Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3130332e35342e3137302e302f32332d3233203d3e20313530353032.roa
File: 3130332e35342e3137302e302f32332d3233203d3e20313530353032.roa (raw, json)
Hash identifier: 26E8kJ42CinUx4h4RRsmSNsLLespswNs1CZMKfFY/A0=
Subject key identifier: 7D:F6:A5:FD:08:37:EB:85:AA:3A:71:18:C8:87:97:0A:F6:02:8B:C4
Certificate issuer: /CN=3C52D4A86ABDDD0D6DA631737F78DC205EEC239B
Certificate serial: 4C265A864AAF5B4B7090B8F454B7A0395438822B
Authority key identifier: 3C:52:D4:A8:6A:BD:DD:0D:6D:A6:31:73:7F:78:DC:20:5E:EC:23:9B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3130332e35342e3137302e302f32332d3233203d3e20313530353032.roa
Signing time: Mon 20 Feb 2023 05:00:35 +0000
ROA not before: Mon 20 Feb 2023 04:55:35 +0000
ROA not after: Mon 19 Feb 2024 05:00:35 +0000
asID: 150502
IP address blocks: 103.54.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:26:5a:86:4a:af:5b:4b:70:90:b8:f4:54:b7:a0:39:54:38:82:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C52D4A86ABDDD0D6DA631737F78DC205EEC239B
Validity
Not Before: Feb 20 04:55:35 2023 GMT
Not After : Feb 19 05:00:35 2024 GMT
Subject: CN=7DF6A5FD0837EB85AA3A7118C887970AF6028BC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ef:b0:59:02:e9:da:fe:eb:8c:bb:c5:11:3e:
86:f1:3d:a8:7e:9f:22:5a:8d:f2:05:27:b9:e3:c9:
d2:44:5c:13:d5:d8:37:f7:70:17:75:40:d9:9b:ce:
47:28:6c:2c:85:98:8d:f8:64:2c:69:a2:df:9a:96:
bb:e4:1f:68:27:7f:69:17:1d:2a:75:4d:fc:77:ad:
98:a3:49:51:d0:83:1e:84:2e:9e:4f:3c:12:08:d3:
59:13:46:de:c3:d6:e8:49:a4:6a:ba:aa:6a:ea:40:
42:46:8e:22:cb:92:43:4a:28:4a:b5:db:02:c9:bb:
47:be:c8:c8:12:d6:56:5b:5d:4d:00:a4:f8:72:eb:
d3:78:53:ac:53:39:ac:a3:d8:82:c7:65:07:e7:86:
e6:1d:fb:c6:0b:da:13:19:48:8e:c9:27:e6:5b:da:
21:d5:df:65:ad:c4:b3:e8:ef:82:76:06:da:b0:72:
a7:aa:54:c8:69:b9:0a:60:73:eb:50:f8:11:09:a2:
fd:f9:de:76:ba:71:33:90:bf:f3:aa:8a:10:80:81:
68:4d:33:51:fb:9d:61:1b:2c:53:a3:50:e3:01:76:
96:99:85:89:f0:30:2b:83:81:3f:99:c0:20:0e:1d:
f8:db:a0:70:cc:66:ce:d1:7d:70:ad:4b:17:23:b5:
8a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F6:A5:FD:08:37:EB:85:AA:3A:71:18:C8:87:97:0A:F6:02:8B:C4
X509v3 Authority Key Identifier:
keyid:3C:52:D4:A8:6A:BD:DD:0D:6D:A6:31:73:7F:78:DC:20:5E:EC:23:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3130332e35342e3137302e302f32332d3233203d3e20313530353032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.54.170.0/23
Signature Algorithm: sha256WithRSAEncryption
86:db:be:07:57:5d:a0:17:97:84:f1:be:e9:7e:0a:4d:ee:18:
68:cc:de:e4:d2:88:07:19:49:f7:98:50:30:f8:06:bf:de:5c:
2f:79:7f:ef:6b:30:0e:9d:c4:e5:27:2b:83:32:4e:48:7c:c2:
33:fa:f6:91:de:52:d2:1e:dc:37:05:48:68:dd:9d:10:c5:75:
51:31:c0:eb:8c:b9:d4:8d:44:af:01:68:63:dd:c6:2d:5c:48:
1e:34:8d:32:ea:e3:30:e6:bf:a0:54:4f:db:84:5c:f9:47:a8:
77:9e:26:03:ad:1f:4e:36:c3:2b:8d:d9:6b:0e:2d:6b:b6:02:
f7:dc:50:bb:f4:f8:a5:9d:f4:1d:be:14:12:88:36:ba:7b:69:
fe:f8:5b:41:f7:10:3e:25:fd:f5:67:14:6e:1a:bf:d8:21:b7:
7e:e1:e1:f6:f9:a6:61:11:27:00:d7:7a:5d:63:a5:d0:82:fe:
bd:94:94:3d:b2:fe:92:3c:89:4c:11:9d:03:f0:c7:a4:9e:4f:
c7:7d:41:f0:b3:b7:ad:60:da:c3:df:2c:54:2a:ab:e0:90:30:
74:62:3a:13:ae:46:0c:27:1a:92:08:35:62:d8:da:09:37:6e:
1a:e0:c2:14:dc:fe:6b:b2:5f:d8:3b:3e:a5:e6:21:5e:61:1c:
2a:a7:fa:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:18:36 2025 by rpki-client