Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32342d3234203d3e20313530323736.roa
File: 3130332e34312e3234382e302f32342d3234203d3e20313530323736.roa (raw, json)
Hash identifier: 6xK3cDPlgGPZBP6q9jyGyk+aLsqwJ/+KguaqOZpmpBs=
Subject key identifier: D8:A9:28:CE:BB:5A:EB:B6:E8:EF:8D:53:6D:B1:F5:AD:21:A8:63:2B
Certificate issuer: /CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA
Certificate serial: 0EE770C3C3DAEFFE2AF9A765CB0B771DFB90A30B
Authority key identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32342d3234203d3e20313530323736.roa
Signing time: Mon 13 Feb 2023 15:30:23 +0000
ROA not before: Mon 13 Feb 2023 15:25:23 +0000
ROA not after: Mon 12 Feb 2024 15:30:23 +0000
asID: 150276
IP address blocks: 103.41.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:e7:70:c3:c3:da:ef:fe:2a:f9:a7:65:cb:0b:77:1d:fb:90:a3:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA
Validity
Not Before: Feb 13 15:25:23 2023 GMT
Not After : Feb 12 15:30:23 2024 GMT
Subject: CN=D8A928CEBB5AEBB6E8EF8D536DB1F5AD21A8632B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:6f:3c:36:24:57:6f:da:a9:7d:9f:0b:84:
5a:85:f6:bb:6e:17:ba:05:03:37:19:7e:81:ab:f5:
96:8f:db:43:8a:80:ef:ee:87:09:85:9f:d2:eb:01:
1c:cd:2a:7b:27:f7:17:3e:95:15:fa:de:58:86:18:
a2:fe:51:82:dd:ae:0b:1a:c6:3e:da:27:ac:6b:42:
3a:02:07:42:a5:c3:66:5c:2a:9c:94:cb:be:53:bf:
71:41:81:18:de:25:54:0f:9b:5a:81:83:bc:09:34:
58:70:60:7b:b8:ed:c6:69:0b:55:5d:63:01:5a:53:
eb:fd:5d:ca:86:93:ad:72:5f:2c:fb:17:73:71:55:
76:6c:1f:29:a9:52:4d:f6:32:f2:25:ef:05:1c:86:
e9:fb:bc:48:38:c2:f7:dc:7c:d4:a6:c0:b9:88:82:
81:25:3d:77:86:99:b2:3e:9a:94:9d:14:c8:32:f7:
92:15:f2:9f:07:d6:92:15:a1:4d:5e:63:49:4e:41:
31:9d:5e:08:76:c3:4b:64:51:62:f7:48:4a:cc:e0:
44:e8:d4:b2:cd:b7:2a:24:ec:21:a5:e3:5a:79:09:
0b:0c:6b:80:37:3a:ec:81:d0:cd:0a:92:cb:7b:ee:
f1:81:a5:e0:90:ca:27:12:2f:b4:2e:46:20:39:ca:
f5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A9:28:CE:BB:5A:EB:B6:E8:EF:8D:53:6D:B1:F5:AD:21:A8:63:2B
X509v3 Authority Key Identifier:
keyid:D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/3130332e34312e3234382e302f32342d3234203d3e20313530323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.41.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:6a:99:bb:58:0a:61:0e:41:3a:aa:85:02:b3:21:d3:ff:cd:
c3:89:e4:67:83:da:e8:34:88:d6:2c:63:74:54:55:8e:18:c8:
c9:03:b6:be:23:70:9d:72:df:16:a8:a3:97:5a:2b:32:bd:5e:
f1:0a:87:b6:c7:f8:87:5d:92:f5:81:2e:3a:ef:98:61:9c:34:
3c:22:71:f8:ad:cd:b1:e4:a6:f9:eb:49:36:02:99:2a:89:00:
dd:b6:d5:5d:66:ff:88:4a:b4:02:b4:c6:1b:2c:ba:fe:cc:ff:
f2:6f:14:aa:d0:ee:3a:13:ef:d4:84:8e:80:21:79:6c:7a:df:
1a:f5:c5:b5:73:88:3d:32:8d:f1:b8:0d:dd:f9:7c:fe:31:ce:
8c:f4:f1:62:00:31:be:c0:7c:18:f3:8f:19:73:bc:6c:81:83:
5e:b1:17:e7:3a:83:d5:78:34:14:a8:8a:53:b8:3d:e0:35:08:
3a:bf:d3:8e:6a:1b:41:6f:85:2d:f6:bb:79:11:01:d2:cf:61:
5a:15:bd:aa:ae:1a:13:c7:0f:15:5b:49:28:e8:33:9e:88:32:
c5:54:46:49:27:81:d3:25:86:80:6e:4d:31:24:1e:08:3e:71:
ed:54:75:c9:48:3e:b5:31:29:01:d6:74:f9:fd:97:8c:0a:eb:
d6:25:5a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org