Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3235302e37382e302f32342d3234203d3e20313333333532.roa
File: 34332e3235302e37382e302f32342d3234203d3e20313333333532.roa (raw, json)
Hash identifier: vfgymV/CQaJ/kWYBiQT7z0GJrIMiMA9xAwHjG4eAsDg=
Subject key identifier: DC:DD:6B:56:4B:B6:1A:9B:6D:14:9A:D0:B7:87:01:2E:E4:A9:46:7C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 054970DA824F48129FA10F93DA4DF28E70EA3520
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3235302e37382e302f32342d3234203d3e20313333333532.roa
Signing time: Mon 26 Apr 2021 07:27:29 +0000
ROA not before: Mon 26 Apr 2021 07:22:29 +0000
ROA not after: Tue 26 Apr 2022 07:27:29 +0000
asID: 133352
IP address blocks: 43.250.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:49:70:da:82:4f:48:12:9f:a1:0f:93:da:4d:f2:8e:70:ea:35:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 26 07:22:29 2021 GMT
Not After : Apr 26 07:27:29 2022 GMT
Subject: CN=3082010A028201010095984A23983C04323F7272BFD399A31C4D99C185F11CA8C7812AA5E84EDE99B914DFF36B75BBB7CEC4E12E1CB98935AAF8208AEF5A76A08573DBD5CA573D4BE077560A396A74346C224E0BB669AB3EE93FA807F22C290B9C038CDC9A3FDE055FFC6DE206A20B55768EBCD29EA1DC15746B7EA73C19A9A23EDE8BB2CB68E160EFD69D583E112553D867D0002A55EA1BEEDA7680C8E20CC4BA24E4C451B2547C7DB142E09A78FBE790FFEDBD228FD3FD05F7E4EE57BA3525EE8E40143F0737BD4BFE1597022115A7E0635866D31AD198AE6C646B3E6186CE4A95EA647F642147A06028E95BA5B5A6450C2938A3070686F87F053F8D4B5795AB8C541877113C55650203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:98:4a:23:98:3c:04:32:3f:72:72:bf:d3:99:
a3:1c:4d:99:c1:85:f1:1c:a8:c7:81:2a:a5:e8:4e:
de:99:b9:14:df:f3:6b:75:bb:b7:ce:c4:e1:2e:1c:
b9:89:35:aa:f8:20:8a:ef:5a:76:a0:85:73:db:d5:
ca:57:3d:4b:e0:77:56:0a:39:6a:74:34:6c:22:4e:
0b:b6:69:ab:3e:e9:3f:a8:07:f2:2c:29:0b:9c:03:
8c:dc:9a:3f:de:05:5f:fc:6d:e2:06:a2:0b:55:76:
8e:bc:d2:9e:a1:dc:15:74:6b:7e:a7:3c:19:a9:a2:
3e:de:8b:b2:cb:68:e1:60:ef:d6:9d:58:3e:11:25:
53:d8:67:d0:00:2a:55:ea:1b:ee:da:76:80:c8:e2:
0c:c4:ba:24:e4:c4:51:b2:54:7c:7d:b1:42:e0:9a:
78:fb:e7:90:ff:ed:bd:22:8f:d3:fd:05:f7:e4:ee:
57:ba:35:25:ee:8e:40:14:3f:07:37:bd:4b:fe:15:
97:02:21:15:a7:e0:63:58:66:d3:1a:d1:98:ae:6c:
64:6b:3e:61:86:ce:4a:95:ea:64:7f:64:21:47:a0:
60:28:e9:5b:a5:b5:a6:45:0c:29:38:a3:07:06:86:
f8:7f:05:3f:8d:4b:57:95:ab:8c:54:18:77:11:3c:
55:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:DD:6B:56:4B:B6:1A:9B:6D:14:9A:D0:B7:87:01:2E:E4:A9:46:7C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3235302e37382e302f32342d3234203d3e20313333333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.250.78.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9f:88:67:b1:88:1b:c4:28:34:25:a3:3a:b3:52:de:ef:29:
27:31:42:26:f8:fa:9b:d5:f0:de:c5:50:b8:8f:db:c4:39:2b:
