Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/3130332e3234372e34302e302f32342d3234203d3e203538343836.roa
File: 3130332e3234372e34302e302f32342d3234203d3e203538343836.roa (raw, json)
Hash identifier: 5tDcRHvPOCU2aUaQJHu8W797FseEGFKGiS42FMGAYzk=
Subject key identifier: CA:A9:6E:C9:0A:3E:A4:44:53:5D:16:4D:3E:F7:20:6F:12:07:24:5B
Certificate issuer: /CN=85D232B96AB560AF91A1D8CFA996C519460662C6
Certificate serial: 5CC708045A361C3410A792F1526099177B0FBA90
Authority key identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/3130332e3234372e34302e302f32342d3234203d3e203538343836.roa
Signing time: Fri 22 Apr 2022 09:38:46 +0000
ROA not before: Fri 22 Apr 2022 09:33:46 +0000
ROA not after: Fri 21 Apr 2023 09:38:46 +0000
asID: 58486
IP address blocks: 103.247.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:c7:08:04:5a:36:1c:34:10:a7:92:f1:52:60:99:17:7b:0f:ba:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D232B96AB560AF91A1D8CFA996C519460662C6
Validity
Not Before: Apr 22 09:33:46 2022 GMT
Not After : Apr 21 09:38:46 2023 GMT
Subject: CN=CAA96EC90A3EA444535D164D3EF7206F1207245B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:5f:8f:85:e6:cf:d1:79:2e:42:7c:f7:7d:
fd:0a:32:b5:10:c9:2a:a7:7c:6a:80:84:11:5b:ef:
82:06:f0:e9:6a:1a:9a:b7:df:95:38:1a:a9:b5:31:
57:7d:e7:7b:0e:7b:39:1b:9d:c1:fc:f1:66:0f:9b:
99:41:c0:62:60:20:a1:86:04:72:84:a0:c7:63:be:
e5:f8:04:3e:d0:47:1f:97:96:26:82:38:33:21:67:
de:32:aa:8e:1d:3f:c3:84:ff:88:ef:d8:4e:df:fc:
dd:1d:63:0b:5a:ad:f2:0e:25:fd:48:4e:be:85:76:
73:27:a7:c5:43:c7:d4:30:6f:6c:87:e6:bd:f1:56:
16:2a:fe:81:31:c9:96:ec:8c:c9:87:c2:11:bb:ae:
34:4d:68:20:b3:0c:40:98:4e:b0:78:5e:c6:de:2f:
86:a0:60:6e:d2:12:f9:0c:e7:ab:40:33:ea:66:fc:
af:79:e2:56:24:db:7b:ac:a8:fd:ac:ab:ef:8d:33:
b4:6b:49:ba:e7:0b:c9:00:23:0d:c6:e8:96:a9:c3:
ef:ec:a1:17:50:a3:18:f2:67:8f:0e:32:56:61:e1:
1a:55:62:a6:df:8e:03:ed:c4:10:af:a5:c1:b5:b9:
02:56:a4:6f:80:0c:ba:fe:46:d1:2e:19:9b:ec:3c:
05:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A9:6E:C9:0A:3E:A4:44:53:5D:16:4D:3E:F7:20:6F:12:07:24:5B
X509v3 Authority Key Identifier:
keyid:85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/3130332e3234372e34302e302f32342d3234203d3e203538343836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.40.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:21:1f:62:e7:2c:e6:c0:1d:f9:0e:77:b5:98:a1:f1:76:ad:
25:a6:1d:f2:ff:73:31:13:57:65:c6:09:f5:d3:ce:1b:7f:cc:
