Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313432333534.roa
File: 3130332e3136342e36382e302f32342d3234203d3e20313432333534.roa (raw, json)
Hash identifier: 8Mdqq/ku0X5Q+XxN1/WXfwzK1s0q/F+HREJiDYOQgHE=
Subject key identifier: FD:AA:41:09:AB:8E:8A:4D:1E:DF:80:A8:F0:F3:20:CE:52:1C:E1:BC
Certificate issuer: /CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D
Certificate serial: 67B5C6B39F15136F8029126C6DA3B1F115AB7038
Authority key identifier: 15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313432333534.roa
Signing time: Fri 15 Jul 2022 15:53:33 +0000
ROA not before: Fri 15 Jul 2022 15:48:33 +0000
ROA not after: Fri 14 Jul 2023 15:53:33 +0000
asID: 142354
IP address blocks: 103.164.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:b5:c6:b3:9f:15:13:6f:80:29:12:6c:6d:a3:b1:f1:15:ab:70:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D
Validity
Not Before: Jul 15 15:48:33 2022 GMT
Not After : Jul 14 15:53:33 2023 GMT
Subject: CN=FDAA4109AB8E8A4D1EDF80A8F0F320CE521CE1BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9a:54:dd:a4:c0:54:8a:33:02:da:91:1a:72:
0d:c5:17:85:77:85:41:1a:7c:1c:7d:c4:55:f7:3d:
a4:de:89:e5:97:bf:08:00:83:e8:a5:5f:e4:ab:f5:
13:e1:dd:12:39:1d:e2:d8:34:d8:e0:af:d8:59:5e:
b1:34:9e:06:3d:a8:28:24:25:3a:30:54:da:8e:1a:
9c:d1:3a:f0:fc:3a:be:ef:fb:19:f5:33:47:48:dc:
e4:60:31:43:77:37:04:6b:75:1f:85:2c:7b:f5:e6:
bf:4b:7d:3a:8d:4b:ae:dc:6d:5b:39:7d:16:7a:11:
68:5b:09:cb:97:0c:f2:2b:9f:d8:3e:6a:8f:58:7f:
1d:81:81:ba:a1:91:30:34:63:4c:a3:bd:60:2f:54:
8d:82:a0:9d:9a:f5:50:0e:3a:22:65:bd:1f:14:d8:
9c:69:7f:38:25:80:85:dd:8a:69:a9:7b:6a:c9:81:
bd:aa:25:ba:f7:fd:ce:1e:f2:11:28:27:d5:8c:02:
1b:9e:fd:bf:ae:69:ea:96:0e:89:88:9d:ef:7b:62:
67:7e:11:86:fa:cf:1c:c3:0e:7b:bc:80:f6:90:c2:
18:5c:9e:58:2b:b5:60:1d:71:55:f2:bf:4c:75:70:
56:ea:a2:20:d1:51:aa:9d:e2:4d:4a:db:57:b3:03:
04:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AA:41:09:AB:8E:8A:4D:1E:DF:80:A8:F0:F3:20:CE:52:1C:E1:BC
X509v3 Authority Key Identifier:
keyid:15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313432333534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.68.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:fa:58:06:cc:26:ac:67:a1:dd:f0:c1:fe:c3:7d:ea:d9:d8:
08:33:f4:6c:50:59:c3:e4:69:09:ef:09:7b:c6:66:72:80:c9:
bd:c1:a4:3a:c5:a7:24:19:bd:52:e5:dc:41:ef:2d:c0:db:dc:
a1:23:2d:83:84:b8:c8:a8:8f:cd:72:6b:58:de:6d:5e:17:97:
82:b3:a2:74:42:c5:22:7d:77:8f:50:bd:6d:fb:82:85:ad:38:
ce:2f:e4:31:c7:30:ec:81:f3:6a:61:d1:59:59:f8:6d:da:22:
bb:63:e9:89:62:c0:fd:f2:64:16:b2:8c:74:12:3d:81:ca:12:
fe:27:00:05:d7:f3:b5:15:29:be:91:7e:34:4c:ea:c8:8b:27:
2d:a6:a8:c7:1d:76:07:4f:c2:24:96:ec:50:8b:38:97:9a:aa:
06:00:24:3b:0b:c4:4d:58:8b:6f:0e:c5:29:cd:a1:62:7f:20:
b3:fd:ec:d0:2c:68:94:8f:30:3c:05:bf:2e:07:17:ad:3a:d4:
cc:e0:07:ca:ec:a2:62:e7:21:40:a5:60:14:37:01:81:50:0c:
cb:a6:9f:e8:a4:d2:fc:5d:26:21:99:95:8d:7e:64:25:7e:13:
57:67:d8:96:c0:bb:0b:c0:c4:84:08:e9:9c:35:5c:e8:3e:db:
22:2c:3d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org