Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135352e3135322e302f32332d3234203d3e20313431303630.roa
File: 3130332e3135352e3135322e302f32332d3234203d3e20313431303630.roa (raw, json)
Hash identifier: Q9If+Nsrtpjpg4Z2/qGYPaE9BJP4sK+Dc9K29iURmOE=
Subject key identifier: C3:63:5C:72:12:7F:E1:9E:1F:FB:7E:C0:D2:9F:99:48:03:7E:5C:BA
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3016041E524C0B5A1A65D26D93358884DBA944AE
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135352e3135322e302f32332d3234203d3e20313431303630.roa
Signing time: Wed 20 Oct 2021 08:00:00 +0000
ROA not before: Wed 20 Oct 2021 07:55:00 +0000
ROA not after: Thu 20 Oct 2022 08:00:00 +0000
asID: 141060
IP address blocks: 103.155.152.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:16:04:1e:52:4c:0b:5a:1a:65:d2:6d:93:35:88:84:db:a9:44:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 20 07:55:00 2021 GMT
Not After : Oct 20 08:00:00 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:70:58:b3:6f:55:88:ec:78:ab:20:4c:f2:ba:
0d:2e:70:c0:de:a8:dc:5a:ed:86:da:5c:c4:f5:a5:
3c:1f:75:79:13:70:ed:3c:5a:a0:cd:94:3b:a8:b9:
fd:b2:84:9a:6c:5a:42:64:10:ea:bc:67:21:15:71:
08:cf:74:07:5f:62:43:bc:94:a4:8a:f6:fc:8e:f1:
24:ff:5c:71:f2:35:b4:bd:65:8d:a7:97:f4:e6:9d:
12:9c:2d:43:45:2f:ec:87:cd:c1:5f:7d:c6:42:c8:
e4:b3:f5:bf:bd:e7:31:6a:e1:f9:ac:88:92:3e:a3:
5a:45:80:46:61:40:56:e4:fb:af:82:8c:1d:70:47:
fd:96:dd:1b:d6:cb:ee:cc:73:30:11:7d:7d:90:0f:
6f:c0:20:6d:a5:e6:9f:4f:0e:f5:2f:46:ef:ed:3f:
cf:fa:26:db:44:4e:4f:8a:e5:cd:01:5b:60:88:36:
90:30:91:73:be:e5:97:2e:11:27:b1:57:87:29:7c:
77:7b:aa:c8:d2:57:7d:e9:c3:6d:b1:a3:67:d3:99:
4a:e4:e9:1a:21:bb:48:96:4e:b1:a4:5d:87:e3:a4:
0d:b8:2a:a6:30:b0:26:f2:a2:01:a9:15:71:0f:fb:
cf:62:66:f4:b2:3e:07:6f:8e:f3:f7:b1:4b:d5:3d:
1a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:63:5C:72:12:7F:E1:9E:1F:FB:7E:C0:D2:9F:99:48:03:7E:5C:BA
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135352e3135322e302f32332d3234203d3e20313431303630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.152.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:01:69:c2:52:20:57:42:e4:f8:d5:b5:be:9d:43:d6:eb:a5:
73:6e:7a:4d:fe:c9:53:05:bb:ed:60:ef:41:36:4b:9b:26:e5:
d9:b2:5f:d0:18:7b:94:0f:23:fd:04:70:d4:bd:d1:1e:ba:c7:
05:a3:a0:59:b5:74:78:0e:c5:74:3c:12:58:53:a0:bc:87:cd:
c8:00:fc:24:a0:55:df:18:25:19:73:b5:e5:66:72:8f:60:41:
87:5b:3e:9a:28:b8:eb:6a:ff:09:6a:01:45:0d:fa:40:36:ea:
2a:f2:8e:57:36:de:4d:87:c7:89:e3:50:36:bb:6b:80:bf:62:
49:79:97:e4:53:12:eb:77:80:74:1e:67:ab:fc:6e:ef:13:7b:
96:e0:df:53:fb:4b:c2:e1:d3:c9:95:72:c1:e4:97:19:f1:cd:
e5:fd:9b:7f:83:ca:37:4c:fc:e8:f6:85:ea:0a:e1:ac:46:a7:
e8:44:6f:cc:d7:fd:12:cc:10:76:3a:50:9d:d2:a2:11:24:be:
96:48:66:d8:d1:9e:2d:fc:22:0b:8d:66:9e:21:f3:fb:e2:07:
2c:8c:40:f3:6a:d3:cd:1f:90:f5:55:b4:27:e2:a2:c4:33:4a:
be:03:64:c7:6a:89:a2:c3:89:d1:41:4e:c3:e1:40:4a:de:15:
4f:29:42:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-fra.rpki-client.org