85:93:1b:0d:d2:b7:fc:52:a8:99:26:7c:37:e1:e1:cb:e8:56:
5d:11:d1:c3:39:bc:14:d9:ef:2d:ff:39:aa:77:59:a4:45:6f:
3f:63:76:79:d9:f2:ba:00:fa:f8:83:7d:16:21:72:3c:1c:ff:
03:b2:2a:0b:43:de:d7:7e:46:a3:da:7a:4f:09:b4:b8:6a:d8:
2f:10:62:be:18:19:d3:1e:d9:77:20:da:ee:c0:ee:6a:5a:33:
e3:3f:6b:f7:2a:e2:3d:47:21:a6:2b:2e:1c:6d:75:b2:b8:55:
ad:69:5f:94:95:71:18:66:cb:33:dd:b1:8c:97:ac:ea:2a:4d:
6e:d3:ce:f9:78:40:19:47:05:ed:be:e5:7b:97:97:8a:50:ee:
94:03:9e:d8:0a:ff:83:31:4e:08:c2:b4:4f:e1:ef:fc:3d:ce:
31:7e:d4:5f:f9:cf:ea:cc:0b:a9:c1:58:bf:5d:40:e2:1e:b4:
94:c0:09:37:e2:12:8a:c1:44:96:55:57:1a:4f:9a:e3:49:93:
d6:46:21:45:76:97:08:01:99:bd:45:97:cd:2d:37:12:3f:6a:
6f:9d:4f:76
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUXMcIBFo2HDQQp5LxUmCZF3sPupAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVEMjMyQjk2QUI1NjBBRjkxQTFEOENGQTk5NkM1MTk0
NjA2NjJDNjAeFw0yMjA0MjIwOTMzNDZaFw0yMzA0MjEwOTM4NDZaMDMxMTAvBgNV
BAMTKENBQTk2RUM5MEEzRUE0NDQ1MzVEMTY0RDNFRjcyMDZGMTIwNzI0NUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqB1+PhebP0XkuQnz3ff0KMrUQ
ySqnfGqAhBFb74IG8OlqGpq335U4Gqm1MVd953sOezkbncH88WYPm5lBwGJgIKGG
BHKEoMdjvuX4BD7QRx+XliaCODMhZ94yqo4dP8OE/4jv2E7f/N0dYwtarfIOJf1I
Tr6FdnMnp8VDx9Qwb2yH5r3xVhYq/oExyZbsjMmHwhG7rjRNaCCzDECYTrB4Xsbe
L4agYG7SEvkM56tAM+pm/K954lYk23usqP2sq++NM7RrSbrnC8kAIw3G6Japw+/s
oRdQoxjyZ48OMlZh4RpVYqbfjgPtxBCvpcG1uQJWpG+ADLr+RtEuGZvsPAVtAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUyqluyQo+pERTXRZNPvcgbxIHJFswHwYDVR0j
BBgwFoAUhdIyuWq1YK+RodjPqZbFGUYGYsYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
OTU1NmEzMS05MzdlLTRhZmUtYjk5YS0yNzRjOTUyNGY5ODEvMC84NUQyMzJCOTZB
QjU2MEFGOTFBMUQ4Q0ZBOTk2QzUxOTQ2MDY2MkM2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODVEMjMyQjk2QUI1NjBBRjkxQTFEOENGQTk5NkM1MTk0NjA2
NjJDNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5NTU2YTMxLTkzN2UtNGFmZS1i
OTlhLTI3NGM5NTI0Zjk4MS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3KDANBgkqhkiG
9w0BAQsFAAOCAQEALCEfYucs5sAd+Q53tZih8XatJaYd8v9zMRNXZcYJ9dPOG3/M
hZMbDdK3/FKomSZ8N+Hhy+hWXRHRwzm8FNnvLf85qndZpEVvP2N2ednyugD6+IN9
FiFyPBz/A7IqC0Pe135Go9p6Twm0uGrYLxBivhgZ0x7ZdyDa7sDualoz4z9r9yri
PUchpisuHG11srhVrWlflJVxGGbLM92xjJes6ipNbtPO+XhAGUcF7b7le5eXilDu
lAOe2Ar/gzFOCMK0T+Hv/D3OMX7UX/nP6swLqcFYv11A4h60lMAJN+ISisFEllVX
Gk+a40mT1kYhRXaXCAGZvUWXzS03Ej9qb51Pdg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:01 2023 by rpki-client on console-ams.rpki-client.org