Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa
File: 3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa (raw, json)
Hash identifier: 0UFWJEMgw4ZHJDycV3CDpbjuAVs8fSVC1PSXco/O1rk=
Subject key identifier: AE:A5:E3:2F:1D:DF:EC:C9:B4:F9:DD:12:80:BA:45:88:D3:DC:C0:E3
Certificate issuer: /CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA
Certificate serial: 0D8915FB56A08FECEE2446DF9F486D8746A6C701
Authority key identifier: 58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa
Signing time: Sun 28 Aug 2022 23:04:45 +0000
ROA not before: Sun 28 Aug 2022 22:59:45 +0000
ROA not after: Sun 27 Aug 2023 23:04:45 +0000
asID: 55685
IP address blocks: 103.108.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:89:15:fb:56:a0:8f:ec:ee:24:46:df:9f:48:6d:87:46:a6:c7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA
Validity
Not Before: Aug 28 22:59:45 2022 GMT
Not After : Aug 27 23:04:45 2023 GMT
Subject: CN=AEA5E32F1DDFECC9B4F9DD1280BA4588D3DCC0E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:03:86:41:67:69:e0:d3:96:40:b2:ac:54:75:
97:16:a8:d0:5f:eb:92:16:09:ff:34:fa:b2:6c:a0:
76:0b:ad:bc:c9:f5:92:de:7c:c3:ca:ff:da:c1:ab:
7b:bd:05:55:37:fa:c5:bc:fe:96:50:ec:c9:08:4d:
5a:9f:43:17:dd:06:da:8d:fd:32:07:aa:7b:ac:a3:
7b:42:b1:45:a9:ec:25:69:5b:99:fa:33:82:04:93:
1e:e2:f0:98:32:32:80:92:b6:19:73:6f:f9:5e:65:
14:13:28:9b:e0:c0:dd:f0:91:ee:ee:68:ef:6f:3c:
56:f9:d4:ba:14:87:17:19:7f:2a:67:d0:9e:d7:3c:
45:de:4e:71:72:99:74:0a:b2:d6:7f:96:29:c4:78:
c4:5c:57:83:4e:67:df:5d:54:e9:a7:52:eb:47:e9:
6f:1f:d7:e3:c8:81:0b:0a:3b:81:e4:ed:24:1e:f1:
98:1e:47:5b:f6:92:eb:87:42:f2:72:c6:32:af:86:
b9:b2:db:e6:04:d2:0d:00:34:f2:b0:ac:3a:b3:13:
e3:84:2a:f7:5d:65:22:21:87:42:62:77:33:07:1a:
bb:41:40:0e:bc:8e:41:0a:69:70:33:a3:a2:af:17:
7c:7c:86:1d:38:17:5f:0b:0c:8f:93:2c:72:b9:0c:
26:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A5:E3:2F:1D:DF:EC:C9:B4:F9:DD:12:80:BA:45:88:D3:DC:C0:E3
X509v3 Authority Key Identifier:
keyid:58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.108.128.0/22
Signature Algorithm: sha256WithRSAEncryption
07:2a:49:bb:1e:86:c8:a2:67:9c:87:31:df:5a:6d:64:5f:63:
07:dd:7a:97:10:c6:c5:13:cf:87:2f:92:89:47:86:a2:08:52:
78:f3:d1:37:7a:59:50:cf:dc:b6:a1:ef:90:dd:41:84:05:e5:
e8:b4:de:ca:96:0d:d0:66:2d:4b:b6:09:5a:da:2c:a5:b7:15:
c1:0f:3c:e2:8a:27:66:06:5d:7d:be:0b:57:66:a9:f9:0e:a3:
b1:d6:86:34:36:86:f1:4c:9f:bd:c8:95:62:a6:58:9a:9a:0c:
46:c0:a2:96:75:14:cc:d7:30:8d:44:ec:8c:15:76:3e:21:e8:
44:cf:e7:aa:80:80:77:13:a2:ae:9f:7b:1d:d4:ab:7e:79:7f:
38:0e:57:f0:51:57:9d:73:14:93:c4:d9:08:2c:d2:4d:7e:a0:
c1:78:7d:aa:e4:2d:57:e3:6a:fb:cc:e5:ba:a2:c1:94:31:e8:
13:b9:05:bd:23:20:d4:16:c1:6a:7f:25:2f:cb:3d:a0:12:90:
3f:40:74:74:d3:8d:8d:70:b2:c6:5f:b8:6c:65:a6:89:c8:ba:
83:d2:a7:28:41:74:66:77:97:36:68:54:d1:cc:75:bf:fc:ed:
12:b6:d3:db:74:46:17:39:0f:88:fe:1e:ec:17:30:96:59:fe:
5b:aa:b8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org