 2021 04:15:41 +0000
ROA not after: Thu 09 Jun 2022 04:20:41 +0000
asID: 45701
IP address blocks: 202.58.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:0e:52:b4:c7:95:de:ea:08:6e:d8:d2:9d:20:0b:7e:1e:72:19:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jun 9 04:15:41 2021 GMT
Not After : Jun 9 04:20:41 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f2:99:8f:80:33:36:b2:02:cd:24:d3:14:4c:
3d:30:cc:3c:c3:a7:05:c0:24:45:10:03:eb:20:19:
50:94:0a:73:e8:62:15:48:bb:b3:47:8a:69:98:d2:
d3:0e:f6:77:3f:45:91:37:69:2b:5c:3f:21:a4:32:
d1:ac:b2:8c:a2:25:3c:04:d0:54:62:83:01:ba:d8:
08:44:8f:f1:4c:16:5f:32:a4:a1:64:ec:65:2d:77:
35:ed:94:bc:3b:46:57:17:6c:61:a2:21:18:5b:99:
70:a8:c6:1a:c5:79:ef:1e:56:a5:20:92:23:bc:70:
41:e9:79:55:e5:68:d7:aa:7b:37:c9:35:64:f9:a5:
47:98:5d:73:1b:06:54:e4:ec:63:13:0e:38:6b:82:
7c:fe:58:5a:29:a5:35:26:58:9f:a0:c7:26:aa:da:
15:88:40:8a:19:a3:f4:c2:63:2b:79:d3:81:b4:da:
e2:fa:ad:81:e0:d0:40:39:63:d8:14:a2:2a:e6:fd:
2f:d5:a9:8a:a7:e7:fb:91:1d:71:e1:de:c2:e6:cb:
53:fb:93:36:e5:fa:2d:1c:cd:f9:21:da:e5:56:6f:
a2:9b:a5:f8:52:08:dc:b8:29:41:22:b4:d2:a5:61:
7f:1b:dd:e5:1c:bf:99:f4:f4:46:95:2f:e5:d0:e9:
77:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:9C:89:F2:38:C8:06:C7:4C:80:96:6E:3F:91:FB:26:9D:76:2F:41
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e35382e3139322e302f32302d3234203d3e203435373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.58.192.0/20
Signature Algorithm: sha256WithRSAEncryption
1f:bd:2a:69:2a:4c:a2:a2:90:e1:14:97:97:c9:4a:c2:e9:77:
e7:bd:a8:0d:5a:b6:fd:2f:46:d0:1b:a3:20:87:b1:e4:b6:d6:
25:fa:2b:03:8a:29:f7:6c:64:79:f5:1e:0d:ae:3b:c2:d7:2a:
52:a6:21:3b:98:8c:95:f8:6d:46:2f:08:ee:ab:74:57:48:2a:
bc:e0:05:a5:ae:bd:e3:d5:8b:70:e4:f6:8b:7d:84:72:2f:75:
a9:63:d6:72:19:51:4f:1d:0c:24:11:91:ce:c8:5c:3c:6e:94:
93:6b:1a:fe:46:69:0c:da:23:b7:a8:22:fe:1e:de:65:88:98:
3f:c2:c2:92:9c:c6:88:b0:d3:0d:e9:91:db:82:cf:03:51:48:
d4:1c:20:1b:cb:0f:bd:71:96:f8:32:2e:67:85:0b:5d:4e:8e:
4b:24:42:4d:b1:da:ce:b9:31:1c:67:cc:6a:94:48:15:d7:ce:
a1:db:a8:d2:1e:1c:da:1e:cf:d9:ad:23:2b:14:26:9a:12:c4:
bb:2e:e9:90:8f:80:03:d3:df:ea:d3:e4:8f:76:f6:45:33:11:
ba:d3:c0:3f:ce:74:89:af:ed:27:73:a1:6e:f6:ff:e4:1c:76:
56:12:5b:f0:35:1d:df:e4:4a:ec:7c:51:d8:28:9d:24:43:f7:
e4:66:f1:85
-----BEGIN CERTIFICATE-----
MIIHCDCCBfCgAwIBAgIUDQ5StMeV3uoIbtjSnSALfh5yGUswDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMDYwOTA0MTU0MVoX
DTIyMDYwOTA0MjA0MVowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBEMUYyOTk4RjgwMzMzNkIyMDJDRDI0RDMxNDRDM0QzMENDM0NDM0E3MDVD
MDI0NDUxMDAzRUIyMDE5NTA5NDBBNzNFODYyMTU0OEJCQjM0NzhBNjk5OEQyRDMw
RUY2NzczRjQ1OTEzNzY5MkI1QzNGMjFBNDMyRDFBQ0IyOENBMjI1M0MwNEQwNTQ2
MjgzMDFCQUQ4MDg0NDhGRjE0QzE2NUYzMkE0QTE2NEVDNjUyRDc3MzVFRDk0QkMz
QjQ2NTcxNzZDNjFBMjIxMTg1Qjk5NzBBOEM2MUFDNTc5RUYxRTU2QTUyMDkyMjNC
QzcwNDFFOTc5NTVFNTY4RDdBQTdCMzdDOTM1NjRGOUE1NDc5ODVENzMxQjA2NTRF
NEVDNjMxMzBFMzg2QjgyN0NGRTU4NUEyOUE1MzUyNjU4OUZBMEM3MjZBQURBMTU4
ODQwOEExOUEzRjRDMjYzMkI3OUQzODFCNERBRTJGQUFEODFFMEQwNDAzOTYzRDgx
NEEyMkFFNkZEMkZENUE5OEFBN0U3RkI5MTFENzFFMURFQzJFNkNCNTNGQjkzMzZF
NUZBMkQxQ0NERjkyMURBRTU1NjZGQTI5QkE1Rjg1MjA4RENCODI5NDEyMkI0RDJB
NTYxN0YxQkRERTUxQ0JGOTlGNEY0NDY5NTJGRTVEMEU5Nzc3NzAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR8pmPgDM2sgLNJNMUTD0w
zDzDpwXAJEUQA+sgGVCUCnPoYhVIu7NHimmY0tMO9nc/RZE3aStcPyGkMtGssoyi
JTwE0FRigwG62AhEj/FMFl8ypKFk7GUtdzXtlLw7RlcXbGGiIRhbmXCoxhrFee8e
VqUgkiO8cEHpeVXlaNeqezfJNWT5pUeYXXMbBlTk7GMTDjhrgnz+WFoppTUmWJ+g
xyaq2hWIQIoZo/TCYyt504G02uL6rYHg0EA5Y9gUoirm/S/VqYqn5/uRHXHh3sLm
y1P7kzbl+i0czfkh2uVWb6KbpfhSCNy4KUEitNKlYX8b3eUcv5n09EaVL+XQ6Xd3
AgMBAAGjggH/MIIB+zAdBgNVHQ4EFgQUZ5yJ8jjIBsdMgJZuP5H7Jp12L0EwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBggYIKwYB
BQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMyMzAzMjJlMzUzODJlMzEzOTMyMmUzMDJmMzIz
MDJkMzIzNDIwM2QzZTIwMzQzNTM3MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMo6wDANBgkqhkiG
9w0BAQsFAAOCAQEAH70qaSpMoqKQ4RSXl8lKwul3572oDVq2/S9G0BujIIex5LbW
JforA4op92xkefUeDa47wtcqUqYhO5iMlfhtRi8I7qt0V0gqvOAFpa6949WLcOT2
i32Eci91qWPWchlRTx0MJBGRzshcPG6Uk2sa/kZpDNojt6gi/h7eZYiYP8LCkpzG
iLDTDemR24LPA1FI1BwgG8sPvXGW+DIuZ4ULXU6OSyRCTbHazrkxHGfMapRIFdfO
oduo0h4c2h7P2a0jKxQmmhLEuy7pkI+AA9Pf6tPkj3b2RTMRutPAP850ia/tJ3Oh
bvb/5Bx2VhJb8DUd3+RK7HxR2CidJEP35GbxhQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:48 2024 by rpki-client on console-ams.rpki-client.org