Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9be9f8d8-6ef9-472f-84f0-bb97f1f50ce7/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa
File: 3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa (raw, json)
Hash identifier: 23p8f6Xa/3uBoU7dA39dJR/Q3/+VLmHuhgKGIIrdyCo=
Subject key identifier: E3:3D:B9:83:CA:F0:53:70:6F:41:6F:B7:3D:DA:81:D0:7A:C5:0E:32
Certificate issuer: /CN=45C573917C39C2CCF38654E237AB8B4CF23929FD
Certificate serial: 0F73BF0E9CD2C92152253E58C07395B4AF817F8E
Authority key identifier: 45:C5:73:91:7C:39:C2:CC:F3:86:54:E2:37:AB:8B:4C:F2:39:29:FD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45C573917C39C2CCF38654E237AB8B4CF23929FD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9be9f8d8-6ef9-472f-84f0-bb97f1f50ce7/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa
Signing time: Tue 28 Feb 2023 15:00:00 +0000
ROA not before: Tue 28 Feb 2023 14:55:00 +0000
ROA not after: Tue 27 Feb 2024 15:00:00 +0000
asID: 142389
IP address blocks: 103.172.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:73:bf:0e:9c:d2:c9:21:52:25:3e:58:c0:73:95:b4:af:81:7f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45C573917C39C2CCF38654E237AB8B4CF23929FD
Validity
Not Before: Feb 28 14:55:00 2023 GMT
Not After : Feb 27 15:00:00 2024 GMT
Subject: CN=E33DB983CAF053706F416FB73DDA81D07AC50E32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:c8:58:13:d2:ed:cf:b5:71:33:7e:3a:dd:
58:77:cc:d8:74:c4:1c:7f:3a:55:1d:b4:5e:ca:64:
74:c8:c7:fa:2a:d7:14:5c:32:d5:3c:02:91:0b:1b:
fc:ba:d4:12:e2:d6:2f:eb:85:4f:7b:a7:25:33:54:
72:11:ca:24:8d:12:0a:a0:be:60:87:c4:8b:81:3b:
35:b2:54:5a:4d:13:15:f1:9c:73:d2:78:fb:85:00:
b0:7a:b0:44:eb:c7:94:01:e0:22:5c:d0:e3:98:30:
83:a1:bf:d3:4e:91:fa:f0:a2:52:cd:66:51:46:77:
c1:d6:19:ca:de:1e:d5:41:aa:ba:71:f7:30:e9:e9:
e9:bf:94:2c:e0:81:e2:32:45:47:33:26:61:b5:bd:
dd:f8:cd:d3:8f:80:7a:90:52:b8:ca:de:d9:07:83:
fb:c0:91:b3:66:0f:7f:52:ff:5f:fd:4f:fa:06:09:
c0:a6:71:7d:41:fd:01:05:3f:ac:64:c1:d6:a4:8e:
b2:66:77:9b:ae:25:7b:d9:fa:78:d1:78:85:a2:71:
6c:c5:17:a0:d5:91:eb:cb:e8:0d:80:4a:a1:a2:9b:
b8:cc:b3:1b:2f:c8:7a:b1:d3:b3:e1:72:02:55:1d:
56:d9:98:8d:2c:25:67:fd:7d:a7:b7:74:a3:63:05:
ff:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3D:B9:83:CA:F0:53:70:6F:41:6F:B7:3D:DA:81:D0:7A:C5:0E:32
X509v3 Authority Key Identifier:
keyid:45:C5:73:91:7C:39:C2:CC:F3:86:54:E2:37:AB:8B:4C:F2:39:29:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9be9f8d8-6ef9-472f-84f0-bb97f1f50ce7/0/45C573917C39C2CCF38654E237AB8B4CF23929FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45C573917C39C2CCF38654E237AB8B4CF23929FD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9be9f8d8-6ef9-472f-84f0-bb97f1f50ce7/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.144.0/24
Signature Algorithm: sha256WithRSAEncryption
63:a5:8e:a7:5c:21:38:33:82:56:c2:e6:16:09:1d:33:8f:65:
37:e9:50:57:43:76:b8:d7:0f:c4:b2:b1:68:d9:d1:ce:ae:7b:
3b:1a:28:ec:53:ef:09:86:d3:5d:c7:a5:74:1c:02:87:e2:f3:
a6:c0:04:a7:12:53:0f:45:92:09:4b:f7:50:52:9f:f5:44:da:
8f:79:0c:2f:8b:8b:f8:50:28:d7:7c:20:4b:f3:19:90:c1:f4:
89:42:72:64:be:96:ae:ff:2b:f6:57:5e:e9:59:98:1b:6c:ea:
53:3a:11:e8:bd:f4:9d:2e:34:ea:7a:1b:64:c8:32:16:8c:ba:
b5:ae:9b:8b:3d:fe:95:38:14:c9:f0:42:f5:ba:8c:f4:f2:80:
99:f2:35:8c:e4:4a:8c:82:33:a4:df:95:5d:f5:5f:b4:a1:84:
e5:09:7a:5b:2f:98:47:7f:8c:c4:f6:64:11:bf:f2:6a:03:06:
99:14:32:aa:97:dc:1c:3d:81:ec:1e:bf:e9:b1:ce:52:f0:8c:
b3:93:80:14:a4:a3:ab:be:43:ca:69:76:b1:0d:79:be:a4:80:
d9:30:2c:02:70:bb:b8:d5:b5:1a:e4:37:22:e6:ad:c3:b9:f3:
f7:36:d3:f9:d5:ae:e0:5a:02:b5:ec:e7:99:a6:bb:08:a4:0f:
56:e2:85:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org