Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17450.roa
File: AS17450.roa (raw, json)
Hash identifier: c+yMxkH5xM1I7Oi43Krd80DoEuqNbArKcnpolXktKdY=
Subject key identifier: 4D:C0:72:16:0D:8B:1E:B8:02:E3:10:06:BA:63:A2:9C:02:BF:78:01
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 70B90343F76196ED9AFAC8113CCB2AD404FB7407
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17450.roa
Signing time: Fri 03 Feb 2023 01:34:57 +0000
ROA not before: Fri 03 Feb 2023 01:29:57 +0000
ROA not after: Fri 02 Feb 2024 01:34:57 +0000
asID: 17450
IP address blocks: 119.2.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:b9:03:43:f7:61:96:ed:9a:fa:c8:11:3c:cb:2a:d4:04:fb:74:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Feb 3 01:29:57 2023 GMT
Not After : Feb 2 01:34:57 2024 GMT
Subject: CN=4DC072160D8B1EB802E31006BA63A29C02BF7801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:19:b4:18:cf:50:34:10:a9:35:ab:fd:f6:0a:
b9:ea:fc:eb:35:8c:64:95:9b:13:cc:b8:e1:f7:ec:
ae:57:ec:87:6d:f6:e5:c0:d7:ae:ef:96:94:1e:2e:
21:a9:af:1f:7d:ea:9c:12:70:d3:22:93:be:4c:47:
b2:4f:cb:c4:13:ad:03:8b:00:7d:cf:fc:be:94:aa:
50:cb:2d:84:f9:73:2f:e7:2f:64:14:94:09:a1:83:
4f:cd:cf:40:d3:b3:52:f5:66:3a:88:07:ad:e0:fa:
1e:a2:62:1c:a0:b0:b9:58:06:e4:c0:95:e3:a9:f0:
0e:91:0a:1b:6e:17:5f:e9:07:e8:2c:b7:3d:4c:35:
0e:7d:91:f1:f2:8f:4b:17:7f:7a:e3:83:54:ec:81:
f1:be:2d:f2:8b:19:a1:b8:f4:6c:36:50:e7:e7:17:
72:7f:05:2f:95:53:19:82:e7:8a:1a:c6:9d:37:43:
fc:99:04:80:63:7d:39:28:be:e9:a0:be:a2:bc:61:
3f:3d:6f:6e:90:f7:aa:2d:f2:8d:6e:f2:b2:4e:4c:
10:09:84:99:84:87:9d:96:0a:3b:46:0b:e7:88:02:
ec:a9:52:15:0e:2e:29:dd:82:53:1d:44:e6:97:85:
2e:e3:2c:df:e1:fe:82:f7:5e:2e:7e:0f:79:67:7e:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C0:72:16:0D:8B:1E:B8:02:E3:10:06:BA:63:A2:9C:02:BF:78:01
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17450.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.2.64.0/19
Signature Algorithm: sha256WithRSAEncryption
28:76:d4:0d:1f:16:5a:e6:f6:9a:4c:78:03:1e:1d:59:29:00:
15:59:59:58:a0:17:7e:fa:41:dc:82:24:5a:f5:08:5b:7b:d2:
93:19:70:ca:d9:bc:b8:54:72:7d:0d:7a:c7:ba:d4:d2:3d:36:
13:3a:0b:6a:80:72:eb:aa:58:88:51:68:a8:c6:2f:b0:fa:1d:
6f:81:e5:52:d2:5a:46:6f:db:6a:60:f2:b8:08:d4:01:87:03:
fb:99:42:60:54:3c:53:6d:7e:17:09:0d:67:84:88:29:b2:a2:
ac:36:3d:89:7f:0a:a0:ab:e2:cd:f9:d7:f7:f1:32:4a:95:ae:
53:25:56:bb:d4:8e:bd:0f:7d:58:50:3f:1e:0e:a0:5a:bb:97:
8d:2d:9a:3f:ea:c2:14:29:78:53:ad:91:f9:0d:af:9d:90:8a:
af:c0:94:0a:82:b6:31:40:41:89:ef:3c:6a:72:86:34:5c:fa:
0b:4a:12:65:f6:e8:03:c5:80:d9:63:3d:d4:6d:98:44:e8:be:
c8:21:d5:c6:b3:73:aa:ec:29:73:08:a6:9d:3a:a8:c1:0e:24:
a8:91:cc:db:46:c8:a0:89:e0:1e:9a:14:5b:3e:60:89:a2:c1:
24:de:d5:9f:77:6f:ba:50:f1:47:d9:b9:35:08:73:37:38:64:
86:f1:6b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org