Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135362e3132382e302f32332d3234203d3e20313431303931.roa
File: 3130332e3135362e3132382e302f32332d3234203d3e20313431303931.roa (raw, json)
Hash identifier: ytYcesF+VJqiL1Yp5SsMbr7/ErhlEzk6lfVMhqkiBy0=
Subject key identifier: C0:A3:4A:B9:3E:5B:8B:74:A8:98:CF:1F:52:55:AF:11:3D:F6:63:72
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 1D8819DA5F6D07D8614B069D4B9F8A2BFF4E5DAA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135362e3132382e302f32332d3234203d3e20313431303931.roa
Signing time: Wed 20 Oct 2021 05:00:00 +0000
ROA not before: Wed 20 Oct 2021 04:55:00 +0000
ROA not after: Thu 20 Oct 2022 05:00:00 +0000
asID: 141091
IP address blocks: 103.156.128.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:88:19:da:5f:6d:07:d8:61:4b:06:9d:4b:9f:8a:2b:ff:4e:5d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 20 04:55:00 2021 GMT
Not After : Oct 20 05:00:00 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9e:36:9e:86:53:03:36:e4:e1:b4:51:92:b4:
58:c5:33:98:d9:5a:e9:bb:10:ea:78:03:d2:c2:54:
8e:0a:d1:0e:31:e9:5e:57:c6:b6:09:78:35:1f:4b:
d6:0c:be:20:0f:26:2b:67:1b:48:d1:69:6f:97:3f:
d5:bd:a6:95:c8:29:e1:bb:f4:9d:ab:98:1f:7e:9c:
96:de:94:9a:6e:b3:04:87:3c:d4:6d:de:a1:63:cd:
d1:18:6b:f4:93:10:4e:fc:b9:23:a2:68:33:b2:d7:
62:a0:56:8f:a0:02:d4:5e:a3:ca:72:c5:2f:0c:39:
e3:b4:cc:61:f7:27:cd:1b:8f:3f:33:ad:fc:3d:a0:
0f:40:96:76:99:01:0e:a4:df:7b:b5:0e:ce:cf:e6:
a4:96:e0:e2:46:1d:82:64:d0:a5:4a:08:02:28:23:
b2:fe:72:e7:73:f0:e8:2e:89:6f:af:a4:f7:d5:4b:
44:0f:29:ec:5d:db:f0:59:d0:b2:51:49:d4:e6:c1:
04:93:32:35:5f:f7:3b:18:52:51:18:c4:d7:1a:30:
f0:0c:e5:56:dd:18:2e:94:59:23:4a:26:c4:be:f5:
84:0b:29:ab:82:34:68:c9:85:fa:00:f2:7c:d0:57:
4c:36:64:1a:e0:8c:3f:71:a1:d4:a5:7d:32:ca:19:
7b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A3:4A:B9:3E:5B:8B:74:A8:98:CF:1F:52:55:AF:11:3D:F6:63:72
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135362e3132382e302f32332d3234203d3e20313431303931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.156.128.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:26:3d:f3:41:bb:41:b5:c5:c7:36:c2:6d:62:af:c7:11:55:
2c:b2:56:36:20:7f:25:a0:c6:8d:4f:49:b0:ae:29:45:dd:62:
84:f1:4d:dc:50:fe:e8:ed:94:4f:df:b0:cc:5d:49:ea:fa:70:
92:7a:87:82:9c:e5:cf:3f:db:08:4d:78:1e:8c:ca:60:2d:67:
fd:e4:06:7f:c5:63:2d:28:98:b5:0f:2e:e2:0b:d2:06:2f:5d:
60:df:5e:5c:90:44:d1:be:53:b6:fd:49:79:e4:57:c1:fc:df:
4c:d8:a0:9e:16:93:da:cd:80:d1:47:3b:58:4b:7f:4e:16:c1:
8c:54:62:e6:51:f1:78:a4:60:6b:11:33:67:19:6d:aa:37:d8:
