Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/3130332e3232342e3133382e302f32342d3234203d3e203539313539.roa
File: 3130332e3232342e3133382e302f32342d3234203d3e203539313539.roa (raw, json)
Hash identifier: Dreczlcrl4ed6d0K1WFFstBmzhKdzPjMSJ2w3Tn/7NA=
Subject key identifier: E7:F2:A9:FD:98:80:2B:B3:91:44:C4:6F:D1:56:39:3C:B0:E2:79:45
Certificate issuer: /CN=988E0377882A4782CADFC665BEA75BF64BFBAF8E
Certificate serial: 36DD0C787D8901268AA46D4208E4FBFF92A58DDC
Authority key identifier: 98:8E:03:77:88:2A:47:82:CA:DF:C6:65:BE:A7:5B:F6:4B:FB:AF:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/988E0377882A4782CADFC665BEA75BF64BFBAF8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/3130332e3232342e3133382e302f32342d3234203d3e203539313539.roa
Signing time: Wed 08 Dec 2021 03:32:18 +0000
ROA not before: Wed 08 Dec 2021 03:27:18 +0000
ROA not after: Thu 08 Dec 2022 03:32:18 +0000
asID: 59159
IP address blocks: 103.224.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:dd:0c:78:7d:89:01:26:8a:a4:6d:42:08:e4:fb:ff:92:a5:8d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=988E0377882A4782CADFC665BEA75BF64BFBAF8E
Validity
Not Before: Dec 8 03:27:18 2021 GMT
Not After : Dec 8 03:32:18 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:cd:32:fb:f3:32:a9:a7:9d:6d:1d:e6:f8:94:
7f:9b:ec:08:e8:51:07:83:bb:47:04:40:6f:52:62:
d4:11:3f:ac:cd:65:92:39:03:ef:d8:b2:fd:0d:92:
78:5e:c0:c7:56:cd:d6:56:e5:5e:e7:34:07:4a:33:
45:10:60:63:a3:ad:62:eb:8f:38:f1:28:7a:2d:12:
2f:76:f5:1c:46:76:07:a4:e9:6a:87:3b:52:85:4e:
85:be:c1:8a:2d:f0:f2:ee:ac:ac:e8:e6:28:a0:90:
34:e5:1f:58:3a:08:89:92:91:85:68:78:78:8b:25:
2c:cc:11:c5:17:5f:e1:89:fb:e2:f2:d8:ca:e1:09:
25:13:5a:07:67:c7:4e:39:db:24:11:f5:4c:9e:82:
41:f9:65:e1:b2:ac:9e:96:c2:11:89:07:ba:50:79:
3f:26:e0:87:41:0e:09:46:d6:61:ea:bd:32:ee:f2:
49:cc:77:2a:56:3e:7c:68:7c:e9:62:1b:36:34:f6:
cb:9c:11:c2:da:d6:f3:1f:3b:35:8e:97:09:fe:29:
2c:7c:be:f2:64:e3:3e:ad:02:d0:8c:6a:7e:46:5c:
25:04:9a:b1:d4:68:55:0b:11:26:ae:fe:01:b3:79:
4b:d9:9d:e7:13:60:55:0c:7d:0b:18:81:5d:d1:36:
c8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F2:A9:FD:98:80:2B:B3:91:44:C4:6F:D1:56:39:3C:B0:E2:79:45
X509v3 Authority Key Identifier:
keyid:98:8E:03:77:88:2A:47:82:CA:DF:C6:65:BE:A7:5B:F6:4B:FB:AF:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/988E0377882A4782CADFC665BEA75BF64BFBAF8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/988E0377882A4782CADFC665BEA75BF64BFBAF8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42f39c17-6725-42be-bed4-f0ebbba2d4fd/0/3130332e3232342e3133382e302f32342d3234203d3e203539313539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.224.138.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:f5:5d:9e:55:0e:50:d7:cd:60:57:11:49:b9:9e:f7:64:b4:
f8:3c:0e:b7:69:2b:56:2d:d8:7b:20:85:ea:8d:f9:c9:da:7e:
01:08:aa:9e:fa:8f:58:e9:27:36:7c:8d:48:fe:2d:fc:ae:65:
a0:5c:35:61:0f:a7:14:08:8b:90:f1:7f:d3:b8:45:47:2d:66:
bf:d3:bd:76:e9:85:74:17:e1:fb:2e:5d:23:86:a9:f0:3a:08:
99:28:59:30:a1:b0:84:58:a5:13:7c:aa:00:71:26:48:96:d3:
85:8f:db:33:1f:dd:1d:50:27:cb:5e:5e:ad:06:14:eb:83:4e:
a6:e8:92:6c:b7:de:5e:1b:92:90:4e:19:38:9a:80:91:83:98:
7b:32:99:23:40:8a:59:ab:e4:70:e4:2f:8e:5d:7f:1b:b3:17:
24:5f:03:b9:93:23:84:3f:b4:0c:72:58:6a:c8:73:df:28:b2:
b0:43:89:d1:3f:21:fa:7f:59:3f:72:0e:ff:8d:15:f1:2e:26:
c1:64:73:5f:8c:81:4e:9f:60:47:c4:a2:57:aa:27:66:3d:3c:
d4:b6:f7:f8:b3:c2:9b:8c:e8:92:e1:28:b3:ad:87:e0:a1:76:
97:8a:49:70:c5:19:8b:90:68:ac:62:52:71:12:49:ac:db:6a:
5b:b4:7a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org