Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa
File: 3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa (raw, json)
Hash identifier: Cuj7u8XqdRqRXdvOg7X9FAD0muH0FM0YJ1L6DA+llSs=
Subject key identifier: 0A:C2:DF:1F:EF:A4:30:31:FB:EB:66:37:7F:0F:72:E4:89:DC:85:8E
Certificate issuer: /CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B
Certificate serial: 12930A8FED7308560DEB1DF78A1F179E662F5BC6
Authority key identifier: 33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa
Signing time: Wed 19 Oct 2022 05:00:00 +0000
ROA not before: Wed 19 Oct 2022 04:55:00 +0000
ROA not after: Wed 18 Oct 2023 05:00:00 +0000
asID: 23679
IP address blocks: 103.238.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:93:0a:8f:ed:73:08:56:0d:eb:1d:f7:8a:1f:17:9e:66:2f:5b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B
Validity
Not Before: Oct 19 04:55:00 2022 GMT
Not After : Oct 18 05:00:00 2023 GMT
Subject: CN=0AC2DF1FEFA43031FBEB66377F0F72E489DC858E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1b:e9:6e:ac:49:91:cc:d2:fa:2e:23:52:d5:
a3:28:e1:2b:aa:d5:b2:0d:44:2b:d2:a6:cd:6d:cf:
b7:64:ea:42:b5:85:27:13:0c:e2:ca:a4:40:be:66:
c3:63:37:96:1f:b8:b2:d1:a0:8e:a1:cf:4d:b6:ad:
25:27:29:5d:92:09:7a:03:cb:29:07:55:a7:1b:76:
68:05:7b:69:7f:e0:69:7b:22:e6:55:ed:45:65:a1:
74:2b:f1:18:c0:8c:b4:cb:40:c7:6b:2c:c1:cb:80:
b0:0f:00:c4:fb:db:e2:1d:5b:8d:e1:c9:78:6a:79:
22:a2:26:93:5c:ca:33:69:95:9a:6f:aa:cf:18:b6:
bc:4a:6d:a0:c2:52:85:b1:11:c1:fe:04:a3:70:8a:
24:77:24:81:e4:a4:62:b4:1e:fc:c1:6d:78:77:4c:
00:93:9a:fa:a2:23:22:c4:fe:34:6c:8f:0d:69:cb:
c2:6f:ac:1b:ed:20:45:a0:c0:cb:08:0f:95:54:70:
d7:d0:bc:b0:42:5a:b5:ef:09:35:21:5e:39:db:e0:
60:37:12:67:20:2b:91:f7:ec:3c:7b:4a:7f:ee:bb:
8f:ab:83:77:7a:16:8b:19:09:91:4a:9a:78:2b:30:
1c:3a:12:3c:6e:36:ac:9a:90:b3:b5:78:52:29:a9:
82:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C2:DF:1F:EF:A4:30:31:FB:EB:66:37:7F:0F:72:E4:89:DC:85:8E
X509v3 Authority Key Identifier:
keyid:33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.238.200.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:65:22:b5:d7:75:ed:e6:e3:5b:8a:cd:49:9d:3f:64:47:5b:
00:71:b4:81:84:fb:63:31:88:a3:12:70:e3:fc:c0:ed:6e:fb:
1e:fb:ae:e1:14:f0:cd:4d:9f:fd:8f:ee:c6:46:50:fd:41:d8:
8e:2f:58:a6:e2:ed:7b:0d:51:1c:69:da:43:66:cd:e9:73:10:
7c:59:5d:5a:b6:63:f3:62:fc:97:ed:e7:5d:39:d4:76:4b:cd:
da:46:d9:2c:4a:59:76:ea:2c:ee:e1:9e:a3:02:fe:ec:9a:16:
a3:bf:c5:7b:fc:dc:e9:0a:67:b9:5e:43:07:c0:4d:7f:dd:dd:
55:6d:83:c2:dd:d5:c0:44:8d:ef:d0:f8:39:a5:8a:db:cb:3c:
73:0e:01:f6:ae:02:aa:87:11:63:73:3c:71:98:e3:f1:09:91:
eb:35:54:13:a1:71:b3:4b:b0:2d:05:ee:02:5e:1f:6b:4f:6f:
cc:6e:e5:31:c7:f8:1d:da:11:3c:21:3b:5b:f4:d7:44:eb:f5:
23:88:5a:7d:ab:11:c5:48:11:61:f7:ed:ef:61:4d:76:23:29:
97:c3:fc:d4:4e:86:d7:56:7c:c4:fd:f2:2e:bf:da:6b:36:74:
5f:1e:4a:98:05:38:e7:b1:44:74:1d:69:9f:a6:cc:21:b9:85:
e7:33:8f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org