Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/3130332e3234372e34332e302f32342d3234203d3e203538343836.roa
File: 3130332e3234372e34332e302f32342d3234203d3e203538343836.roa (raw, json)
Hash identifier: 4/ig73aJugP3FarAakOenol84I4ibqFplFwk//7/KIE=
Subject key identifier: 88:6F:7C:A2:B6:A0:4B:1A:D2:50:1A:C4:11:73:5A:B8:0B:8C:B3:11
Certificate issuer: /CN=85D232B96AB560AF91A1D8CFA996C519460662C6
Certificate serial: 28BDB0195ADA569FA1804BE810653EDC03CE0148
Authority key identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/3130332e3234372e34332e302f32342d3234203d3e203538343836.roa
Signing time: Fri 22 Apr 2022 09:40:01 +0000
ROA not before: Fri 22 Apr 2022 09:35:01 +0000
ROA not after: Fri 21 Apr 2023 09:40:01 +0000
asID: 58486
IP address blocks: 103.247.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:bd:b0:19:5a:da:56:9f:a1:80:4b:e8:10:65:3e:dc:03:ce:01:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D232B96AB560AF91A1D8CFA996C519460662C6
Validity
Not Before: Apr 22 09:35:01 2022 GMT
Not After : Apr 21 09:40:01 2023 GMT
Subject: CN=886F7CA2B6A04B1AD2501AC411735AB80B8CB311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bb:e2:df:ed:dd:6f:83:d8:68:2b:00:7c:b1:
d0:27:a1:f9:7c:33:e6:11:a0:5c:54:35:75:ab:0e:
d6:d1:3c:18:34:6d:c5:17:41:c5:75:4d:8f:2f:8f:
bb:ce:a6:a0:8f:de:db:e8:14:6e:e0:d3:4d:9f:3a:
83:3c:f1:27:dc:3d:7c:5a:a8:28:a5:17:6a:c7:60:
ae:2e:13:3d:2e:11:a2:2f:0c:cb:84:fe:e4:6e:45:
d9:37:40:6d:b3:cb:cb:59:33:68:9e:c4:bb:89:ad:
91:3a:8b:b7:77:f5:f8:03:06:6a:d4:20:12:35:b9:
74:71:94:36:ae:03:9b:5f:b1:4d:0c:67:81:46:ac:
3d:95:01:51:5c:c5:23:f0:e3:bc:d6:9f:37:28:51:
a1:34:d3:6c:0b:11:0f:ba:3d:6a:32:77:ca:56:bf:
80:d8:da:b8:ae:65:74:aa:cf:d6:58:5c:20:01:7b:
f4:48:1d:f8:c0:6a:24:98:eb:4d:8d:d3:9e:e6:50:
df:fd:98:c5:19:57:56:bc:6f:de:01:f1:20:30:3b:
2f:e3:e9:a5:10:f4:d5:a1:f1:bf:f9:22:5f:60:42:
05:7c:7f:4b:ae:24:2f:67:94:36:68:b3:98:1b:08:
01:2f:12:3f:7a:46:40:e3:30:92:7f:6f:70:aa:a1:
03:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:6F:7C:A2:B6:A0:4B:1A:D2:50:1A:C4:11:73:5A:B8:0B:8C:B3:11
X509v3 Authority Key Identifier:
keyid:85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/3130332e3234372e34332e302f32342d3234203d3e203538343836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.43.0/24
Signature Algorithm: sha256WithRSAEncryption
92:79:6e:74:f2:5a:29:cc:65:f2:a3:b8:93:f2:a4:07:b8:7a:
03:aa:c8:8f:f0:37:3f:bf:e4:0c:01:86:2e:55:49:54:8d:0b:
