Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa
File: 3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa (raw, json)
Hash identifier: NpkGSbwaT57/DG5RjFd7MLDhQ2YyjIkH1d1PRoG/AxA=
Subject key identifier: C4:03:97:F2:21:AB:D4:9C:72:7E:2F:99:4C:25:2F:7C:AC:B1:36:1B
Certificate issuer: /CN=A349D07CAB13BF067B13D95E99981C2BA84B9A6B
Certificate serial: 71FAE54FC691E162AABE3160A60B3D7113B3D0F6
Authority key identifier: A3:49:D0:7C:AB:13:BF:06:7B:13:D9:5E:99:98:1C:2B:A8:4B:9A:6B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa
Signing time: Thu 10 Nov 2022 08:00:00 +0000
ROA not before: Thu 10 Nov 2022 07:55:00 +0000
ROA not after: Thu 09 Nov 2023 08:00:00 +0000
asID: 23679
IP address blocks: 103.103.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:fa:e5:4f:c6:91:e1:62:aa:be:31:60:a6:0b:3d:71:13:b3:d0:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A349D07CAB13BF067B13D95E99981C2BA84B9A6B
Validity
Not Before: Nov 10 07:55:00 2022 GMT
Not After : Nov 9 08:00:00 2023 GMT
Subject: CN=C40397F221ABD49C727E2F994C252F7CACB1361B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:35:37:11:04:43:0b:f1:06:7f:b5:44:0c:b0:
64:19:7d:36:fb:32:8a:a6:05:c8:d3:9d:c4:fa:31:
d2:44:aa:5b:9c:51:22:a1:28:71:5e:29:a7:fa:16:
7c:5d:15:7b:37:d5:0d:fb:a5:8b:cd:8e:04:7c:3f:
0a:4f:df:bd:3e:07:f2:ef:9b:c4:0a:6f:67:d9:ad:
42:8b:93:83:bc:5e:29:2b:5c:73:76:b0:80:e8:2d:
3c:ec:26:70:f0:0e:eb:7d:da:aa:bc:e7:ac:84:d2:
99:ca:2d:e3:d6:60:f0:13:f3:c4:1a:87:9f:83:a8:
1b:2a:08:62:9f:67:71:71:40:3f:3f:92:bb:b5:ec:
2f:07:f2:ac:50:a2:d4:d4:8c:e1:91:26:c8:93:41:
ad:7f:af:fc:5d:05:5e:4c:c0:55:87:00:31:7e:42:
ea:07:b3:17:c9:5f:5c:b5:33:e1:d0:f5:bc:61:c7:
2b:c1:cb:0b:14:f1:68:61:86:7d:b8:43:ff:e8:eb:
13:23:b3:e5:f7:0e:20:0e:bd:36:ae:cf:a9:ad:f1:
34:c6:c6:27:19:e4:a7:ce:2e:ed:52:00:0a:be:f3:
b1:f7:53:cf:ac:1e:d0:98:5e:a0:58:a6:51:69:8c:
94:f9:04:74:07:a2:77:38:4f:ea:48:50:8f:1d:19:
d5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:03:97:F2:21:AB:D4:9C:72:7E:2F:99:4C:25:2F:7C:AC:B1:36:1B
X509v3 Authority Key Identifier:
keyid:A3:49:D0:7C:AB:13:BF:06:7B:13:D9:5E:99:98:1C:2B:A8:4B:9A:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A349D07CAB13BF067B13D95E99981C2BA84B9A6B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6adfcb44-ae7a-4423-ae7d-08648bf1deb1/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.103.139.0/24
Signature Algorithm: sha256WithRSAEncryption
42:66:15:c7:9b:b0:30:45:9b:e2:58:0f:c7:9d:8e:b9:bc:9d:
ba:04:68:1f:07:a3:53:3a:8d:41:9c:f2:26:88:a8:6e:9c:97:
80:8b:6b:28:1b:10:9f:a5:d7:db:bb:8c:5f:e8:fb:9e:3e:89:
e7:ea:95:4e:4a:84:41:8e:fb:f8:4d:a5:47:bf:db:a7:43:b4:
b5:fe:ea:09:9e:be:3b:f1:ca:93:13:16:7c:85:25:23:61:13:
bb:73:bc:a1:c0:42:e8:65:bf:47:7b:7a:90:6e:16:b8:fc:4d:
2b:d1:0c:45:c4:1f:80:37:7d:ab:2d:e9:c0:e6:8b:d9:b9:30:
6b:54:b1:10:cb:37:30:19:dc:3d:77:c8:e9:d3:99:f8:9a:ba:
bc:d3:d6:9b:c7:4b:79:66:c1:83:4a:d2:41:26:cd:84:93:ab:
0c:72:d7:e7:80:26:48:4b:a4:1d:cf:98:38:17:cd:58:fe:aa:
43:bc:1a:bc:63:55:3d:fa:1a:57:95:e5:a1:66:84:ea:f9:f5:
6c:49:16:f3:4d:f8:00:08:e9:03:b7:1b:44:1c:c7:fb:5d:19:
d9:ab:39:c4:58:87:8e:04:6a:10:ab:c9:a0:ab:1d:c2:2f:45:
f8:b0:e5:d7:41:3d:34:e3:22:c5:14:b2:13:63:1a:36:4b:3e:
a0:11:26:dc
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUcfrlT8aR4WKqvjFgpgs9cROz0PYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTM0OUQwN0NBQjEzQkYwNjdCMTNEOTVFOTk5ODFDMkJB
ODRCOUE2QjAeFw0yMjExMTAwNzU1MDBaFw0yMzExMDkwODAwMDBaMDMxMTAvBgNV
BAMTKEM0MDM5N0YyMjFBQkQ0OUM3MjdFMkY5OTRDMjUyRjdDQUNCMTM2MUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbNTcRBEML8QZ/tUQMsGQZfTb7
MoqmBcjTncT6MdJEqlucUSKhKHFeKaf6FnxdFXs31Q37pYvNjgR8PwpP370+B/Lv
m8QKb2fZrUKLk4O8XikrXHN2sIDoLTzsJnDwDut92qq856yE0pnKLePWYPAT88Qa
h5+DqBsqCGKfZ3FxQD8/kru17C8H8qxQotTUjOGRJsiTQa1/r/xdBV5MwFWHADF+
QuoHsxfJX1y1M+HQ9bxhxyvBywsU8Whhhn24Q//o6xMjs+X3DiAOvTauz6mt8TTG
xicZ5KfOLu1SAAq+87H3U8+sHtCYXqBYplFpjJT5BHQHonc4T+pIUI8dGdUPAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUxAOX8iGr1Jxyfi+ZTCUvfKyxNhswHwYDVR0j
BBgwFoAUo0nQfKsTvwZ7E9lemZgcK6hLmmswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
YWRmY2I0NC1hZTdhLTQ0MjMtYWU3ZC0wODY0OGJmMWRlYjEvMC9BMzQ5RDA3Q0FC
MTNCRjA2N0IxM0Q5NUU5OTk4MUMyQkE4NEI5QTZCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTM0OUQwN0NBQjEzQkYwNjdCMTNEOTVFOTk5ODFDMkJBODRC
OUE2Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhZGZjYjQ0LWFlN2EtNDQyMy1h
ZTdkLTA4NjQ4YmYxZGViMS8wLzMxMzAzMzJlMzEzMDMzMmUzMTMzMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2eLMA0GCSqG
SIb3DQEBCwUAA4IBAQBCZhXHm7AwRZviWA/HnY65vJ26BGgfB6NTOo1BnPImiKhu
nJeAi2soGxCfpdfbu4xf6PuePonn6pVOSoRBjvv4TaVHv9unQ7S1/uoJnr478cqT
ExZ8hSUjYRO7c7yhwELoZb9He3qQbha4/E0r0QxFxB+AN32rLenA5ovZuTBrVLEQ
yzcwGdw9d8jp05n4mrq809abx0t5ZsGDStJBJs2Ek6sMctfngCZIS6Qdz5g4F81Y
/qpDvBq8Y1U9+hpXleWhZoTq+fVsSRbzTfgACOkDtxtEHMf7XRnZqznEWIeOBGoQ
q8mgqx3CL0X4sOXXQT004yLFFLITYxo2Sz6gESbc
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org