Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133362e302f32332d3234203d3e20313531353735.roa
File: 3130332e39392e3133362e302f32332d3234203d3e20313531353735.roa (raw, json)
Hash identifier: cz353DC9oQBzGzTElL2Oc6Xc/5nBi87FN6bVUCxFiXk=
Subject key identifier: AD:61:7D:7E:96:19:0E:9F:3D:19:BF:8D:DF:70:8F:DD:C1:77:7F:B6
Certificate issuer: /CN=53576544C2D7C29DEC5245A4A81C19686D1160AA
Certificate serial: 40C9A6171174D23AD37015B4A806781A91EFCF50
Authority key identifier: 53:57:65:44:C2:D7:C2:9D:EC:52:45:A4:A8:1C:19:68:6D:11:60:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53576544C2D7C29DEC5245A4A81C19686D1160AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133362e302f32332d3234203d3e20313531353735.roa
Signing time: Sun 18 Feb 2024 12:30:40 +0000
ROA not before: Sun 18 Feb 2024 12:25:40 +0000
ROA not after: Sun 16 Feb 2025 12:30:40 +0000
asID: 151575
IP address blocks: 103.99.136.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:c9:a6:17:11:74:d2:3a:d3:70:15:b4:a8:06:78:1a:91:ef:cf:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53576544C2D7C29DEC5245A4A81C19686D1160AA
Validity
Not Before: Feb 18 12:25:40 2024 GMT
Not After : Feb 16 12:30:40 2025 GMT
Subject: CN=AD617D7E96190E9F3D19BF8DDF708FDDC1777FB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:23:d2:6f:be:cb:74:24:05:ef:7a:70:06:76:
10:db:3b:ae:fa:9d:11:b3:2e:75:46:5a:cf:a3:03:
01:0d:71:20:72:98:9b:6e:2c:09:73:22:38:a7:cb:
a5:54:86:16:7c:df:4b:64:7c:79:7a:04:94:aa:5f:
d4:f7:3b:6b:2f:70:c8:25:ca:20:98:22:9c:50:ef:
cc:26:2c:c1:ca:da:d4:cf:ec:53:c7:00:55:5b:9c:
3a:4a:b1:57:ee:14:f9:5d:93:37:88:0f:e5:db:4e:
cb:cb:ac:0d:48:2c:96:29:a1:2c:6f:d8:23:4b:85:
59:6c:05:36:00:2f:e3:86:c5:e9:45:c2:d7:c1:56:
30:cf:5b:5f:5b:8b:3b:5a:9d:fc:56:b1:8f:52:a5:
cc:b5:14:37:52:8e:69:52:95:2e:ee:48:d4:97:8c:
78:62:af:9f:8a:fd:b2:d5:74:ea:1e:3e:f8:73:b2:
d3:a3:a9:29:ef:4c:98:14:e9:05:d1:29:fc:ec:4d:
d3:e3:12:95:23:e4:ad:82:10:ae:03:41:cd:9f:3f:
54:1b:6c:7f:a6:72:3f:8a:b5:0d:6d:ba:26:90:09:
86:81:0a:db:05:d1:60:f0:d1:e9:88:ab:d3:24:62:
08:a3:0e:70:a4:10:72:6c:ae:b8:63:1c:3a:54:0c:
fc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:61:7D:7E:96:19:0E:9F:3D:19:BF:8D:DF:70:8F:DD:C1:77:7F:B6
X509v3 Authority Key Identifier:
keyid:53:57:65:44:C2:D7:C2:9D:EC:52:45:A4:A8:1C:19:68:6D:11:60:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/53576544C2D7C29DEC5245A4A81C19686D1160AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53576544C2D7C29DEC5245A4A81C19686D1160AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133362e302f32332d3234203d3e20313531353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.99.136.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:63:54:de:0d:ee:87:48:2c:5e:b1:7c:00:d3:ad:36:86:e1:
dd:a5:0a:1f:9b:b6:21:f3:7a:21:39:8a:9f:ee:ae:80:07:d4:
88:9f:2d:18:bc:e5:d5:7e:39:08:87:21:3c:2b:96:86:ef:c7:
5d:f5:0d:2f:f2:04:91:61:af:9e:23:7f:c4:4a:ed:c0:83:b3:
9f:a6:2e:ed:a2:12:d2:14:f3:b0:1d:14:ea:40:f8:92:31:25:
34:4f:60:fe:4f:02:5a:41:5c:47:15:44:d5:82:62:23:46:1b:
5d:83:9b:06:e0:a3:a2:9f:f3:80:62:6f:57:b2:58:13:ef:4c:
cd:61:29:d8:09:5f:11:98:e6:7b:43:87:f9:b3:ed:9b:cc:ca:
67:9c:ac:1f:d7:32:59:9d:39:10:53:0c:19:9d:6b:f1:8f:49:
85:95:1e:28:e8:ea:86:e6:8e:a0:3d:98:76:d5:76:d1:bc:42:
07:5d:2c:15:bc:ac:a8:a5:b5:3c:f3:0e:a3:95:47:25:8d:ec:
4e:d5:71:28:15:e5:8b:86:e9:af:a2:49:54:b7:83:af:48:73:
81:8e:a1:f6:6c:a9:ab:db:01:4f:96:2b:6d:2f:27:67:a6:00:
6c:e3:7c:f3:b6:91:7d:18:90:ea:e4:48:ec:18:48:d9:56:9f:
ae:c5:c1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:43:33 2025 by rpki-client