68:8e:15:03:46:11:66:18:ce:fd:61:a5:6d:f9:dc:f8:aa:83:
7e:6d:9b:bd:62:6b:c5:f6:1b:42:22:8b:6f:36:a7:67:00:94:
7f:c0:3c:8d:5d:13:9e:0a:e2:59:bb:6e:49:01:2f:96:e0:a5:
b1:3a:b2:96:ec:fd:1c:f8:35:11:a5:48:b6:07:3d:7e:cc:89:
c8:ac:7a:15:06:79:52:69:46:ea:c1:5f:10:d7:a3:41:44:ce:
0e:3a:59:0a:9a:9c:7a:bf:dd:7d:02:bd:ea:4a:e4:2b:db:cc:
45:23:b6:5e
-----BEGIN CERTIFICATE-----
MIIHDDCCBfSgAwIBAgIUHYgZ2l9tB9hhSwadS5+KK/9OXaowDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMTAyMDA0NTUwMFoX
DTIyMTAyMDA1MDAwMFowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBBMjlFMzY5RTg2NTMwMzM2RTRFMUI0NTE5MkI0NThDNTMzOThEOTVBRTlC
QjEwRUE3ODAzRDJDMjU0OEUwQUQxMEUzMUU5NUU1N0M2QjYwOTc4MzUxRjRCRDYw
Q0JFMjAwRjI2MkI2NzFCNDhEMTY5NkY5NzNGRDVCREE2OTVDODI5RTFCQkY0OURB
Qjk4MUY3RTlDOTZERTk0OUE2RUIzMDQ4NzNDRDQ2RERFQTE2M0NERDExODZCRjQ5
MzEwNEVGQ0I5MjNBMjY4MzNCMkQ3NjJBMDU2OEZBMDAyRDQ1RUEzQ0E3MkM1MkYw
QzM5RTNCNENDNjFGNzI3Q0QxQjhGM0YzM0FERkMzREEwMEY0MDk2NzY5OTAxMEVB
NERGN0JCNTBFQ0VDRkU2QTQ5NkUwRTI0NjFEODI2NEQwQTU0QTA4MDIyODIzQjJG
RTcyRTc3M0YwRTgyRTg5NkZBRkE0RjdENTRCNDQwRjI5RUM1RERCRjA1OUQwQjI1
MTQ5RDRFNkMxMDQ5MzMyMzU1RkY3M0IxODUyNTExOEM0RDcxQTMwRjAwQ0U1NTZE
RDE4MkU5NDU5MjM0QTI2QzRCRUY1ODQwQjI5QUI4MjM0NjhDOTg1RkEwMEYyN0NE
MDU3NEMzNjY0MUFFMDhDM0Y3MUExRDRBNTdEMzJDQTE5N0JBRDAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCinjaehlMDNuThtFGStFjF
M5jZWum7EOp4A9LCVI4K0Q4x6V5XxrYJeDUfS9YMviAPJitnG0jRaW+XP9W9ppXI
KeG79J2rmB9+nJbelJpuswSHPNRt3qFjzdEYa/STEE78uSOiaDOy12KgVo+gAtRe
o8pyxS8MOeO0zGH3J80bjz8zrfw9oA9AlnaZAQ6k33u1Ds7P5qSW4OJGHYJk0KVK
CAIoI7L+cudz8OguiW+vpPfVS0QPKexd2/BZ0LJRSdTmwQSTMjVf9zsYUlEYxNca
MPAM5VbdGC6UWSNKJsS+9YQLKauCNGjJhfoA8nzQV0w2ZBrgjD9xodSlfTLKGXut
AgMBAAGjggIDMIIB/zAdBgNVHQ4EFgQUwKNKuT5bi3SomM8fUlWvET32Y3IwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBhgYIKwYB
BQUHAQsEejB4MHYGCCsGAQUFBzALhmpyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMxMzAzMzJlMzEzNTM2MmUzMTMyMzgyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM5MzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnIAwDQYJ
KoZIhvcNAQELBQADggEBAGomPfNBu0G1xcc2wm1ir8cRVSyyVjYgfyWgxo1PSbCu
KUXdYoTxTdxQ/ujtlE/fsMxdSer6cJJ6h4Kc5c8/2whNeB6MymAtZ/3kBn/FYy0o
mLUPLuIL0gYvXWDfXlyQRNG+U7b9SXnkV8H830zYoJ4Wk9rNgNFHO1hLf04WwYxU
YuZR8XikYGsRM2cZbao32GiOFQNGEWYYzv1hpW353Piqg35tm71ia8X2G0Iii282
p2cAlH/API1dE54K4lm7bkkBL5bgpbE6spbs/Rz4NRGlSLYHPX7MicisehUGeVJp
RurBXxDXo0FEzg46WQqanHq/3X0CvepK5CvbzEUjtl4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:05 2023 by rpki-client on console-ams.rpki-client.org