Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa
File: 3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa (raw, json)
Hash identifier: qdZZFj0h2nZRzMVIQd2fPlOWqdzqE2YSXZJXvHWLMAY=
Subject key identifier: 44:B7:B6:85:0A:3F:9E:EE:4A:B2:FD:0C:B5:70:2D:FE:9A:2C:32:E1
Certificate issuer: /CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B
Certificate serial: 70D4EA95F50DF7AFBF6A22B456687FE0245AF990
Authority key identifier: 33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa
Signing time: Wed 19 Oct 2022 05:00:00 +0000
ROA not before: Wed 19 Oct 2022 04:55:00 +0000
ROA not after: Wed 18 Oct 2023 05:00:00 +0000
asID: 23679
IP address blocks: 103.238.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d4:ea:95:f5:0d:f7:af:bf:6a:22:b4:56:68:7f:e0:24:5a:f9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B
Validity
Not Before: Oct 19 04:55:00 2022 GMT
Not After : Oct 18 05:00:00 2023 GMT
Subject: CN=44B7B6850A3F9EEE4AB2FD0CB5702DFE9A2C32E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6b:53:9e:c6:23:d7:ad:69:89:47:66:bb:0b:
8f:be:3d:2d:1e:a3:2a:4b:1d:40:49:b1:95:8a:e1:
d3:a3:69:f3:45:f1:c2:83:b6:81:ff:47:d7:e7:53:
67:f4:e3:21:fb:e2:db:07:e5:6b:40:2b:54:07:b4:
e4:9c:6f:16:68:84:60:0c:13:8b:61:37:81:26:3c:
b5:56:aa:99:98:2f:ff:56:3d:23:7e:59:e3:bc:c6:
ba:d2:d0:7a:ab:6a:28:cb:72:4e:fe:38:95:4c:4f:
6d:95:c8:17:cb:12:8d:49:bf:e5:10:b6:f9:af:fe:
3d:b9:af:e2:15:cc:27:a0:18:d6:42:7d:8a:4a:c7:
4e:f2:d4:c1:67:13:6f:7f:10:f9:66:ad:cf:76:af:
9b:43:ae:5c:c5:c3:69:89:e8:f0:64:9d:8a:54:47:
39:e8:f8:34:78:d0:52:8a:c6:f5:c6:ba:b1:de:75:
6c:21:7c:74:24:78:fd:b4:15:09:fc:14:1d:62:36:
bd:d9:39:dd:fb:d0:4a:ce:c7:35:34:bf:7a:e1:4b:
40:5b:c7:ab:80:34:84:7f:fa:0d:c6:f9:35:f9:a9:
43:62:a2:64:c3:c5:a6:22:07:8a:ed:39:9f:01:e9:
45:9e:a8:bc:be:95:55:b5:77:5c:df:aa:e0:ef:e4:
ff:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B7:B6:85:0A:3F:9E:EE:4A:B2:FD:0C:B5:70:2D:FE:9A:2C:32:E1
X509v3 Authority Key Identifier:
keyid:33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.238.201.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6e:d6:ec:a1:7d:5c:8f:57:98:d8:84:b6:77:bd:93:2b:53:
bf:eb:4b:1d:92:42:c5:ce:a3:8e:ed:47:98:95:67:2c:c6:cf:
b3:68:ba:71:20:f4:f8:ee:d7:4e:12:7a:24:34:84:3d:86:53:
7f:5c:54:b4:72:1b:05:0b:63:4f:0c:73:49:44:af:69:11:3f:
26:1d:09:4a:a5:e8:bc:f7:c4:a3:22:16:b3:9b:fb:a2:28:30:
0b:4d:34:d0:82:6a:6f:1e:9c:a8:3c:58:25:d2:df:fa:a9:52:
b7:0a:c3:9c:78:1e:82:72:cc:9c:4c:fa:02:c6:fd:fc:32:04:
de:01:d2:a6:70:29:dd:45:03:14:b8:2a:6d:38:09:3f:e3:09:
31:c7:01:df:ab:2f:25:8a:e2:16:c2:ef:bf:22:03:7a:8f:bb:
1d:43:3a:24:6c:07:84:fa:89:4f:72:c6:64:5e:8d:92:8a:e4:
ff:52:72:dd:af:e4:2c:d1:9f:fa:a3:52:9b:1c:ed:56:dd:42:
05:a7:a6:01:66:c4:c1:8a:23:dd:55:bf:e0:bd:25:9f:a0:50:
15:37:02:c3:aa:bd:e7:f9:e5:42:e3:64:83:ff:5e:95:48:15:
ba:11:23:3a:76:b5:56:9e:94:a1:e8:1a:6a:bc:15:bf:a0:01:
a3:88:d9:9d
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUcNTqlfUN96+/aiK0Vmh/4CRa+ZAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhDOUUz
QzkzQjk2QjAeFw0yMjEwMTkwNDU1MDBaFw0yMzEwMTgwNTAwMDBaMDMxMTAvBgNV
BAMTKDQ0QjdCNjg1MEEzRjlFRUU0QUIyRkQwQ0I1NzAyREZFOUEyQzMyRTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0a1OexiPXrWmJR2a7C4++PS0e
oypLHUBJsZWK4dOjafNF8cKDtoH/R9fnU2f04yH74tsH5WtAK1QHtOScbxZohGAM
E4thN4EmPLVWqpmYL/9WPSN+WeO8xrrS0HqraijLck7+OJVMT22VyBfLEo1Jv+UQ
tvmv/j25r+IVzCegGNZCfYpKx07y1MFnE29/EPlmrc92r5tDrlzFw2mJ6PBknYpU
Rzno+DR40FKKxvXGurHedWwhfHQkeP20FQn8FB1iNr3ZOd370ErOxzU0v3rhS0Bb
x6uANIR/+g3G+TX5qUNiomTDxaYiB4rtOZ8B6UWeqLy+lVW1d1zfquDv5P+xAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQURLe2hQo/nu5Ksv0MtXAt/posMuEwHwYDVR0j
BBgwFoAUM43rjXBRxj/GzNexpd2MnjyTuWswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
MjRhNjVmNC00ZjRiLTQ0YjYtYTJlYi01OTk1N2JjNmE0ZDMvMC8zMzhERUI4RDcw
NTFDNjNGQzZDQ0Q3QjFBNUREOEM5RTNDOTNCOTZCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhDOUUzQzkz
Qjk2Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyNGE2NWY0LTRmNGItNDRiNi1h
MmViLTU5OTU3YmM2YTRkMy8wLzMxMzAzMzJlMzIzMzM4MmUzMjMwMzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+7JMA0GCSqG
SIb3DQEBCwUAA4IBAQBYbtbsoX1cj1eY2IS2d72TK1O/60sdkkLFzqOO7UeYlWcs
xs+zaLpxIPT47tdOEnokNIQ9hlN/XFS0chsFC2NPDHNJRK9pET8mHQlKpei898Sj
Ihazm/uiKDALTTTQgmpvHpyoPFgl0t/6qVK3CsOceB6CcsycTPoCxv38MgTeAdKm
cCndRQMUuCptOAk/4wkxxwHfqy8liuIWwu+/IgN6j7sdQzokbAeE+olPcsZkXo2S
iuT/UnLdr+Qs0Z/6o1KbHO1W3UIFp6YBZsTBiiPdVb/gvSWfoFAVNwLDqr3n+eVC
42SD/16VSBW6ESM6drVWnpSh6BpqvBW/oAGjiNmd
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org