Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3235312e39362e302f32322d3234203d3e20313332363431.roa
File: 34332e3235312e39362e302f32322d3234203d3e20313332363431.roa (raw, json)
Hash identifier: ktsIVSSZ+oaOlnd35Fl6J1CG6b6ymAImQLzIjQAjYgE=
Subject key identifier: 9D:C2:3A:5B:60:36:C3:CE:F0:08:26:3C:5A:F1:89:E0:84:9B:5B:C4
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 18E4C10AA8B57020B9C744F1D1F75A546AC20043
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3235312e39362e302f32322d3234203d3e20313332363431.roa
Signing time: Mon 14 Jun 2021 04:15:03 +0000
ROA not before: Mon 14 Jun 2021 04:10:03 +0000
ROA not after: Tue 14 Jun 2022 04:15:03 +0000
asID: 132641
IP address blocks: 43.251.96.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:e4:c1:0a:a8:b5:70:20:b9:c7:44:f1:d1:f7:5a:54:6a:c2:00:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jun 14 04:10:03 2021 GMT
Not After : Jun 14 04:15:03 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9c:c4:68:c0:d7:7d:23:fe:ee:4e:cd:f7:cf:
38:39:d5:0f:77:43:3b:dd:9d:cf:9f:f9:b3:c0:3b:
71:ca:bc:82:a6:b9:0a:98:0a:36:d1:3c:d5:85:94:
d4:17:30:7a:3f:1c:e3:20:f4:c9:18:b9:7d:ee:cf:
58:49:da:4b:2d:09:bf:bc:47:57:0c:8e:29:7d:76:
af:ae:ce:ca:49:26:f8:f6:0e:38:bb:1f:56:a0:d0:
71:f0:dd:19:33:bd:64:7b:48:77:34:8f:8f:cd:9e:
ca:ac:e0:8d:ea:89:d0:d6:b9:ad:b2:91:9b:1f:37:
f7:a2:b0:7c:27:26:07:e4:72:f9:5d:27:b1:95:5a:
03:a6:3e:3f:68:72:13:18:41:e7:e8:5a:1e:91:a5:
77:58:3a:4f:cd:7c:ae:6c:91:5e:46:10:92:92:a0:
a0:35:eb:ac:a5:d3:79:4d:35:e6:10:91:8c:ed:c2:
56:df:9e:28:31:77:31:7a:17:86:38:fd:51:f5:99:
bd:25:21:73:90:25:2a:ec:bd:d2:6b:02:5b:6b:21:
5e:a2:5c:24:78:ac:37:df:dd:bd:d5:34:25:a7:9e:
26:24:54:66:e2:73:fc:37:1d:c2:bd:1a:15:a4:6d:
1e:9b:ab:5a:60:aa:29:8e:40:9c:aa:8d:0b:b9:0b:
2f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C2:3A:5B:60:36:C3:CE:F0:08:26:3C:5A:F1:89:E0:84:9B:5B:C4
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34332e3235312e39362e302f32322d3234203d3e20313332363431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.251.96.0/22
Signature Algorithm: sha256WithRSAEncryption
02:fa:7c:c1:0c:f8:d9:cf:a7:5e:79:58:e8:10:8e:7a:62:14:
34:8e:3d:a4:77:6d:c9:62:de:ca:b0:07:6b:47:a3:4c:31:a0:
66:8f:2f:09:49:5b:14:70:0c:34:97:11:98:49:39:84:54:c2:
9a:24:64:d7:b9:58:97:9c:14:c2:c5:27:d9:98:38:84:97:54:
00:ae:4e:b0:1a:60:a3:50:7a:1d:a4:d7:06:7d:c0:84:b7:10:
ba:34:72:38:c1:13:d4:13:27:bc:f8:a4:e5:6d:ab:db:2b:c3:
9e:3c:c1:d0:ac:95:64:4c:49:81:a8:56:f5:45:52:c5:0e:95:
dc:58:59:93:f0:ea:62:20:61:39:00:7a:0b:23:94:56:57:5e:
12:9e:c3:ec:27:46:be:c1:85:27:75:3b:82:00:d6:c1:5a:b0:
32:be:b7:77:2c:1d:f8:21:21:76:a4:76:f4:fc:70:42:71:50:
3e:a8:5c:ae:e3:a3:47:75:62:ec:cb:dd:4b:7d:92:f8:9b:85:
0f:44:52:5e:3e:ba:a5:3b:44:2e:d9:c6:69:6f:cc:84:5f:7d:
b5:22:93:fa:9f:bd:ac:24:04:44:9c:c3:9a:83:21:3d:e4:0e:
18:9c:46:ec:f5:4f:8e:62:cb:f7:9f:07:1e:6e:90:f0:d0:ca:
56:2e:40:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org