Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32342d3234203d3e20313337333736.roa
File: 3130332e3131382e3132342e302f32342d3234203d3e20313337333736.roa (raw, json)
Hash identifier: QBvXSivbESZnMo/BF61Khz4nLs8dfIyeWrEyiU7m+IM=
Subject key identifier: 6D:FA:4E:20:1E:9A:EA:F0:A8:7A:BC:B1:7C:74:CD:12:42:42:7C:E6
Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57
Certificate serial: 1784C6923072BB247961B78746A437C9D0AD930A
Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32342d3234203d3e20313337333736.roa
Signing time: Fri 11 Feb 2022 09:25:35 +0000
ROA not before: Fri 11 Feb 2022 09:20:35 +0000
ROA not after: Sat 11 Feb 2023 09:25:35 +0000
asID: 137376
IP address blocks: 103.118.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:84:c6:92:30:72:bb:24:79:61:b7:87:46:a4:37:c9:d0:ad:93:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57
Validity
Not Before: Feb 11 09:20:35 2022 GMT
Not After : Feb 11 09:25:35 2023 GMT
Subject: CN=3082010A0282010100CAFE759CC8AF4E3BD6E1EAC151E296819802E80C21DA44A9EEE9E17F4870DEEFEF1B849482A40D79AA278FD147E6D3FF39E797F8719D147D3A2A6057289EE8CB767E02962614315BF472124503493831849EC024F9D3B74438EB98FCD1DF563842C5F9B5F01AB33148A3753243F08C46C7B0F6D37B306878AD126AC07A95EC02E69AD6D0EE6FE10AD49C21466C7C7A125B36194D3AA98E55D548051D032047D2C3A5785641F2455F4E33E4CF3301EB81453AEC2ECD657C14686A34C7448471670C0B5C6744591426547576FD5E4B7238FF192B87E6B1ABD4BF761BD12113111A99FD8D51A5DE8D1D5BEDD5C2790627E2275F919D3828046477B4475612B352C70203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fe:75:9c:c8:af:4e:3b:d6:e1:ea:c1:51:e2:
96:81:98:02:e8:0c:21:da:44:a9:ee:e9:e1:7f:48:
70:de:ef:ef:1b:84:94:82:a4:0d:79:aa:27:8f:d1:
47:e6:d3:ff:39:e7:97:f8:71:9d:14:7d:3a:2a:60:
57:28:9e:e8:cb:76:7e:02:96:26:14:31:5b:f4:72:
12:45:03:49:38:31:84:9e:c0:24:f9:d3:b7:44:38:
eb:98:fc:d1:df:56:38:42:c5:f9:b5:f0:1a:b3:31:
48:a3:75:32:43:f0:8c:46:c7:b0:f6:d3:7b:30:68:
78:ad:12:6a:c0:7a:95:ec:02:e6:9a:d6:d0:ee:6f:
e1:0a:d4:9c:21:46:6c:7c:7a:12:5b:36:19:4d:3a:
a9:8e:55:d5:48:05:1d:03:20:47:d2:c3:a5:78:56:
41:f2:45:5f:4e:33:e4:cf:33:01:eb:81:45:3a:ec:
2e:cd:65:7c:14:68:6a:34:c7:44:84:71:67:0c:0b:
5c:67:44:59:14:26:54:75:76:fd:5e:4b:72:38:ff:
19:2b:87:e6:b1:ab:d4:bf:76:1b:d1:21:13:11:1a:
99:fd:8d:51:a5:de:8d:1d:5b:ed:d5:c2:79:06:27:
e2:27:5f:91:9d:38:28:04:64:77:b4:47:56:12:b3:
52:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FA:4E:20:1E:9A:EA:F0:A8:7A:BC:B1:7C:74:CD:12:42:42:7C:E6
X509v3 Authority Key Identifier:
keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32342d3234203d3e20313337333736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.118.124.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a5:74:b1:e5:dd:b7:96:1c:df:6e:e3:c1:30:4b:44:ef:8f:
8e:37:6b:06:fc:f2:7f:3a:42:cb:9f:2c:d0:8a:25:ba:0f:b3:
97:81:71:a2:6b:fc:e1:5b:26:35:fc:e7:97:7c:87:01:a2:9d:
e2:55:d3:94:53:7d:10:1c:3f:78:eb:07:c3:3f:46:c3:70:72:
47:a2:74:5d:e1:32:02:fa:90:38:68:ef:9e:15:82:28:53:6c:
9e:19:19:d0:90:e9:39:4b:88:91:12:9d:29:e0:9a:38:01:e4:
30:f4:27:f1:2c:c9:19:23:a5:fe:e4:58:38:aa:a1:1a:50:ee:
9b:31:1c:06:e6:6e:89:db:30:84:ba:11:04:f5:b7:e3:d4:a7:
38:43:20:02:76:ce:c9:de:d4:eb:e6:0d:b7:15:b7:a6:30:eb:
43:a3:20:4b:c4:ae:44:52:1f:e7:fd:ad:e8:95:b2:ce:57:b9:
cf:6f:ed:ef:4c:fd:22:80:bb:86:a3:bd:f8:21:90:0e:95:17:
65:1c:00:8c:a4:3f:a1:04:e6:18:4e:60:fb:b4:57:80:27:49:
e2:e5:05:16:ef:d6:85:ad:99:1f:65:6c:24:90:83:76:e0:c7:
9d:fc:7c:d8:9a:75:ab:1d:93:f3:ba:cb:a9:02:5c:04:94:7d:
53:fc:44:02
-----BEGIN CERTIFICATE-----
MIIHKDCCBhCgAwIBAgIUF4TGkjByuyR5YbeHRqQ3ydCtkwowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB
QUUyMEY1NzAeFw0yMjAyMTEwOTIwMzVaFw0yMzAyMTEwOTI1MzVaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQ0FGRTc1OUNDOEFGNEUzQkQ2
RTFFQUMxNTFFMjk2ODE5ODAyRTgwQzIxREE0NEE5RUVFOUUxN0Y0ODcwREVFRkVG
MUI4NDk0ODJBNDBENzlBQTI3OEZEMTQ3RTZEM0ZGMzlFNzk3Rjg3MTlEMTQ3RDNB
MkE2MDU3Mjg5RUU4Q0I3NjdFMDI5NjI2MTQzMTVCRjQ3MjEyNDUwMzQ5MzgzMTg0
OUVDMDI0RjlEM0I3NDQzOEVCOThGQ0QxREY1NjM4NDJDNUY5QjVGMDFBQjMzMTQ4
QTM3NTMyNDNGMDhDNDZDN0IwRjZEMzdCMzA2ODc4QUQxMjZBQzA3QTk1RUMwMkU2
OUFENkQwRUU2RkUxMEFENDlDMjE0NjZDN0M3QTEyNUIzNjE5NEQzQUE5OEU1NUQ1
NDgwNTFEMDMyMDQ3RDJDM0E1Nzg1NjQxRjI0NTVGNEUzM0U0Q0YzMzAxRUI4MTQ1
M0FFQzJFQ0Q2NTdDMTQ2ODZBMzRDNzQ0ODQ3MTY3MEMwQjVDNjc0NDU5MTQyNjU0
NzU3NkZENUU0QjcyMzhGRjE5MkI4N0U2QjFBQkQ0QkY3NjFCRDEyMTEzMTExQTk5
RkQ4RDUxQTVERThEMUQ1QkVERDVDMjc5MDYyN0UyMjc1RjkxOUQzODI4MDQ2NDc3
QjQ0NzU2MTJCMzUyQzcwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAyv51nMivTjvW4erBUeKWgZgC6Awh2kSp7unhf0hw3u/vG4SUgqQN
eaonj9FH5tP/OeeX+HGdFH06KmBXKJ7oy3Z+ApYmFDFb9HISRQNJODGEnsAk+dO3
RDjrmPzR31Y4QsX5tfAaszFIo3UyQ/CMRsew9tN7MGh4rRJqwHqV7ALmmtbQ7m/h
CtScIUZsfHoSWzYZTTqpjlXVSAUdAyBH0sOleFZB8kVfTjPkzzMB64FFOuwuzWV8
FGhqNMdEhHFnDAtcZ0RZFCZUdXb9XktyOP8ZK4fmsavUv3Yb0SETERqZ/Y1Rpd6N
HVvt1cJ5BifiJ1+RnTgoBGR3tEdWErNSxwIDAQABo4ICNjCCAjIwHQYDVR0OBBYE
FG36TiAemurwqHq8sXx0zRJCQnzmMB8GA1UdIwQYMBaAFIxfouvXr0A5OIP7COcb
30Gq4g9XMA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQyYTViNTEtYmMwMC00ZDZiLTg3
NjEtYzdkMGQzZjZkZTEyLzAvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRG
NDFBQUUyMEY1Ny5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yLzhDNUZBMkVC
RDdBRjQwMzkzODgzRkIwOEU3MUJERjQxQUFFMjBGNTcuY2VyMIGmBggrBgEFBQcB
CwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8yZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC8z
MTMwMzMyZTMxMzEzODJlMzEzMjM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEz
MzM3MzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAZ3Z8MA0GCSqGSIb3DQEBCwUAA4IBAQBapXSx
5d23lhzfbuPBMEtE74+ON2sG/PJ/OkLLnyzQiiW6D7OXgXGia/zhWyY1/OeXfIcB
op3iVdOUU30QHD946wfDP0bDcHJHonRd4TIC+pA4aO+eFYIoU2yeGRnQkOk5S4iR
Ep0p4Jo4AeQw9CfxLMkZI6X+5Fg4qqEaUO6bMRwG5m6J2zCEuhEE9bfj1Kc4QyAC
ds7J3tTr5g23FbemMOtDoyBLxK5EUh/n/a3olbLOV7nPb+3vTP0igLuGo734IZAO
lRdlHACMpD+hBOYYTmD7tFeAJ0ni5QUW79aFrZkfZWwkkIN24Med/HzYmnWrHZPz
usupAlwElH1T/EQC
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org