00:da:32:81:ef:b5:f1:9e:55:c7:7b:51:f5:9f:41:22:79:ab:
f4:9c:18:b4:b2:52:e9:f2:62:de:47:7f:f5:b7:60:ea:a0:86:
8c:aa:2a:f4:e4:af:e3:cc:c0:fb:2c:fc:b5:80:d2:f2:b4:bc:
4e:ae:9b:3d:c7:c0:18:9d:58:da:fa:b0:a0:65:9c:9d:fa:10:
05:dc:e8:9f:27:5c:46:71:fc:f1:fe:f2:f7:15:40:61:2b:6a:
b6:19:70:c1:f8:1d:73:fc:cb:76:2d:8c:33:c3:d9:9c:32:65:
d4:21:40:9c:d5:76:62:92:45:34:b6:3f:f7:3a:d3:d6:4c:84:
57:18:1a:2f:3e:e4:ef:bc:29:c6:3b:03:8b:7d:ca:da:52:4e:
46:1f:59:02:49:e3:b0:c1:6a:d7:de:83:ca:3b:9d:17:e6:d7:
78:88:83:ba:6e:4b:12:35:86:5c:a9:3f:67:da:bb:e9:50:ed:
c3:5d:6b:2b:c1:8b:73:c1:8c:bb:96:b8:bd:4b:ff:3d:bb:a1:
1a:35:a7:fd:a4:ac:d9:1d:43:91:42:d9:72:1c:d1:91:77:de:
72:1f:80:74
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUKL2wGVraVp+hgEvoEGU+3APOAUgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVEMjMyQjk2QUI1NjBBRjkxQTFEOENGQTk5NkM1MTk0
NjA2NjJDNjAeFw0yMjA0MjIwOTM1MDFaFw0yMzA0MjEwOTQwMDFaMDMxMTAvBgNV
BAMTKDg4NkY3Q0EyQjZBMDRCMUFEMjUwMUFDNDExNzM1QUI4MEI4Q0IzMTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClu+Lf7d1vg9hoKwB8sdAnofl8
M+YRoFxUNXWrDtbRPBg0bcUXQcV1TY8vj7vOpqCP3tvoFG7g002fOoM88SfcPXxa
qCilF2rHYK4uEz0uEaIvDMuE/uRuRdk3QG2zy8tZM2iexLuJrZE6i7d39fgDBmrU
IBI1uXRxlDauA5tfsU0MZ4FGrD2VAVFcxSPw47zWnzcoUaE002wLEQ+6PWoyd8pW
v4DY2riuZXSqz9ZYXCABe/RIHfjAaiSY602N057mUN/9mMUZV1a8b94B8SAwOy/j
6aUQ9NWh8b/5Il9gQgV8f0uuJC9nlDZos5gbCAEvEj96RkDjMJJ/b3CqoQMZAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUiG98oragSxrSUBrEEXNauAuMsxEwHwYDVR0j
BBgwFoAUhdIyuWq1YK+RodjPqZbFGUYGYsYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
OTU1NmEzMS05MzdlLTRhZmUtYjk5YS0yNzRjOTUyNGY5ODEvMC84NUQyMzJCOTZB
QjU2MEFGOTFBMUQ4Q0ZBOTk2QzUxOTQ2MDY2MkM2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODVEMjMyQjk2QUI1NjBBRjkxQTFEOENGQTk5NkM1MTk0NjA2
NjJDNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5NTU2YTMxLTkzN2UtNGFmZS1i
OTlhLTI3NGM5NTI0Zjk4MS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3KzANBgkqhkiG
9w0BAQsFAAOCAQEAknludPJaKcxl8qO4k/KkB7h6A6rIj/A3P7/kDAGGLlVJVI0L
ANoyge+18Z5Vx3tR9Z9BInmr9JwYtLJS6fJi3kd/9bdg6qCGjKoq9OSv48zA+yz8
tYDS8rS8Tq6bPcfAGJ1Y2vqwoGWcnfoQBdzonydcRnH88f7y9xVAYStqthlwwfgd
c/zLdi2MM8PZnDJl1CFAnNV2YpJFNLY/9zrT1kyEVxgaLz7k77wpxjsDi33K2lJO
Rh9ZAknjsMFq196DyjudF+bXeIiDum5LEjWGXKk/Z9q76VDtw11rK8GLc8GMu5a4
vUv/PbuhGjWn/aSs2R1DkULZchzRkXfech+AdA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:46 2023 by rpki-client on console-fra.rpki-client.org