Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439363833.roa
File: 3130332e3138342e32302e302f32342d3234203d3e20313439363833.roa (raw, json)
Hash identifier: nYekLiNSlzl6WTf9RVVyEq/a1cncaZE9EJ6c2EXsqwQ=
Subject key identifier: 3A:75:25:DB:11:FC:1B:C8:F9:5B:89:46:66:CB:54:DE:37:1A:73:6D
Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596
Certificate serial: 363E4C889225D0F10CBFAAB3309EB733B5647703
Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439363833.roa
Signing time: Fri 26 Aug 2022 10:21:59 +0000
ROA not before: Fri 26 Aug 2022 10:16:59 +0000
ROA not after: Fri 25 Aug 2023 10:21:59 +0000
asID: 149683
IP address blocks: 103.184.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:3e:4c:88:92:25:d0:f1:0c:bf:aa:b3:30:9e:b7:33:b5:64:77:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596
Validity
Not Before: Aug 26 10:16:59 2022 GMT
Not After : Aug 25 10:21:59 2023 GMT
Subject: CN=3A7525DB11FC1BC8F95B894666CB54DE371A736D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:67:8c:07:a1:4c:99:06:23:4b:1f:e1:6d:f7:
24:d2:8f:d0:a9:5d:e8:5a:09:04:50:3d:de:29:5f:
89:8c:a6:09:7a:7a:81:ed:94:80:4e:d3:4b:c4:da:
26:3b:83:7e:60:bc:07:7f:5b:e7:da:88:16:32:bc:
d3:db:7c:0d:f8:c8:7d:05:68:52:b6:c6:b7:56:c9:
99:ae:30:48:fd:b8:89:27:26:de:1e:c1:40:b5:1f:
62:c8:bd:11:d2:34:fc:0a:fc:62:74:46:d9:f1:41:
d1:a6:87:ae:13:81:3f:4a:06:39:a0:84:3c:9c:4e:
16:37:f2:22:f0:e9:15:bc:85:25:95:ee:9a:38:99:
79:75:05:cb:d3:dc:27:08:3d:6f:b2:fe:39:10:b7:
27:3c:86:d5:8b:1f:84:c1:ab:e4:3c:81:6b:a0:45:
ae:9f:65:4c:95:52:6e:18:38:fe:38:13:2b:01:86:
f5:df:c4:01:f4:39:8c:95:90:6f:63:25:2f:ee:46:
08:f0:fa:02:3e:3e:0e:04:5a:fd:2e:9b:6e:99:74:
e6:e5:c6:de:4f:33:c4:f6:d6:f7:a4:14:eb:3b:34:
e0:8f:0e:d9:5f:69:3d:1a:2a:45:1e:f7:5f:17:15:
f5:ee:b4:ea:d0:fa:5b:43:a7:33:c5:dc:b6:39:79:
91:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:75:25:DB:11:FC:1B:C8:F9:5B:89:46:66:CB:54:DE:37:1A:73:6D
X509v3 Authority Key Identifier:
keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439363833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.20.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:65:04:54:4c:fc:74:69:ee:87:65:f9:6c:1b:bf:fd:76:73:
06:e8:d4:d3:32:0e:f6:e2:85:51:d4:85:c2:73:59:64:ff:e9:
ab:6f:d3:c1:8d:66:fa:5e:e2:9a:23:c5:39:58:0f:3a:dd:ab:
56:f3:e5:09:02:45:11:d7:23:d8:80:dc:8c:dc:cb:b4:53:6c:
cd:eb:fc:2a:67:e9:71:ed:62:01:6f:18:b3:ff:07:db:41:e6:
f4:8b:28:1f:49:99:2c:2a:2a:49:33:04:50:59:7d:0a:fe:7e:
0c:e0:db:6a:85:66:b6:5d:8b:61:97:07:5d:87:35:1e:41:1a:
2a:1a:14:db:0d:06:91:f9:0f:aa:49:35:44:b6:8e:85:27:5e:
94:0e:75:27:95:2e:c9:17:fd:5a:2f:82:e8:8f:77:56:2a:f3:
53:47:97:c6:90:1a:f6:1e:07:17:b0:d2:93:f4:d1:7f:29:60:
a1:33:a9:d5:76:4d:1a:ed:e5:5a:c6:ed:72:48:9a:a1:ef:b8:
bf:90:c2:e9:a3:f1:b3:64:74:84:d8:3d:79:67:82:fe:a6:62:
4b:f5:d8:8e:b6:c5:b6:2e:10:36:b0:8b:18:04:b2:3d:d7:e6:
86:65:3a:90:96:88:6b:75:d6:91:d0:00:21:14:f7:ec:32:0b:
96:f5:db:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org