Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313431393034.roa
File: 3130332e3136342e36382e302f32342d3234203d3e20313431393034.roa (raw, json)
Hash identifier: 6J9GB5EzFswbMKucEYVpdvNFqgDhSTd+DQkHpQz8c1w=
Subject key identifier: 74:60:D7:6D:35:ED:13:91:13:C3:C8:C1:10:B5:CF:CE:95:44:9F:38
Certificate issuer: /CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D
Certificate serial: 6D22D7B5B3F91D64671A05EFE26DCF3C3F589BB5
Authority key identifier: 15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313431393034.roa
Signing time: Wed 22 Mar 2023 23:27:32 +0000
ROA not before: Wed 22 Mar 2023 23:22:32 +0000
ROA not after: Wed 20 Mar 2024 23:27:32 +0000
asID: 141904
IP address blocks: 103.164.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:22:d7:b5:b3:f9:1d:64:67:1a:05:ef:e2:6d:cf:3c:3f:58:9b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D
Validity
Not Before: Mar 22 23:22:32 2023 GMT
Not After : Mar 20 23:27:32 2024 GMT
Subject: CN=7460D76D35ED139113C3C8C110B5CFCE95449F38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:94:62:b7:db:a3:7f:40:46:af:9d:4a:9d:12:
8a:8e:e1:ed:fd:7c:49:de:74:3f:f6:0e:9e:40:7f:
4c:31:57:b5:00:65:8f:e4:e6:5b:71:da:84:62:df:
7b:d8:09:56:ae:a8:e7:60:44:62:e0:6f:64:37:88:
79:05:36:33:a1:b5:33:9f:2e:36:2c:cf:55:9b:c1:
a7:4b:86:d4:6c:21:e2:ec:11:c0:9e:d6:24:fc:0a:
20:b4:4b:2e:07:ae:d6:cd:b6:4b:50:0b:da:43:c9:
20:dd:01:ab:06:6c:07:73:9a:c5:32:c4:f1:65:d9:
5b:0c:b6:67:62:9c:32:45:4c:cb:ae:96:fb:ae:a7:
b0:9d:47:c1:d6:00:a4:5e:b9:51:66:08:84:ec:24:
32:ff:eb:d4:18:44:72:9e:2b:b4:69:56:f3:e6:8a:
76:91:79:a9:a2:b3:36:fd:03:46:72:65:25:fc:47:
31:43:b6:a9:f1:69:7a:e9:cf:6c:ea:3e:31:d6:64:
15:5b:ad:84:a8:5b:74:6f:82:51:17:49:e9:d0:a0:
f9:b5:6c:bb:25:5b:b5:40:d7:8d:ce:a7:e5:5e:92:
cf:ae:c6:b5:39:97:99:31:49:0f:53:30:db:29:ca:
c5:bf:e2:cb:e6:cb:b4:b9:9a:1f:82:a1:89:e0:0b:
0d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:60:D7:6D:35:ED:13:91:13:C3:C8:C1:10:B5:CF:CE:95:44:9F:38
X509v3 Authority Key Identifier:
keyid:15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313431393034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.68.0/24
Signature Algorithm: sha256WithRSAEncryption
78:46:37:eb:46:13:e7:b6:2a:d0:21:ca:27:8c:62:9e:d4:58:
16:bd:ca:74:e4:14:10:87:3b:03:81:1e:f4:bb:ea:64:34:a9:
b7:c0:a3:96:55:25:ae:86:6f:70:8b:f9:c5:a0:fd:19:a9:a5:
39:8a:0b:20:32:51:9a:0d:4c:66:ec:4d:91:60:d9:c4:b5:f6:
2b:dc:9e:d4:01:c7:7e:5e:22:09:b3:66:2c:6b:40:da:91:a9:
6a:d7:1b:b3:31:08:de:b7:44:bc:bf:3e:28:c6:2a:09:b0:c6:
cb:c7:93:fe:a2:fd:49:ee:28:52:1a:40:34:05:8a:53:1f:02:
76:ca:18:5d:ec:4a:cd:61:bf:4e:07:c9:aa:62:b8:d8:4c:5b:
ab:f2:bf:e5:19:42:89:20:54:a1:43:f7:a8:28:37:43:d6:81:
a0:89:37:5d:a8:bc:a7:bb:63:5a:20:ee:f8:d4:3f:be:cc:9d:
5f:34:e1:49:b2:e1:eb:20:c5:9c:3a:b1:35:0a:60:ef:92:16:
72:d1:1d:ad:31:fe:6d:8d:55:80:f6:92:1b:b5:4e:77:f1:75:
b9:8c:4e:43:03:a7:3c:f6:43:55:ee:ee:16:eb:0e:b0:61:4c:
dd:be:71:0d:d4:ae:c8:d2:2c:53:e9:0f:c2:d0:d1:10:69:b7:
19:aa:a4:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org