Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e38302e3231382e302f32332d3234203d3e203137363730.roa
File: 3230322e38302e3231382e302f32332d3234203d3e203137363730.roa (raw, json)
Hash identifier: okRZ402/IfPmsjOV2PyDBg+rGSIGrMmmljTLn5wYw0Q=
Subject key identifier: 3F:16:8E:A8:6D:77:AB:9B:89:68:AD:F0:C4:79:73:77:C9:04:84:4B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 69589288B32763474C784B09DB853F61C78D312A
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e38302e3231382e302f32332d3234203d3e203137363730.roa
Signing time: Fri 07 May 2021 11:22:03 +0000
ROA not before: Fri 07 May 2021 11:17:03 +0000
ROA not after: Sat 07 May 2022 11:22:03 +0000
asID: 17670
IP address blocks: 202.80.218.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:58:92:88:b3:27:63:47:4c:78:4b:09:db:85:3f:61:c7:8d:31:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: May 7 11:17:03 2021 GMT
Not After : May 7 11:22:03 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:be:db:0c:0e:65:37:91:04:7c:34:46:d4:4a:
3a:ef:5b:a9:03:80:e8:5d:8e:2d:06:e9:b2:5d:df:
f5:7b:1e:b1:3c:f5:eb:85:9c:8c:e7:a7:28:b5:f4:
0c:54:5d:dd:32:2e:73:50:a9:14:b3:6f:77:d8:d6:
5a:0e:9e:e7:84:59:bc:45:b8:33:44:42:2f:3e:99:
9c:7c:c5:02:6d:86:fc:33:20:db:55:01:d0:2c:5f:
eb:0d:73:9c:0c:75:f8:99:6c:95:56:92:31:71:64:
0f:0a:50:f6:17:99:e7:06:32:02:1c:46:f8:0b:5d:
44:97:68:c8:f6:b1:e5:17:92:b3:a4:1c:54:b6:d8:
f1:5a:b2:ed:d1:97:54:5a:e7:9b:cc:fc:ea:91:a1:
47:d2:95:4b:30:c0:1d:cd:59:91:cb:ac:90:d5:6b:
93:12:3a:68:0e:b4:45:18:b7:ef:9a:64:2e:fe:4b:
77:a6:74:ab:40:6b:5f:13:e0:54:66:2d:28:d6:79:
22:21:03:ee:1c:ab:d5:39:a2:94:cf:f8:4e:47:2b:
0d:45:85:b4:29:0f:3c:65:11:24:4d:9f:03:3a:f5:
2c:dc:f4:51:95:34:de:62:e6:8f:c2:92:0b:ec:f1:
5a:da:f0:d2:3a:b4:4f:32:f1:2f:8e:10:fe:1e:18:
c9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:16:8E:A8:6D:77:AB:9B:89:68:AD:F0:C4:79:73:77:C9:04:84:4B
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3230322e38302e3231382e302f32332d3234203d3e203137363730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.80.218.0/23
Signature Algorithm: sha256WithRSAEncryption
07:94:db:c2:0e:4f:85:7f:0d:4e:3d:6c:d9:02:c6:c3:73:d4:
01:db:09:c2:82:b6:24:15:88:b9:c0:0f:9f:ce:9a:ac:23:ce:
28:60:c3:1d:e7:a9:a5:69:2f:ea:8a:5d:38:e6:e3:0f:77:aa:
dd:ea:53:b7:99:1b:ff:77:35:3e:09:5b:81:be:04:91:13:84:
3f:ad:4a:b1:50:ac:40:24:c1:fb:2d:52:b2:cc:1c:e3:75:41:
46:f9:f9:f2:3b:28:e6:bb:84:98:20:4b:da:a2:81:2d:b0:80:
b7:fc:28:59:b4:c3:6a:be:e1:12:54:88:1d:ab:8d:13:17:4e:
ef:4a:5d:37:16:53:23:32:df:72:6e:e5:07:8d:ba:ba:00:84:
1a:e4:20:8e:fc:46:03:5f:6d:47:fb:f8:3a:0e:f9:6e:8d:77:
67:97:18:e5:00:23:a9:8b:54:e3:1d:30:e3:32:9a:bc:d2:30:
d2:fe:f8:27:7c:a0:80:05:f7:06:ff:12:1d:5b:b7:69:d5:68:
21:4c:84:e7:09:3e:ee:40:6c:48:fe:81:3f:1f:72:e4:af:72:
ad:46:2b:78:a3:d5:fc:91:92:a0:d4:85:21:c1:4d:9d:05:3b:
e7:f1:47:67:df:19:74:55:71:0f:86:6d:7a:52:8e:6d:b8:d5:
91:89:54:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:48 2024 by rpki-client on console-ams.rpki-client.org