Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313430303233.roa
File: 3130332e33312e3234302e302f32342d3234203d3e20313430303233.roa (raw, json)
Hash identifier: f7gbTSPpGLd1zMfmyrV/vZJVyBVQpuGTdcAZWtkIl70=
Subject key identifier: FF:74:40:DF:25:5B:BA:D7:5E:D8:4A:38:54:BE:27:1F:A6:A9:93:34
Certificate issuer: /CN=DEB4279F0D4CD8368462787573162FB753A9B04B
Certificate serial: 384D906C9B0C2BC1F905F2C01F800F0523FC799D
Authority key identifier: DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313430303233.roa
Signing time: Tue 13 Dec 2022 10:22:07 +0000
ROA not before: Tue 13 Dec 2022 10:17:07 +0000
ROA not after: Tue 12 Dec 2023 10:22:07 +0000
asID: 140023
IP address blocks: 103.31.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:4d:90:6c:9b:0c:2b:c1:f9:05:f2:c0:1f:80:0f:05:23:fc:79:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DEB4279F0D4CD8368462787573162FB753A9B04B
Validity
Not Before: Dec 13 10:17:07 2022 GMT
Not After : Dec 12 10:22:07 2023 GMT
Subject: CN=FF7440DF255BBAD75ED84A3854BE271FA6A99334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:12:cf:77:8d:f4:b6:ac:ee:83:87:56:16:7a:
ce:a6:8c:3e:2a:0d:2f:15:e3:5a:ca:ff:61:74:a5:
e8:ea:3a:eb:b9:03:33:2a:11:c3:b6:5f:0f:8d:65:
c1:4a:77:f1:a1:d9:f6:fe:88:a3:48:27:ba:4f:af:
17:8e:cf:d1:71:23:b3:ff:77:d5:24:b5:f3:e1:0d:
5a:ce:2f:e2:00:0a:45:68:f2:52:7e:aa:5e:c4:8b:
e3:75:2d:58:e7:1c:13:05:7a:01:f8:fe:e4:c6:00:
ca:ba:7d:ef:f3:ea:07:38:f1:9a:ce:53:b1:94:5d:
11:94:57:8e:0a:f9:86:17:28:47:99:4c:b7:08:39:
51:c1:fd:ee:50:86:eb:6c:0f:1d:81:e8:27:a4:24:
b6:a5:be:b7:7f:0a:bf:99:e2:17:2b:55:a7:d8:bc:
8a:d8:26:2b:cd:35:89:46:fd:07:83:7a:b3:0b:c4:
91:02:c6:1b:81:ad:6c:3c:4d:f3:14:60:e6:74:33:
dd:c8:05:d8:8d:cd:f6:5c:a7:3c:93:62:29:db:60:
5d:6a:3b:dc:62:a3:d5:64:48:4c:b0:24:0c:0f:79:
b7:43:05:36:35:89:23:fb:0a:fb:2a:e9:81:bb:27:
72:26:0e:a7:89:6d:9a:33:ec:3f:9d:d2:95:64:23:
fa:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:74:40:DF:25:5B:BA:D7:5E:D8:4A:38:54:BE:27:1F:A6:A9:93:34
X509v3 Authority Key Identifier:
keyid:DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313430303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.31.240.0/24
Signature Algorithm: sha256WithRSAEncryption
12:75:5b:58:7f:85:78:41:aa:0d:71:79:62:a7:c9:4f:32:4e:
f7:f0:71:92:c8:a3:14:4e:8d:3d:4a:33:ab:fb:8e:3e:dc:18:
ab:93:5c:d7:f8:dc:76:6c:39:d9:12:bc:bc:5d:db:5d:b6:08:
f6:f1:79:6f:2b:5c:52:cd:e4:c7:42:5a:5b:88:94:49:f3:fe:
f3:2c:5a:9d:48:8b:1f:d0:52:2e:e9:f6:e8:d5:9b:3f:9c:20:
21:5b:46:60:57:74:c0:25:04:06:62:14:d6:f3:64:89:fd:6c:
c0:2c:ba:9d:74:cd:ff:12:2b:99:62:f9:66:39:3d:3f:04:fc:
76:a5:67:d4:f1:ac:74:3b:17:be:b0:86:45:0b:b1:28:7c:fd:
cd:c9:1e:f7:93:22:ff:bf:21:15:97:47:ca:7a:9c:39:f8:ba:
4e:fd:8b:df:eb:2e:92:ed:17:e8:6d:f2:9f:dc:19:be:5f:31:
20:ca:df:55:9a:59:7f:da:a4:90:36:36:e8:b9:58:22:05:1e:
dc:ea:61:2c:9a:2f:b3:35:c5:98:e8:c0:94:a4:e2:be:de:44:
00:0b:40:0a:47:2e:ce:dd:7f:7b:52:3f:cd:91:e3:03:81:d5:
02:53:34:73:2e:58:63:02:bb:86:c9:52:bb:de:62:d6:5d:e3:
fa:af:3b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org