Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e342e302f32332d3234203d3e20313333383135.roa
File: 3130332e3135302e342e302f32332d3234203d3e20313333383135.roa (raw, json)
Hash identifier: 95lrDVJiBr+LePaWXsAQMdPUoo+7y3zpAlMa9iBjw4w=
Subject key identifier: 90:95:7B:3B:0E:85:96:40:90:D2:BD:9C:08:B9:03:01:5E:70:F9:93
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 4D74693E4285D03F6529AAF7B306F5D1A1BC26FA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e342e302f32332d3234203d3e20313333383135.roa
Signing time: Fri 05 Nov 2021 17:00:03 +0000
ROA not before: Fri 05 Nov 2021 16:55:03 +0000
ROA not after: Sat 05 Nov 2022 17:00:03 +0000
asID: 133815
IP address blocks: 103.150.4.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:74:69:3e:42:85:d0:3f:65:29:aa:f7:b3:06:f5:d1:a1:bc:26:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Nov 5 16:55:03 2021 GMT
Not After : Nov 5 17:00:03 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f6:56:98:05:f9:c2:63:92:61:31:3f:c4:a9:
5c:13:75:d5:8a:25:bf:49:c6:ae:fa:40:d0:c5:b8:
2d:97:4c:85:54:60:11:e5:7f:20:ab:01:e8:74:7f:
e1:f0:ea:24:8a:7f:28:1f:5b:99:7b:f3:eb:0a:01:
3d:b5:d2:cc:3c:00:7b:98:8c:4d:d8:e1:c7:73:cf:
ed:4f:13:2f:36:19:fc:bb:6f:69:8d:da:2e:47:8c:
79:8d:40:04:04:cb:94:e3:af:f3:90:13:8f:a5:92:
a6:c7:cc:d7:21:ec:59:8b:fd:0b:2c:48:4c:6a:b0:
1f:4f:58:82:f6:54:1b:cb:87:f3:5c:e9:2c:26:fb:
fa:28:c3:f0:b8:53:f9:a3:0d:c7:1b:d7:5e:56:1c:
1a:42:53:a1:7b:56:3f:24:ca:cd:cc:ae:15:99:50:
ce:a0:3b:d7:be:55:30:c7:19:43:3d:3e:b8:f0:3d:
93:fa:70:57:92:45:bf:78:32:d0:8d:fc:64:44:3a:
4b:a2:12:6e:9a:31:ad:02:b4:28:c2:40:41:8f:67:
97:5a:80:69:a7:ab:68:29:0d:ad:d7:86:37:4b:37:
7a:52:9d:d9:d3:e0:48:08:1c:d2:9b:df:f0:6a:58:
93:0b:61:95:f0:25:db:27:e2:92:bd:2b:6b:a5:68:
a0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:95:7B:3B:0E:85:96:40:90:D2:BD:9C:08:B9:03:01:5E:70:F9:93
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e342e302f32332d3234203d3e20313333383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.4.0/23
Signature Algorithm: sha256WithRSAEncryption
86:26:02:1a:8a:38:91:a9:19:a5:c6:a6:ef:6a:8e:f2:07:bc:
70:61:e2:bf:04:57:e8:42:34:ba:5a:ac:10:52:f5:90:1d:17:
75:a3:43:74:fa:f1:7c:1b:09:8e:e3:99:12:39:d5:09:07:5a:
71:f2:1e:d7:8b:ee:08:14:74:02:1d:cc:0e:89:1d:57:2b:11:
d7:7c:95:68:d7:0e:6c:3f:8a:83:ae:24:98:fc:99:72:24:9e:
6a:4d:09:08:c1:a6:16:58:03:7c:89:53:68:10:b9:fc:9a:55:
0d:fe:92:67:71:75:bf:6e:e6:b2:0b:b8:dc:e7:78:aa:99:dd:
6a:dd:8e:34:4c:25:45:86:dd:d0:3b:9a:0a:5e:e2:0c:69:14:
2f:19:d3:a2:c6:e0:ca:a7:9a:09:98:cc:d8:42:fd:f8:49:fc:
91:75:0a:8d:c4:3e:3b:61:42:a2:d2:1b:d5:c8:08:4d:58:93:
81:10:fa:10:0c:9c:97:41:ed:4f:3f:24:78:42:74:06:b2:9f:
c2:75:78:49:4a:c0:b9:30:c2:c9:94:77:1c:d1:5e:a7:ba:41:
df:0e:69:1a:ba:d5:4d:16:f6:48:b6:2a:32:84:37:a2:81:39:
c8:17:49:74:5f:3c:7a:26:86:09:45:a3:0b:e7:86:57:4e:d2:
10:25:31:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:49 2023 by rpki-client on console-fra.rpki-client.org