Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3130332e32352e3130392e302f32342d3234203d3e20313339393439.roa
File: 3130332e32352e3130392e302f32342d3234203d3e20313339393439.roa (raw, json)
Hash identifier: 6n8BRiV9oKbgFminWmfjbPhmcBqboyNqdkeEJFEKCW8=
Subject key identifier: AC:C1:F2:1B:4F:AC:EB:60:FD:C8:22:36:D7:A9:20:13:5E:16:CD:AD
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 6DFA6BF181F19CB3FE3EB706B6F4403FF61B9AAF
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3130332e32352e3130392e302f32342d3234203d3e20313339393439.roa
Signing time: Wed 15 Mar 2023 11:08:30 +0000
ROA not before: Wed 15 Mar 2023 11:03:30 +0000
ROA not after: Wed 13 Mar 2024 11:08:30 +0000
asID: 139949
IP address blocks: 103.25.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:fa:6b:f1:81:f1:9c:b3:fe:3e:b7:06:b6:f4:40:3f:f6:1b:9a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 11:03:30 2023 GMT
Not After : Mar 13 11:08:30 2024 GMT
Subject: CN=ACC1F21B4FACEB60FDC82236D7A920135E16CDAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9c:a7:8f:c0:0e:53:b0:f7:6f:3e:f6:8c:02:
6f:9c:cd:d4:0e:18:93:5c:b0:91:1c:5e:89:59:8f:
30:a4:3e:d5:5f:9b:8f:74:2e:0e:25:8d:c2:41:b2:
3d:c4:54:52:3c:f1:5a:ca:99:91:1c:39:7e:fb:19:
f1:4b:e7:b3:17:b6:c3:be:50:20:9d:98:e5:f4:cd:
16:23:f5:07:02:b3:d6:bc:8c:29:9a:e1:77:fb:b9:
3e:b8:97:eb:68:57:58:9a:4b:57:a5:4b:58:f1:70:
b1:89:b5:01:1c:99:27:74:57:33:ad:3b:2e:33:42:
58:7d:8a:05:ce:14:d3:7e:6d:41:70:cf:b2:c7:9d:
51:c3:1b:5a:f7:20:ec:e9:74:a1:95:a2:5f:2c:05:
69:be:6d:e0:85:0a:51:48:d0:c0:16:dc:39:74:53:
ae:d6:8c:dd:b8:d9:3d:aa:f7:4b:aa:72:37:4e:33:
53:c2:19:79:35:ca:c5:4b:ad:d9:67:d1:d0:07:4d:
02:7b:ed:0b:13:76:7c:48:f1:53:cf:e8:93:7f:47:
a5:65:1d:86:10:f5:6e:bb:24:4f:8c:08:ae:17:2e:
55:4d:2a:94:a4:cd:aa:f8:37:7b:e0:c5:12:b8:71:
b9:ac:69:62:b2:84:c7:34:e4:52:dd:dd:b6:91:a4:
d4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C1:F2:1B:4F:AC:EB:60:FD:C8:22:36:D7:A9:20:13:5E:16:CD:AD
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3130332e32352e3130392e302f32342d3234203d3e20313339393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.25.109.0/24
Signature Algorithm: sha256WithRSAEncryption
48:b9:09:aa:f4:04:f2:47:51:df:a5:76:07:cc:92:41:ee:7b:
1b:f5:f3:77:31:db:56:8a:95:f9:29:84:c9:7d:80:61:f7:bd:
bd:0d:2d:46:49:b7:f4:75:1b:ad:18:e5:e0:26:fc:c9:64:ca:
b9:1c:c4:e9:f6:79:63:25:25:ed:e9:ca:29:69:64:0c:ce:fe:
c6:19:b3:92:bd:f9:e4:2c:c4:cb:05:ff:15:05:43:33:ef:04:
c8:77:5e:81:a1:23:75:17:b4:f8:48:1d:ad:8c:98:ce:ee:ad:
c5:f1:54:9d:40:f7:c2:01:92:3e:b5:39:bf:36:fe:d4:6a:c1:
b6:69:16:f1:b0:93:98:55:cd:8f:4d:aa:d2:fc:86:43:27:7f:
99:74:48:a6:c3:21:7b:7a:fd:29:1f:61:f9:c6:a5:f9:dd:2d:
d6:4c:a6:85:91:8e:7b:b3:c6:8e:4b:e4:7c:80:02:d9:a1:9b:
7b:ee:60:65:26:93:b9:18:da:d1:ff:e6:e9:70:c7:58:94:52:
ed:d0:24:fd:d3:7f:be:03:c9:47:9a:e2:e3:3d:38:90:ff:bf:
47:82:5b:06:bc:f2:4e:94:b2:8a:20:b9:59:1e:40:c5:c7:24:
3a:8b:23:fc:bd:b8:2a:3d:67:33:c5:61:b4:55:2f:f5:9d:ca:
55:a8:c4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org