Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131392e302f32342d3234203d3e20313530323234.roa
File: 3130332e31362e3131392e302f32342d3234203d3e20313530323234.roa (raw, json)
Hash identifier: pHrVjwcSbElwa7DnvIKcj820SCVqbGA/lUxXvlX50l4=
Subject key identifier: 86:68:2E:45:EB:25:D5:23:E5:C3:A2:D5:CA:2D:7F:64:E4:17:B0:A1
Certificate issuer: /CN=AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A
Certificate serial: 697AD8C693E249E7CE2DEDA1BE6EBBFB441EC20B
Authority key identifier: AB:3C:3F:A1:D3:27:5E:28:4B:07:A8:4E:C9:50:85:DF:9B:C5:A2:2A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131392e302f32342d3234203d3e20313530323234.roa
Signing time: Tue 14 Feb 2023 10:13:51 +0000
ROA not before: Tue 14 Feb 2023 10:08:51 +0000
ROA not after: Tue 13 Feb 2024 10:13:51 +0000
asID: 150224
IP address blocks: 103.16.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:7a:d8:c6:93:e2:49:e7:ce:2d:ed:a1:be:6e:bb:fb:44:1e:c2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A
Validity
Not Before: Feb 14 10:08:51 2023 GMT
Not After : Feb 13 10:13:51 2024 GMT
Subject: CN=86682E45EB25D523E5C3A2D5CA2D7F64E417B0A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:49:41:e8:86:cd:92:6d:7c:28:d7:16:7a:a1:
a4:e4:19:cc:1d:ac:d4:13:f4:78:d7:bf:42:b0:c4:
46:70:21:56:f5:8a:23:a5:0b:34:f4:d9:8b:95:72:
2a:fd:b9:9b:a2:dc:fd:03:77:51:46:18:4b:7e:92:
0b:4f:30:ab:fe:4a:0a:3f:03:db:5f:06:75:52:25:
7c:f9:5e:b5:98:6f:e6:f2:93:7d:af:29:b9:42:a3:
85:51:5e:05:30:b1:76:95:6d:0d:fd:22:99:02:41:
22:f3:64:5b:48:6b:e8:e3:4d:66:91:fc:4a:90:3f:
0b:99:77:f8:26:d5:22:02:70:59:8e:97:15:a9:95:
b9:1c:0a:41:72:ed:56:2c:59:2b:14:7e:6c:fc:0d:
e1:d1:0b:27:83:41:4b:ef:e6:e4:e6:c0:69:e4:bd:
97:a9:ce:7b:8d:78:37:13:f9:e8:e3:c6:f0:73:6a:
05:05:83:cf:45:97:15:27:e8:1e:98:c7:aa:e7:4f:
86:03:9e:0e:35:c9:b4:40:1e:c9:b5:d4:11:72:2b:
76:88:8e:22:48:36:a2:3f:df:86:93:ef:74:e5:03:
23:e5:61:61:6c:4a:a1:f1:9f:4c:37:91:df:83:da:
ba:0c:27:b9:34:c6:8f:70:1c:31:42:34:0d:ba:6d:
d9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:68:2E:45:EB:25:D5:23:E5:C3:A2:D5:CA:2D:7F:64:E4:17:B0:A1
X509v3 Authority Key Identifier:
keyid:AB:3C:3F:A1:D3:27:5E:28:4B:07:A8:4E:C9:50:85:DF:9B:C5:A2:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131392e302f32342d3234203d3e20313530323234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.16.119.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:80:0e:f4:a2:0a:e3:1f:52:4c:25:73:c0:8d:6b:f5:0e:6d:
0a:e8:5f:59:12:fc:9a:ab:80:16:27:12:fe:67:ea:e4:52:83:
df:6d:2e:ff:e0:f2:5e:41:85:31:9b:14:34:c9:2b:f4:59:ff:
bb:ee:45:39:13:d0:0b:07:bf:bd:18:10:be:ac:c7:19:43:f0:
a6:1c:b9:b3:ec:78:29:f0:07:dd:ab:c9:5b:8d:af:dd:80:f7:
07:3d:d6:fa:30:dc:8e:6e:ef:12:5b:1d:aa:53:0f:5b:4b:5c:
99:7a:c9:b5:e2:4f:58:eb:84:d8:d6:c2:f3:40:dc:f9:3b:20:
96:1e:9a:72:72:78:ca:d3:8a:5f:12:86:0e:41:fd:62:c6:1c:
4c:d9:f4:03:8e:4c:c7:3e:69:54:bb:c1:f3:19:f8:54:31:fa:
82:ee:2c:2e:ad:db:6b:0b:f8:da:bb:da:68:1d:5a:ba:de:0e:
7b:24:e3:d8:d5:a8:88:5d:32:10:0d:90:c4:42:d4:55:55:82:
7f:80:1a:18:4f:4e:86:78:de:35:c4:00:ba:95:1b:e5:c2:b1:
da:16:b5:7c:27:0f:a0:9e:5e:3e:82:bd:17:7d:0a:51:d6:30:
a3:7c:2c:ed:6c:cf:2d:e4:99:c9:b9:57:b4:ba:c1:bd:dc:41:
f0:ad:c7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org