Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3132342e36382e302f32322d3234203d3e2030.roa
File: 3130332e3132342e36382e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: CVroXboFQMN2nF7BRtx0batnfDXKnU+8fNZ7le/b59U=
Subject key identifier: 85:84:AD:93:D6:6D:47:F1:0E:6C:1F:AD:75:4E:F6:41:96:8C:D4:B6
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 351A539613AB66FEB746A9682880DAA1EB514801
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3132342e36382e302f32322d3234203d3e2030.roa
Signing time: Wed 02 Feb 2022 06:26:20 +0000
ROA not before: Wed 02 Feb 2022 06:21:20 +0000
ROA not after: Thu 02 Feb 2023 06:26:20 +0000
asID: 0
IP address blocks: 103.124.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1a:53:96:13:ab:66:fe:b7:46:a9:68:28:80:da:a1:eb:51:48:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Feb 2 06:21:20 2022 GMT
Not After : Feb 2 06:26:20 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:47:8d:07:5a:34:2d:02:f3:20:1e:77:d5:2a:
1f:76:9c:c0:5e:dc:e7:be:24:7c:5f:d4:a5:27:2b:
20:01:7d:ba:68:46:f8:fc:c3:ea:53:ea:a5:5c:5b:
b0:5a:8d:ad:ab:35:37:b2:71:73:b4:f2:a2:5b:6d:
b3:1c:d3:d3:15:81:06:17:89:d2:98:11:ef:61:cc:
9b:de:60:5c:85:cd:35:1b:36:23:d7:fb:9f:89:ec:
78:ce:1b:18:95:ad:da:49:e0:b1:30:04:bd:08:85:
6d:3b:a7:1a:d3:2a:5f:6b:03:61:18:73:5b:5e:22:
7f:49:cf:b6:d1:e1:ff:28:54:d8:19:75:21:2d:36:
c2:14:a5:16:c0:d2:e2:3c:d1:22:09:ff:86:78:07:
52:40:a6:61:fc:68:6c:af:2e:30:c0:3e:2c:be:46:
bf:e9:a3:42:b3:a8:7f:a8:0c:2b:81:d5:c4:12:75:
ff:b4:81:87:46:29:e2:74:1a:a5:dc:07:15:f4:69:
3b:49:63:f8:3d:58:0c:4e:7d:cc:24:b0:16:4c:e0:
d7:7f:dd:16:02:de:1b:a1:8d:0c:ff:2a:c7:02:55:
d6:84:51:1f:66:30:a0:40:7f:e4:8b:1f:de:36:bb:
a4:f0:80:f3:5b:e6:e3:4a:03:fa:4a:d4:96:2e:89:
a1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:84:AD:93:D6:6D:47:F1:0E:6C:1F:AD:75:4E:F6:41:96:8C:D4:B6
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3132342e36382e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:77:a1:49:9d:92:9e:fd:7c:ac:0e:67:b1:97:c4:3e:46:83:
d0:59:a1:29:1e:ba:a0:e7:14:94:a4:f8:65:e0:73:e4:7a:1a:
d8:6d:20:6b:66:12:3d:ec:38:c4:e2:d2:f4:d0:47:e7:8a:85:
4e:9c:bd:9d:5a:e0:a2:2d:33:bd:3d:f1:e9:8f:e4:2a:35:3b:
53:3c:8f:a2:cf:95:5a:75:73:da:2a:e5:a8:4f:29:41:c7:44:
28:aa:26:8c:fd:44:68:a7:f9:9a:29:52:da:a4:93:f2:75:4a:
8b:9a:30:8f:6e:43:6d:99:ed:4c:0a:81:cb:93:12:9c:bc:37:
ee:da:1e:9d:8a:43:47:27:0f:6a:8e:f5:66:34:ad:c0:09:e8:
68:2c:eb:39:4e:26:f6:c2:7f:1f:e7:50:8c:fc:f6:89:19:08:
a3:50:b0:4d:b2:99:d4:97:41:21:b0:5d:4c:64:4e:da:61:f7:
f6:1c:c8:e0:4c:aa:fb:ed:05:3a:76:ce:de:50:07:99:ec:8f:
c3:d2:23:a1:20:32:ef:3a:9f:82:1b:51:49:fc:1c:f6:82:1f:
a3:5e:31:6c:df:f7:b3:b4:b5:87:d1:4e:ee:ab:3b:29:e3:86:
87:cc:8c:a0:b8:09:27:62:0a:fd:31:d6:4c:03:df:bd:bf:9a:
8b:30:10:e4
-----BEGIN CERTIFICATE-----
MIIG/zCCBeegAwIBAgIUNRpTlhOrZv63RqloKIDaoetRSAEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIyMDIwMjA2MjEyMFoX
DTIzMDIwMjA2MjYyMFowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBFNjQ3OEQwNzVBMzQyRDAyRjMyMDFFNzdENTJBMUY3NjlDQzA1RURDRTdC
RTI0N0M1RkQ0QTUyNzJCMjAwMTdEQkE2ODQ2RjhGQ0MzRUE1M0VBQTU1QzVCQjA1
QThEQURBQjM1MzdCMjcxNzNCNEYyQTI1QjZEQjMxQ0QzRDMxNTgxMDYxNzg5RDI5
ODExRUY2MUNDOUJERTYwNUM4NUNEMzUxQjM2MjNEN0ZCOUY4OUVDNzhDRTFCMTg5
NUFEREE0OUUwQjEzMDA0QkQwODg1NkQzQkE3MUFEMzJBNUY2QjAzNjExODczNUI1
RTIyN0Y0OUNGQjZEMUUxRkYyODU0RDgxOTc1MjEyRDM2QzIxNEE1MTZDMEQyRTIz
Q0QxMjIwOUZGODY3ODA3NTI0MEE2NjFGQzY4NkNBRjJFMzBDMDNFMkNCRTQ2QkZF
OUEzNDJCM0E4N0ZBODBDMkI4MUQ1QzQxMjc1RkZCNDgxODc0NjI5RTI3NDFBQTVE
QzA3MTVGNDY5M0I0OTYzRjgzRDU4MEM0RTdEQ0MyNEIwMTY0Q0UwRDc3RkREMTYw
MkRFMUJBMThEMENGRjJBQzcwMjU1RDY4NDUxMUY2NjMwQTA0MDdGRTQ4QjFGREUz
NkJCQTRGMDgwRjM1QkU2RTM0QTAzRkE0QUQ0OTYyRTg5QTEzMzAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmR40HWjQtAvMgHnfVKh92
nMBe3Oe+JHxf1KUnKyABfbpoRvj8w+pT6qVcW7Baja2rNTeycXO08qJbbbMc09MV
gQYXidKYEe9hzJveYFyFzTUbNiPX+5+J7HjOGxiVrdpJ4LEwBL0IhW07pxrTKl9r
A2EYc1teIn9Jz7bR4f8oVNgZdSEtNsIUpRbA0uI80SIJ/4Z4B1JApmH8aGyvLjDA
Piy+Rr/po0KzqH+oDCuB1cQSdf+0gYdGKeJ0GqXcBxX0aTtJY/g9WAxOfcwksBZM
4Nd/3RYC3huhjQz/KscCVdaEUR9mMKBAf+SLH942u6TwgPNb5uNKA/pK1JYuiaEz
AgMBAAGjggH2MIIB8jAdBgNVHQ4EFgQUhYStk9ZtR/EObB+tdU72QZaM1LYwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjB6BggrBgEF
BQcBCwRuMGwwagYIKwYBBQUHMAuGXnJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5l
dC9yZXBvL0lETklDLUlELzIvMzEzMDMzMmUzMTMyMzQyZTM2MzgyZTMwMmYzMjMy
MmQzMjM0MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmd8RDANBgkqhkiG9w0BAQsFAAOC
AQEAa3ehSZ2Snv18rA5nsZfEPkaD0FmhKR66oOcUlKT4ZeBz5Hoa2G0ga2YSPew4
xOLS9NBH54qFTpy9nVrgoi0zvT3x6Y/kKjU7UzyPos+VWnVz2irlqE8pQcdEKKom
jP1EaKf5milS2qST8nVKi5owj25DbZntTAqBy5MSnLw37toenYpDRycPao71ZjSt
wAnoaCzrOU4m9sJ/H+dQjPz2iRkIo1CwTbKZ1JdBIbBdTGRO2mH39hzI4Eyq++0F
OnbO3lAHmeyPw9IjoSAy7zqfghtRSfwc9oIfo14xbN/3s7S1h9FO7qs7KeOGh8yM
oLgJJ2IK/THWTAPfvb+aizAQ5A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:08 2024 by rpki-client on console-fra.rpki-client.org