Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/3130332e3232342e3133362e302f32342d3234203d3e203539313539.roa
File: 3130332e3232342e3133362e302f32342d3234203d3e203539313539.roa (raw, json)
Hash identifier: DEdX8G9ljJ0X0RdwjnIZY5bLsUUPuwCG2m+cYSRvMAk=
Subject key identifier: 9D:4D:48:3D:5F:18:34:09:66:FA:EA:C7:9E:DF:90:43:E4:61:6B:75
Certificate issuer: /CN=988E0377882A4782CADFC665BEA75BF64BFBAF8E
Certificate serial: 01855FC5D01282E32B8F3E9E966B9795B298C178
Authority key identifier: 98:8E:03:77:88:2A:47:82:CA:DF:C6:65:BE:A7:5B:F6:4B:FB:AF:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/988E0377882A4782CADFC665BEA75BF64BFBAF8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/3130332e3232342e3133362e302f32342d3234203d3e203539313539.roa
Signing time: Wed 08 Dec 2021 03:30:51 +0000
ROA not before: Wed 08 Dec 2021 03:25:51 +0000
ROA not after: Thu 08 Dec 2022 03:30:51 +0000
asID: 59159
IP address blocks: 103.224.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5f:c5:d0:12:82:e3:2b:8f:3e:9e:96:6b:97:95:b2:98:c1:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=988E0377882A4782CADFC665BEA75BF64BFBAF8E
Validity
Not Before: Dec 8 03:25:51 2021 GMT
Not After : Dec 8 03:30:51 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fc:53:3f:28:31:28:cf:20:24:4b:b6:9e:dc:
41:93:78:51:e5:5d:7a:ac:f7:91:e3:94:e1:b1:3b:
60:a6:5c:29:f5:f1:bb:ac:fe:23:4f:af:da:5b:22:
11:a1:06:8a:e5:fd:c8:0a:ca:ab:5d:af:51:e0:29:
30:1c:56:c5:6f:5b:ac:ca:08:be:9e:dc:3f:b6:e9:
a6:7c:50:90:9b:41:1a:15:af:c5:52:a6:bd:c4:df:
b4:5e:4c:c8:ea:bb:06:9a:9e:63:7b:50:47:21:d0:
d1:b0:99:d1:6f:42:62:53:7d:6e:49:4b:24:40:04:
01:7d:9f:ef:b9:cb:25:95:e6:c0:c9:35:93:d9:0b:
b0:76:99:c1:a1:27:76:54:bb:cd:1d:82:61:b7:a8:
d8:df:8c:6c:c1:4a:a9:72:c2:fd:db:e6:94:98:0d:
90:71:33:15:23:81:b2:c5:c6:53:0c:e7:b0:09:aa:
e2:78:a3:38:d4:10:0d:85:2d:e4:c6:0b:db:6d:07:
57:66:25:49:54:39:6a:92:44:5b:d3:6d:9e:8a:f8:
05:2e:9f:b6:4b:ac:ae:97:87:cc:dc:9a:e7:97:d4:
d1:34:01:50:c5:ac:41:9b:38:25:95:49:43:3f:4d:
b2:14:ee:34:fd:af:91:36:e2:8c:a4:2d:e1:6a:b8:
a0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4D:48:3D:5F:18:34:09:66:FA:EA:C7:9E:DF:90:43:E4:61:6B:75
X509v3 Authority Key Identifier:
keyid:98:8E:03:77:88:2A:47:82:CA:DF:C6:65:BE:A7:5B:F6:4B:FB:AF:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/988E0377882A4782CADFC665BEA75BF64BFBAF8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/988E0377882A4782CADFC665BEA75BF64BFBAF8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/3130332e3232342e3133362e302f32342d3234203d3e203539313539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.224.136.0/24
Signature Algorithm: sha256WithRSAEncryption
92:81:31:89:31:3b:c9:0d:b3:eb:9a:96:52:5b:42:7d:15:ea:
23:8d:4f:52:15:8c:33:e7:3e:87:fa:46:3f:65:3d:87:29:0a:
cc:4d:2b:15:a7:9d:19:25:61:3e:89:13:a0:de:80:a9:67:1f:
60:97:0a:db:ce:97:a0:6e:75:53:3d:4e:dc:8f:71:23:35:30:
1c:53:5a:8e:2b:bc:7b:09:f2:70:d9:b9:45:80:36:55:5f:bd:
52:28:74:97:ff:ff:c3:17:9b:92:30:30:ff:62:7d:bf:84:6c:
f3:fb:22:62:04:8b:e7:47:0f:94:a6:b9:ed:08:c9:70:f2:12:
0e:6f:71:c7:71:a3:bc:4c:02:c7:15:db:9d:a8:bc:e6:56:fe:
d9:8b:dc:31:85:75:45:47:d6:4c:48:21:83:0c:5e:4d:75:e7:
25:57:7e:06:ab:27:4c:b7:94:4c:ad:fd:8a:fb:be:7f:14:4c:
00:49:a5:07:e7:a8:5d:4e:84:b2:7d:d9:28:32:ce:7c:92:44:
48:96:e7:49:97:4a:e6:98:6d:6f:9c:a8:45:4d:fe:17:ec:e2:
92:b2:8a:d9:b6:aa:06:7a:6d:8b:00:ee:40:a4:8b:9a:c0:45:
0a:9f:c9:46:b4:17:ff:5f:e3:ca:ba:f6:1a:a0:67:e2:f6:32:
b9:4c:68:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org