Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/3130332e38322e3132372e302f32342d3234203d3e20313336303537.roa
File: 3130332e38322e3132372e302f32342d3234203d3e20313336303537.roa (raw, json)
Hash identifier: UYXr2LbBmJfljhIZ9R8WYc+FJ+D3+X/xg8NX2sItAgg=
Subject key identifier: E3:7D:27:D6:C1:1E:69:DC:06:7D:9C:11:3D:44:9B:05:3C:A0:40:04
Certificate issuer: /CN=90173425DBB7D1DBD164BBA26F4657B17A266A97
Certificate serial: 14A3C13217B08AE8BBBC09D34F65B20C6054F318
Authority key identifier: 90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/3130332e38322e3132372e302f32342d3234203d3e20313336303537.roa
Signing time: Sun 07 May 2023 14:00:00 +0000
ROA not before: Sun 07 May 2023 13:55:00 +0000
ROA not after: Sun 05 May 2024 14:00:00 +0000
asID: 136057
IP address blocks: 103.82.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:a3:c1:32:17:b0:8a:e8:bb:bc:09:d3:4f:65:b2:0c:60:54:f3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90173425DBB7D1DBD164BBA26F4657B17A266A97
Validity
Not Before: May 7 13:55:00 2023 GMT
Not After : May 5 14:00:00 2024 GMT
Subject: CN=E37D27D6C11E69DC067D9C113D449B053CA04004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fd:77:bc:88:92:c4:04:42:a4:1d:1b:92:3a:
78:1e:e4:42:61:2b:f5:21:f1:27:ef:d1:65:7e:17:
63:be:a8:42:6a:d5:87:fc:4f:8f:c4:1d:39:ce:1b:
8c:04:61:45:90:08:f8:79:af:bc:5f:ab:9f:ca:0e:
6f:4d:29:69:2e:4f:2b:07:c5:89:bb:7d:79:36:72:
68:fe:a8:3c:a7:8e:97:0c:ac:16:61:17:89:84:61:
cd:e3:af:74:08:b3:ae:8e:c3:a2:72:a1:cb:95:b2:
d8:57:88:41:f8:96:df:d1:92:66:87:53:48:3d:16:
ca:63:ed:03:e6:b5:e2:0e:7f:ea:fa:f4:30:ac:86:
52:86:ba:e8:0f:90:d0:00:fd:3d:32:68:78:74:d6:
bb:92:9f:ca:54:2a:a4:fa:bc:cf:2a:cd:09:bd:b7:
08:c5:a8:b1:8d:0a:af:47:3e:2e:37:ca:3f:23:51:
57:64:19:7f:cb:37:cc:ec:20:ab:f4:6a:b5:f5:7a:
0b:8c:fb:13:30:80:e2:ef:8e:d7:e2:91:4f:86:94:
ad:c1:6c:47:e8:dd:42:29:5f:1d:ff:4f:e2:7a:d6:
b3:fb:cf:d7:9c:06:ef:7e:91:f4:26:dc:03:cf:78:
6c:87:59:24:51:90:09:8d:91:4d:fe:cb:7b:eb:d9:
b9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7D:27:D6:C1:1E:69:DC:06:7D:9C:11:3D:44:9B:05:3C:A0:40:04
X509v3 Authority Key Identifier:
keyid:90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/3130332e38322e3132372e302f32342d3234203d3e20313336303537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.82.127.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e2:26:2b:4a:bd:2d:cd:53:99:6e:64:d9:36:ba:28:fe:fe:
a1:da:44:4e:ff:4f:cc:ee:49:c6:79:a6:c3:4f:cb:26:36:92:
f3:15:fa:d9:78:89:77:ae:f4:d0:bb:db:40:c7:ef:ac:7a:95:
41:6b:42:63:ff:d3:1b:cc:84:7c:7b:8c:30:14:11:dd:ea:82:
4d:17:2a:31:5a:de:8c:70:50:74:05:ab:ff:84:5b:c6:f1:af:
88:ae:58:a4:a9:30:01:c3:ce:78:bc:f2:c6:c7:83:9d:87:95:
c8:06:89:1a:fe:40:d3:03:bd:c7:31:d6:2b:23:e5:3a:9c:8b:
41:7b:52:d4:02:6d:82:59:8a:43:d5:44:fa:cb:40:5a:49:0d:
d6:8c:92:87:62:6b:dc:72:cd:b3:3a:82:3b:74:78:ca:dd:4a:
00:fb:8c:7e:19:65:cb:38:22:bf:a2:95:15:21:6e:76:a8:62:
45:24:69:00:66:4a:22:fc:54:87:33:07:53:83:fa:15:98:c5:
33:43:27:9c:0e:17:61:7b:3d:4b:3a:96:a3:7a:47:25:36:61:
ab:09:0c:31:36:2d:29:52:a4:50:dd:0a:ef:8f:40:8e:d1:6d:
73:ff:35:be:c3:8c:0c:92:7c:f1:79:ef:72:3e:5f:60:02:de:
0f:4d:59:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org