Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39372e302f32342d3234203d3e203137343530.roa
File: 3130332e382e39372e302f32342d3234203d3e203137343530.roa (raw, json)
Hash identifier: kFj3azxe1ZurJ68WI9FE5f4xw6+WK1oXtFDxMq5npuo=
Subject key identifier: 3C:37:BB:A2:EA:E2:AA:99:17:CB:02:A9:D2:2A:83:DA:D2:A1:90:D3
Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707
Certificate serial: 7788F2D39AD9E37CB26F432922243B188D629025
Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39372e302f32342d3234203d3e203137343530.roa
Signing time: Wed 11 Oct 2023 04:52:30 +0000
ROA not before: Wed 11 Oct 2023 04:47:30 +0000
ROA not after: Wed 09 Oct 2024 04:52:30 +0000
asID: 17450
IP address blocks: 103.8.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:88:f2:d3:9a:d9:e3:7c:b2:6f:43:29:22:24:3b:18:8d:62:90:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707
Validity
Not Before: Oct 11 04:47:30 2023 GMT
Not After : Oct 9 04:52:30 2024 GMT
Subject: CN=3C37BBA2EAE2AA9917CB02A9D22A83DAD2A190D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:02:33:8b:15:33:da:a7:fe:f7:d0:ac:07:ef:
d1:69:91:04:ba:b8:f1:43:54:53:15:b0:d4:6e:78:
a9:d4:10:9c:12:94:e2:3b:12:f0:ba:11:7f:59:53:
5f:a1:97:7b:1f:c4:74:d3:9b:82:cf:7d:38:92:31:
84:dd:7b:ca:9a:0d:c9:e9:8f:e1:4b:d6:c4:a2:8c:
78:25:0a:69:0d:89:d1:cf:bd:55:11:34:07:a1:c0:
0d:af:40:14:63:9b:57:5a:7d:dc:e8:a9:ac:99:d3:
a3:97:24:dd:a3:6b:98:55:a3:7b:c8:50:fb:42:3f:
0b:e1:27:6f:aa:a8:4a:ad:94:8a:0c:f7:2a:0c:6f:
0d:41:72:af:38:fb:55:a3:89:6a:37:c0:ac:fd:5f:
af:4e:f6:36:52:32:1c:19:54:7e:46:01:f5:f3:e4:
e6:34:33:a5:d1:ac:d7:ef:7c:af:a0:e9:38:4c:1b:
ba:a5:9b:b6:5a:2f:b4:80:d0:4c:5f:68:37:e4:c0:
84:41:7e:5c:8c:d0:55:c4:cd:fc:9e:70:31:0c:d7:
05:bd:f2:24:97:4c:56:34:fd:16:eb:8f:d8:77:4e:
b8:ff:7b:9d:21:aa:e3:2d:dc:35:64:ea:4a:1c:5b:
a0:da:72:4c:18:0b:2f:ee:00:90:6a:b3:67:31:0a:
02:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:37:BB:A2:EA:E2:AA:99:17:CB:02:A9:D2:2A:83:DA:D2:A1:90:D3
X509v3 Authority Key Identifier:
keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3130332e382e39372e302f32342d3234203d3e203137343530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.8.97.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:e0:b5:1c:13:6d:3f:de:a1:44:3c:05:5d:24:6b:62:58:86:
88:92:2d:ba:d5:bd:cf:25:74:61:60:2f:3f:0a:e7:ad:f0:26:
19:e5:d5:74:d4:6d:11:1d:16:6d:ad:b2:ef:6e:6b:e5:25:77:
cc:67:ce:f5:49:37:8a:1e:7d:37:59:f2:8b:a8:de:f4:c9:83:
3c:b2:03:45:a1:84:c1:0d:e8:22:31:65:33:1d:12:cb:45:e2:
20:83:db:f2:b3:8f:31:90:04:a1:26:90:37:74:09:aa:03:d2:
98:27:22:56:94:eb:9f:9f:c0:b9:ab:b2:d2:be:e4:cf:0a:49:
40:9f:f4:24:45:c3:29:64:4c:22:d1:39:38:b8:ed:04:03:af:
16:8f:03:b7:a1:b8:f2:eb:d7:44:9a:b5:25:30:41:d6:16:32:
e2:8d:27:42:db:76:ec:14:3a:fd:b7:f5:a4:0a:aa:b9:e5:61:
89:28:2e:f4:8d:64:da:15:48:87:6d:18:5d:08:e3:f4:f1:b8:
d8:61:77:74:3c:cb:8b:26:81:13:1d:10:77:31:7e:e8:47:8d:
54:87:ec:b5:e5:b9:85:15:e5:d9:fc:58:ee:16:47:3f:7d:79:
9f:7a:c2:22:9f:1b:96:a2:f5:5c:67:ab:ff:a1:33:19:70:2b:
08:fd:3e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:02:41 2025 by rpki-client