Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/34392e3233362e3231362e302f32312d3234203d3e2030.roa
File: 34392e3233362e3231362e302f32312d3234203d3e2030.roa (raw, json)
Hash identifier: cgTwM7GxzzwMEV0x0M7YsemGhm8dBq9xEIjjlVUZ3QU=
Subject key identifier: 7A:69:5A:6F:91:DD:4C:79:9D:46:71:AB:08:C7:7E:1C:1E:63:68:44
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5660B9D963BFCA9C426E4177B4A00F4108FAF965
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34392e3233362e3231362e302f32312d3234203d3e2030.roa
Signing time: Wed 02 Feb 2022 06:29:24 +0000
ROA not before: Wed 02 Feb 2022 06:24:24 +0000
ROA not after: Thu 02 Feb 2023 06:29:24 +0000
asID: 0
IP address blocks: 49.236.216.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:60:b9:d9:63:bf:ca:9c:42:6e:41:77:b4:a0:0f:41:08:fa:f9:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Feb 2 06:24:24 2022 GMT
Not After : Feb 2 06:29:24 2023 GMT
Subject: CN=3082010A0282010100C08FBAB02F7011EF43498C35B1875F2DCE8C85057A21AE17EE47BCE9165482EA58A822F3FD0AFF29DEB46E7DFB414CB747DFF4651234322F8AA0CAD4BB7CCC375C8ABF517942314E31F55DAAA958EA16A438BC3A82D3FD1D2A405FCEB11AE3B8AC7BA1AA2BD7131320E36F3DD776B3FD118FB6A1E999E40AF9430611EAB347EEDB5F3F6EE152D39692C8754ECA514EE808F5723C128926EEF64A67EF52FA7146BCF927443862D94E6E1FCE940E3B2AE6A4579108DE7CA90A7B1387BB7E6D15D1CCE83DB7CA59A24E5D9A44C914363899B2FE24C1EF3DCA752A45C87D946F820C7C84EB197FC702033B1DE634E4E17C0BA9476FD34B2602CDE4AFFDDA8EBF238D0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:ba:b0:2f:70:11:ef:43:49:8c:35:b1:87:
5f:2d:ce:8c:85:05:7a:21:ae:17:ee:47:bc:e9:16:
54:82:ea:58:a8:22:f3:fd:0a:ff:29:de:b4:6e:7d:
fb:41:4c:b7:47:df:f4:65:12:34:32:2f:8a:a0:ca:
d4:bb:7c:cc:37:5c:8a:bf:51:79:42:31:4e:31:f5:
5d:aa:a9:58:ea:16:a4:38:bc:3a:82:d3:fd:1d:2a:
40:5f:ce:b1:1a:e3:b8:ac:7b:a1:aa:2b:d7:13:13:
20:e3:6f:3d:d7:76:b3:fd:11:8f:b6:a1:e9:99:e4:
0a:f9:43:06:11:ea:b3:47:ee:db:5f:3f:6e:e1:52:
d3:96:92:c8:75:4e:ca:51:4e:e8:08:f5:72:3c:12:
89:26:ee:f6:4a:67:ef:52:fa:71:46:bc:f9:27:44:
38:62:d9:4e:6e:1f:ce:94:0e:3b:2a:e6:a4:57:91:
08:de:7c:a9:0a:7b:13:87:bb:7e:6d:15:d1:cc:e8:
3d:b7:ca:59:a2:4e:5d:9a:44:c9:14:36:38:99:b2:
fe:24:c1:ef:3d:ca:75:2a:45:c8:7d:94:6f:82:0c:
7c:84:eb:19:7f:c7:02:03:3b:1d:e6:34:e4:e1:7c:
0b:a9:47:6f:d3:4b:26:02:cd:e4:af:fd:da:8e:bf:
23:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:69:5A:6F:91:DD:4C:79:9D:46:71:AB:08:C7:7E:1C:1E:63:68:44
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34392e3233362e3231362e302f32312d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.236.216.0/21
Signature Algorithm: sha256WithRSAEncryption
83:be:5c:45:83:50:67:8b:fd:95:d1:5f:b1:13:51:7a:3b:08:
a2:64:ec:14:31:ee:d7:e2:b4:a2:78:e7:15:53:34:2b:f0:e5:
92:2a:b4:12:1e:c2:93:81:13:4f:6b:cc:0f:ea:55:82:2c:72:
23:fe:bd:1d:2d:a5:33:a4:b2:7d:fd:e2:d1:0a:9e:22:11:e2:
fc:5f:4c:14:98:0e:1c:82:28:57:78:d6:d8:53:e0:4e:5e:7e:
1c:ea:69:bb:71:6a:7c:6c:18:46:b5:bd:ec:2b:cc:1b:86:2b:
b4:f0:fc:a5:26:f4:de:bb:4b:df:98:17:7d:b3:b6:34:e9:8b:
8c:bf:86:54:dc:c9:7f:fc:67:e3:d4:62:c5:54:e2:ab:10:3c:
e7:2c:18:79:10:42:23:41:08:51:c7:56:65:9d:2e:5d:16:e2:
11:8f:4f:2d:ba:c7:68:34:4d:f8:c0:bc:4e:6a:87:51:81:b8:
e2:66:e0:3a:cb:42:29:aa:73:de:26:b1:aa:f2:f7:f6:a7:21:
44:f2:66:5d:69:20:19:cf:38:8e:77:76:bb:eb:b5:ab:ca:e7:
8f:97:6c:c2:12:88:1a:36:a2:be:88:d5:1e:33:67:f1:70:7a:
14:02:bd:c6:ff:13:b9:35:94:f8:cf:2e:26:99:61:04:0d:bc:
76:72:83:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org