Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3133362e32382e302f32322d3234203d3e2030.roa
File: 3130332e3133362e32382e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: j+Oa7QEE2e7OH9HihXrwRAIaVpijtRjwZThivFXYpC0=
Subject key identifier: F1:D1:0C:27:91:99:19:CA:F7:F0:3E:27:3C:EA:B5:FC:D1:C9:E9:70
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2DC2B9A319479684B11EF356CAF453BB5FA7895E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3133362e32382e302f32322d3234203d3e2030.roa
Signing time: Mon 31 Jan 2022 03:51:50 +0000
ROA not before: Mon 31 Jan 2022 03:46:50 +0000
ROA not after: Tue 31 Jan 2023 03:51:50 +0000
asID: 0
IP address blocks: 103.136.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:c2:b9:a3:19:47:96:84:b1:1e:f3:56:ca:f4:53:bb:5f:a7:89:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 31 03:46:50 2022 GMT
Not After : Jan 31 03:51:50 2023 GMT
Subject: CN=3082010A0282010100C1A4E9FCC61B54CD74D8E89BC36AA5C710386016AED166DF412E8470B72DBE4C031D84F5394F4CB5F6F4C9AC683335E32E4386B8E8870B4E9499B51AD9008FB85224ABB89C60AE792C9B1DFC196515B4E38FE5351A5C2920F942A65939BBDECE4016693B368D0503549A05B06FAADA75CDD94CE345BB0A30C3F9F132D84E9CCD71E4B22A85FF39542E63855F99DCAC4B28761236DD4F63ED1F1831DDFE3DADCB756741DE112D9FBA938C7B6BAB792C1792FC2DE34345ED908C1F50274492B4D5151505D59085C3A65DCE6B1251438A0B96FA318865EFEA75CCC3C7D4B437BD02B8DC44056360CA5C65D54948D780FD908E8507DE405F1CAB470F85FD5445EDFD0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:e9:fc:c6:1b:54:cd:74:d8:e8:9b:c3:6a:
a5:c7:10:38:60:16:ae:d1:66:df:41:2e:84:70:b7:
2d:be:4c:03:1d:84:f5:39:4f:4c:b5:f6:f4:c9:ac:
68:33:35:e3:2e:43:86:b8:e8:87:0b:4e:94:99:b5:
1a:d9:00:8f:b8:52:24:ab:b8:9c:60:ae:79:2c:9b:
1d:fc:19:65:15:b4:e3:8f:e5:35:1a:5c:29:20:f9:
42:a6:59:39:bb:de:ce:40:16:69:3b:36:8d:05:03:
54:9a:05:b0:6f:aa:da:75:cd:d9:4c:e3:45:bb:0a:
30:c3:f9:f1:32:d8:4e:9c:cd:71:e4:b2:2a:85:ff:
39:54:2e:63:85:5f:99:dc:ac:4b:28:76:12:36:dd:
4f:63:ed:1f:18:31:dd:fe:3d:ad:cb:75:67:41:de:
11:2d:9f:ba:93:8c:7b:6b:ab:79:2c:17:92:fc:2d:
e3:43:45:ed:90:8c:1f:50:27:44:92:b4:d5:15:15:
05:d5:90:85:c3:a6:5d:ce:6b:12:51:43:8a:0b:96:
fa:31:88:65:ef:ea:75:cc:c3:c7:d4:b4:37:bd:02:
b8:dc:44:05:63:60:ca:5c:65:d5:49:48:d7:80:fd:
90:8e:85:07:de:40:5f:1c:ab:47:0f:85:fd:54:45:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D1:0C:27:91:99:19:CA:F7:F0:3E:27:3C:EA:B5:FC:D1:C9:E9:70
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3133362e32382e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:33:31:85:f0:73:cd:2d:5a:39:15:d0:34:e9:90:06:ac:1c:
67:d1:39:a4:08:ab:6b:60:46:ef:48:cc:88:42:77:75:fc:15:
76:39:dd:17:23:e6:70:b9:b2:b5:86:4f:ab:d1:6c:21:59:3c:
b5:45:bf:75:d2:0d:7c:d9:48:f9:b1:1e:3b:ea:92:7b:20:12:
