Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3232342e3136382e302f32322d3234203d3e203435373031.roa
File: 34332e3232342e3136382e302f32322d3234203d3e203435373031.roa (raw, json)
Hash identifier: 9hbzynuV/6asFTtJLyV3EvkYMfWGMvdW7kek/jE3ipU=
Subject key identifier: B7:A1:33:71:5B:3B:BB:A3:99:9A:83:15:C1:BC:67:24:7B:4E:E6:26
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 51516A2C31CF5DFF275CAFDD57CC6F01D821661D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3232342e3136382e302f32322d3234203d3e203435373031.roa
Signing time: Wed 09 Jun 2021 04:27:43 +0000
ROA not before: Wed 09 Jun 2021 04:22:43 +0000
ROA not after: Thu 09 Jun 2022 04:27:43 +0000
asID: 45701
IP address blocks: 43.224.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:51:6a:2c:31:cf:5d:ff:27:5c:af:dd:57:cc:6f:01:d8:21:66:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jun 9 04:22:43 2021 GMT
Not After : Jun 9 04:27:43 2022 GMT
Subject: CN=3082010A0282010100D48B685D7E7764F0A413F17164ED3D0FDB7612552A357F245598C9482B566785F79AA110B0B0021297B0D9D0FEDC21847F5AE797C60B051F1702941B4A15613599070DE3CD7C180D14DDFC5C9B7CFF0D508C7BE79DC112FD2C90FF4869875D988E31FB0D2C12CD7E7F2C54527565CB99BD14519FE2AE84E6290FBCC09F6EDE1D5AD478632AD801D26214D27A9AA7D782A2A5B5261C5DE6C359F8594031C27D9BE17F49344DBA752A33B9BECE9FD81105A69B970213426DC82F1CB1EC35B5A9B1CFEB4F837C02255275F8EB6AC42F39669483EDD2A7B377E5124EA0209BBC9F1EC0FE7D78506201470D166A55655532999B2669FEF2D6D50830ADA7C78B976ADB0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8b:68:5d:7e:77:64:f0:a4:13:f1:71:64:ed:
3d:0f:db:76:12:55:2a:35:7f:24:55:98:c9:48:2b:
56:67:85:f7:9a:a1:10:b0:b0:02:12:97:b0:d9:d0:
fe:dc:21:84:7f:5a:e7:97:c6:0b:05:1f:17:02:94:
1b:4a:15:61:35:99:07:0d:e3:cd:7c:18:0d:14:dd:
fc:5c:9b:7c:ff:0d:50:8c:7b:e7:9d:c1:12:fd:2c:
90:ff:48:69:87:5d:98:8e:31:fb:0d:2c:12:cd:7e:
7f:2c:54:52:75:65:cb:99:bd:14:51:9f:e2:ae:84:
e6:29:0f:bc:c0:9f:6e:de:1d:5a:d4:78:63:2a:d8:
01:d2:62:14:d2:7a:9a:a7:d7:82:a2:a5:b5:26:1c:
5d:e6:c3:59:f8:59:40:31:c2:7d:9b:e1:7f:49:34:
4d:ba:75:2a:33:b9:be:ce:9f:d8:11:05:a6:9b:97:
02:13:42:6d:c8:2f:1c:b1:ec:35:b5:a9:b1:cf:eb:
4f:83:7c:02:25:52:75:f8:eb:6a:c4:2f:39:66:94:
83:ed:d2:a7:b3:77:e5:12:4e:a0:20:9b:bc:9f:1e:
c0:fe:7d:78:50:62:01:47:0d:16:6a:55:65:55:32:
99:9b:26:69:fe:f2:d6:d5:08:30:ad:a7:c7:8b:97:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A1:33:71:5B:3B:BB:A3:99:9A:83:15:C1:BC:67:24:7B:4E:E6:26
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3232342e3136382e302f32322d3234203d3e203435373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.224.168.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:fc:0c:7a:c2:56:9c:1c:6d:26:9d:aa:24:ce:14:04:86:ad:
b4:3a:97:33:f0:66:ef:69:76:58:05:86:4d:52:a4:62:62:ff:
64:46:7d:b8:d3:e9:9c:93:17:b7:f5:17:f5:5d:10:0d:33:b0:
c6:c4:58:1b:73:81:fd:7a:0b:d7:43:7a:24:da:97:ce:50:98:
99:4e:fb:c2:a2:e1:de:32:47:f3:fd:34:3e:48:95:f7:bc:3f:
85:82:fc:82:ac:27:e6:22:5c:f3:0a:16:69:ba:88:6c:8c:e3:
eb:dd:d8:ca:ef:77:f7:24:ef:d1:75:c1:dc:96:d7:78:cc:af:
35:9c:49:c3:3f:b4:12:21:07:9a:f8:59:5f:34:5b:83:66:d4:
85:b6:12:36:db:83:cd:70:09:b5:0b:f2:db:61:a5:b9:c0:5a:
2b:da:c9:4f:29:6f:95:a1:89:5d:0b:eb:2f:c5:88:d4:6a:9d:
96:79:c2:5b:5d:6f:a7:5d:64:c0:67:32:e7:0a:a1:57:d5:82:
dd:90:b7:c4:3a:21:ba:e1:1e:16:92:88:2b:e9:ce:90:4c:e9:
fb:d6:13:ba:fb:74:47:9e:fd:4f:1d:1e:32:d3:d4:9d:74:bf:
f2:20:c0:7b:38:31:5c:eb:c1:38:e1:c3:3d:92:61:21:bd:e4:
77:46:cc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:12 2024 by rpki-client on console-fra.rpki-client.org