45:45:a3:5d:0d:15:60:11:e0:9a:7e:d2:bc:d5:88:d7:08:10:
7a:3b:4b:6a:7a:5f:7f:84:c1:ee:7e:12:09:39:53:58:31:6e:
53:33:da:82:02:63:f4:12:21:e2:0f:46:2e:d0:ae:f1:a5:8c:
a0:c6:3d:61:7a:13:3e:fb:bd:28:13:d7:d5:4e:8d:d1:4f:0b:
6f:74:09:a6:e8:af:00:6e:46:91:f7:8b:e3:7e:2a:48:aa:43:
93:c7:58:20:b0:ce:91:e4:43:d1:f6:4e:ea:49:65:09:f8:df:
88:6d:e6:6b:8a:df:9d:94:ad:04:35:66:27:fa:ec:db:4c:12:
f3:bb:de:96:19:02:c6:09:ae:1c:19:76:46:6b:ca:be:08:12:
12:6c:8c:f3:3c:18:0f:8f:be:e4:4f:1b:c3:20:c1:9d:14:a8:
91:ea:0c:8c:fc:ec:ee:30:b3:89:6a:3e:3c:fe:ba:e9:24:b3:
3c:dc:73:d7:12:b5:c4:f2:7a:07:0a:b5:ad:5b:af:3c:1d:13:
de:5d:57:10:ac:68:64:b7:ea:bc:4a:c0:b6:50:1c:d1:02:94:
c0:4b:3b:51
-----BEGIN CERTIFICATE-----
MIIHCDCCBfCgAwIBAgIUBUlw2oJPSBKfoQ+T2k3yjnDqNSAwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMDQyNjA3MjIyOVoX
DTIyMDQyNjA3MjcyOVowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDA5NTk4NEEyMzk4M0MwNDMyM0Y3MjcyQkZEMzk5QTMxQzREOTlDMTg1RjEx
Q0E4Qzc4MTJBQTVFODRFREU5OUI5MTRERkYzNkI3NUJCQjdDRUM0RTEyRTFDQjk4
OTM1QUFGODIwOEFFRjVBNzZBMDg1NzNEQkQ1Q0E1NzNENEJFMDc3NTYwQTM5NkE3
NDM0NkMyMjRFMEJCNjY5QUIzRUU5M0ZBODA3RjIyQzI5MEI5QzAzOENEQzlBM0ZE
RTA1NUZGQzZERTIwNkEyMEI1NTc2OEVCQ0QyOUVBMURDMTU3NDZCN0VBNzNDMTlB
OUEyM0VERThCQjJDQjY4RTE2MEVGRDY5RDU4M0UxMTI1NTNEODY3RDAwMDJBNTVF
QTFCRUVEQTc2ODBDOEUyMENDNEJBMjRFNEM0NTFCMjU0N0M3REIxNDJFMDlBNzhG
QkU3OTBGRkVEQkQyMjhGRDNGRDA1RjdFNEVFNTdCQTM1MjVFRThFNDAxNDNGMDcz
N0JENEJGRTE1OTcwMjIxMTVBN0UwNjM1ODY2RDMxQUQxOThBRTZDNjQ2QjNFNjE4
NkNFNEE5NUVBNjQ3RjY0MjE0N0EwNjAyOEU5NUJBNUI1QTY0NTBDMjkzOEEzMDcw
Njg2Rjg3RjA1M0Y4RDRCNTc5NUFCOEM1NDE4NzcxMTNDNTU2NTAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVmEojmDwEMj9ycr/TmaMc
TZnBhfEcqMeBKqXoTt6ZuRTf82t1u7fOxOEuHLmJNar4IIrvWnaghXPb1cpXPUvg
d1YKOWp0NGwiTgu2aas+6T+oB/IsKQucA4zcmj/eBV/8beIGogtVdo680p6h3BV0
a36nPBmpoj7ei7LLaOFg79adWD4RJVPYZ9AAKlXqG+7adoDI4gzEuiTkxFGyVHx9
sULgmnj755D/7b0ij9P9Bffk7le6NSXujkAUPwc3vUv+FZcCIRWn4GNYZtMa0Ziu
bGRrPmGGzkqV6mR/ZCFHoGAo6VultaZFDCk4owcGhvh/BT+NS1eVq4xUGHcRPFVl
AgMBAAGjggH/MIIB+zAdBgNVHQ4EFgQU3N1rVku2GpttFJrQt4cBLuSpRnwwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBggYIKwYB
BQUHAQsEdjB0MHIGCCsGAQUFBzALhmZyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzM0MzMyZTMyMzUzMDJlMzczODJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzMzMzMzMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv6TjANBgkqhkiG
9w0BAQsFAAOCAQEAZZ+IZ7GIG8QoNCWjOrNS3u8pJzFCJvj6m9Xw3sVQuI/bxDkr
RUWjXQ0VYBHgmn7SvNWI1wgQejtLanpff4TB7n4SCTlTWDFuUzPaggJj9BIh4g9G
LtCu8aWMoMY9YXoTPvu9KBPX1U6N0U8Lb3QJpuivAG5GkfeL434qSKpDk8dYILDO
keRD0fZO6kllCfjfiG3ma4rfnZStBDVmJ/rs20wS87velhkCxgmuHBl2RmvKvggS
EmyM8zwYD4++5E8bwyDBnRSokeoMjPzs7jCziWo+PP666SSzPNxz1xK1xPJ6Bwq1
rVuvPB0T3l1XEKxoZLfqvErAtlAc0QKUwEs7UQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org