60:09:f3:5d:7a:65:5e:37:cf:87:bf:a5:a8:50:c2:bf:18:79:
2c:38:86:32:6c:d1:cb:90:44:6a:da:e1:f2:ea:50:d3:ba:1f:
30:d0:d5:94:95:5d:fd:bb:08:52:22:d7:fd:b1:a5:43:ca:8f:
f7:79:47:50:3e:a4:74:ca:e5:0b:b3:3e:07:f1:01:e0:21:c8:
f9:2d:55:d0:43:a2:21:e6:15:db:c9:cb:04:e7:82:3e:43:8d:
2c:84:2a:02:51:40:5e:17:a0:8f:d2:58:d7:36:9f:ee:e5:46:
09:fa:7c:1b:3f:ba:db:56:03:34:c7:bf:ca:37:66:c2:c8:fa:
b8:55:50:67:c6:15:c0:4a:2a:b5:09:49:c8:41:f8:d8:c9:39:
92:43:48:ea:c6:06:70:72:0b:3b:ac:bb:f8:b6:a6:68:73:b1:
65:b3:3b:3c:7b:52:b2:17:3e:f9:9a:c7:85:7c:43:2e:e4:25:
13:e5:cc:61
-----BEGIN CERTIFICATE-----
MIIG/zCCBeegAwIBAgIULcK5oxlHloSxHvNWyvRTu1+niV4wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIyMDEzMTAzNDY1MFoX
DTIzMDEzMTAzNTE1MFowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBDMUE0RTlGQ0M2MUI1NENENzREOEU4OUJDMzZBQTVDNzEwMzg2MDE2QUVE
MTY2REY0MTJFODQ3MEI3MkRCRTRDMDMxRDg0RjUzOTRGNENCNUY2RjRDOUFDNjgz
MzM1RTMyRTQzODZCOEU4ODcwQjRFOTQ5OUI1MUFEOTAwOEZCODUyMjRBQkI4OUM2
MEFFNzkyQzlCMURGQzE5NjUxNUI0RTM4RkU1MzUxQTVDMjkyMEY5NDJBNjU5MzlC
QkRFQ0U0MDE2NjkzQjM2OEQwNTAzNTQ5QTA1QjA2RkFBREE3NUNERDk0Q0UzNDVC
QjBBMzBDM0Y5RjEzMkQ4NEU5Q0NENzFFNEIyMkE4NUZGMzk1NDJFNjM4NTVGOTlE
Q0FDNEIyODc2MTIzNkRENEY2M0VEMUYxODMxRERGRTNEQURDQjc1Njc0MURFMTEy
RDlGQkE5MzhDN0I2QkFCNzkyQzE3OTJGQzJERTM0MzQ1RUQ5MDhDMUY1MDI3NDQ5
MkI0RDUxNTE1MDVENTkwODVDM0E2NURDRTZCMTI1MTQzOEEwQjk2RkEzMTg4NjVF
RkVBNzVDQ0MzQzdENEI0MzdCRDAyQjhEQzQ0MDU2MzYwQ0E1QzY1RDU0OTQ4RDc4
MEZEOTA4RTg1MDdERTQwNUYxQ0FCNDcwRjg1RkQ1NDQ1RURGRDAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBpOn8xhtUzXTY6JvDaqXH
EDhgFq7RZt9BLoRwty2+TAMdhPU5T0y19vTJrGgzNeMuQ4a46IcLTpSZtRrZAI+4
UiSruJxgrnksmx38GWUVtOOP5TUaXCkg+UKmWTm73s5AFmk7No0FA1SaBbBvqtp1
zdlM40W7CjDD+fEy2E6czXHksiqF/zlULmOFX5ncrEsodhI23U9j7R8YMd3+Pa3L
dWdB3hEtn7qTjHtrq3ksF5L8LeNDRe2QjB9QJ0SStNUVFQXVkIXDpl3OaxJRQ4oL
lvoxiGXv6nXMw8fUtDe9ArjcRAVjYMpcZdVJSNeA/ZCOhQfeQF8cq0cPhf1URe39
AgMBAAGjggH2MIIB8jAdBgNVHQ4EFgQU8dEMJ5GZGcr38D4nPOq1/NHJ6XAwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjB6BggrBgEF
BQcBCwRuMGwwagYIKwYBBQUHMAuGXnJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5l
dC9yZXBvL0lETklDLUlELzIvMzEzMDMzMmUzMTMzMzYyZTMyMzgyZTMwMmYzMjMy
MmQzMjM0MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmeIHDANBgkqhkiG9w0BAQsFAAOC
AQEATDMxhfBzzS1aORXQNOmQBqwcZ9E5pAira2BG70jMiEJ3dfwVdjndFyPmcLmy
tYZPq9FsIVk8tUW/ddINfNlI+bEeO+qSeyASYAnzXXplXjfPh7+lqFDCvxh5LDiG
MmzRy5BEatrh8upQ07ofMNDVlJVd/bsIUiLX/bGlQ8qP93lHUD6kdMrlC7M+B/EB
4CHI+S1V0EOiIeYV28nLBOeCPkONLIQqAlFAXhegj9JY1zaf7uVGCfp8Gz+621YD
NMe/yjdmwsj6uFVQZ8YVwEoqtQlJyEH42Mk5kkNI6sYGcHILO6y7+LamaHOxZbM7
PHtSshc++ZrHhXxDLuQlE+XMYQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:43 2024 by rpki-client on console-ams.rpki-client.org