Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/323430373a3763303a3130303a3a2f34302d3438203d3e2039343232.roa
File: 323430373a3763303a3130303a3a2f34302d3438203d3e2039343232.roa (raw, json)
Hash identifier: EQxFYIu95mMnOlTT4Haxd5BJYMw8m+Ohc7hOcJVlW6Q=
Subject key identifier: 7A:C1:63:89:2F:2E:0B:29:AE:CD:71:1E:38:EA:89:23:30:B1:FA:E0
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2FFD57064E7EEC80E72EF234001BEAA23FF398E5
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323430373a3763303a3130303a3a2f34302d3438203d3e2039343232.roa
Signing time: Wed 16 Jun 2021 08:18:52 +0000
ROA not before: Wed 16 Jun 2021 08:13:52 +0000
ROA not after: Thu 16 Jun 2022 08:18:52 +0000
asID: 9422
IP address blocks: 2407:7c0:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:fd:57:06:4e:7e:ec:80:e7:2e:f2:34:00:1b:ea:a2:3f:f3:98:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jun 16 08:13:52 2021 GMT
Not After : Jun 16 08:18:52 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:64:a3:69:89:1d:19:85:30:fb:f3:9d:1f:
ff:2f:8d:de:d8:08:74:d2:c3:f2:65:c6:93:92:b0:
f0:0d:3d:87:e9:ab:5d:b6:4c:bf:a5:a6:86:39:ca:
9e:38:f9:b9:eb:d0:a8:1d:74:a4:2f:e1:e4:a1:98:
9e:c8:f9:56:e8:fd:77:6d:1f:b2:ea:25:79:26:4f:
96:e3:96:9b:80:cb:be:44:be:bb:a2:a3:a8:f7:72:
70:fc:63:e7:4d:87:76:37:88:d0:3c:e7:70:de:51:
e8:f9:d5:b0:cc:c3:19:20:80:ba:d6:87:c7:5e:a8:
5a:62:11:b1:ff:cc:e0:11:03:b0:98:fe:4e:85:c9:
b5:b6:83:8f:ac:df:8b:b7:21:64:c5:ff:bf:01:0a:
c7:08:51:00:46:56:91:71:04:91:c6:88:a8:03:b1:
77:d6:a2:73:b6:f3:79:cf:d6:69:4b:73:36:35:4f:
75:0a:cf:77:aa:7c:d3:cb:45:c2:d3:ee:e1:b7:c1:
32:40:f0:48:9b:8b:38:66:cc:92:7c:06:a6:0e:d6:
5c:11:0f:2f:22:ad:92:46:2d:64:d2:b7:ac:d4:d5:
c4:f6:d1:d2:f1:ef:31:48:f8:7b:b1:01:0e:b3:77:
0f:0b:7a:cd:85:5f:0d:f4:d0:65:57:7c:9f:0c:a9:
99:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C1:63:89:2F:2E:0B:29:AE:CD:71:1E:38:EA:89:23:30:B1:FA:E0
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/323430373a3763303a3130303a3a2f34302d3438203d3e2039343232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:7c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
49:06:36:19:fd:f0:c9:c8:10:1a:ec:f2:9d:96:9a:f8:ee:65:
1b:11:77:91:6f:c6:c7:60:4c:64:a9:90:35:2a:7e:0f:67:eb:
cb:e5:25:24:7f:83:ea:26:8f:c0:04:2a:96:b1:f2:c9:f7:f0:
81:43:15:68:ce:4e:21:e6:a8:2d:77:d8:29:b0:68:cd:bb:41:
09:af:21:4f:4e:3e:95:78:97:d6:64:6a:45:6d:51:4d:7a:77:
a4:55:94:bf:b8:7f:0b:41:24:4c:da:b2:44:85:04:4e:df:13:
4c:27:31:6a:08:ab:7b:03:bb:9e:ed:03:d5:a4:18:34:36:a2:
6f:8f:03:8b:66:83:57:dc:c3:25:45:69:00:ac:50:bf:27:91:
b8:a6:4a:24:ff:d3:26:6a:6e:fd:4f:d7:31:f3:a5:68:80:5f:
ee:81:76:9c:f5:8e:98:05:e0:1c:ec:a1:bf:99:b3:b5:07:9e:
d1:cf:9e:78:b1:2c:35:d4:8d:54:2a:68:3d:0b:43:f3:66:f8:
62:53:1a:b2:14:d6:c1:12:d1:d9:8e:1b:6b:aa:c1:45:f5:b5:
eb:23:bb:8b:d0:a8:be:1f:64:1c:38:84:30:11:48:40:81:34:
31:2c:1b:79:fb:8f:88:22:a4:5a:ea:4e:85:7f:1c:5f:07:9e:
29:fe:69:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:12 2024 by rpki-client on console-fra.rpki-client.org