Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3133362e35382e302f3234203d3e20313331313131.roa
File: 3130332e3133362e35382e302f3234203d3e20313331313131.roa (raw, json)
Hash identifier: gmcUCaq3NC1uIW+PPqQckf0n9Al+BXXBJVnM9sBiFFk=
Subject key identifier: 3F:76:33:35:74:43:30:08:47:EC:95:C6:B1:FE:7E:C9:6F:4E:E8:C3
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0A8908F72E2D935C391C9289B8A89FE3982FB5
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3133362e35382e302f3234203d3e20313331313131.roa
Signing time: Tue 29 Jun 2021 11:00:05 +0000
ROA not before: Tue 29 Jun 2021 10:55:05 +0000
ROA not after: Wed 29 Jun 2022 11:00:05 +0000
asID: 131111
IP address blocks: 103.136.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:89:08:f7:2e:2d:93:5c:39:1c:92:89:b8:a8:9f:e3:98:2f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jun 29 10:55:05 2021 GMT
Not After : Jun 29 11:00:05 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:20:77:8f:34:61:08:97:5b:64:76:60:3c:87:
a4:9f:b2:67:ae:5a:e9:a4:61:cf:31:86:91:5b:4f:
ab:f7:08:76:72:2c:3a:c1:05:a2:0a:22:fd:e9:ad:
4f:6e:29:0b:29:33:38:2e:8b:69:66:df:70:de:86:
c8:89:43:96:f9:b5:5f:b7:1e:d1:44:c4:dc:6b:ef:
e7:10:a9:0e:ad:58:df:43:1f:cb:b4:77:be:fe:0d:
09:60:35:23:62:3b:3c:30:17:31:a3:bc:a4:70:a5:
6d:84:b4:13:10:5d:3e:9b:ef:4e:9d:d4:c3:9d:30:
ba:b5:fd:a8:55:75:89:bc:1d:fc:84:f9:a3:d6:73:
8a:b1:41:af:40:d2:be:17:14:04:79:c3:43:57:e4:
08:26:76:78:39:e7:78:3e:7a:fe:cf:1d:ac:08:af:
ed:08:a4:cc:9f:8e:01:a4:ec:45:eb:22:dd:2c:70:
dd:cb:29:fb:e2:83:c7:ff:97:6f:19:eb:09:fd:57:
23:2f:91:2a:ab:f1:fe:b3:eb:47:06:2c:c0:4b:45:
92:be:6b:7c:e6:79:9a:ec:8e:d8:56:da:b2:22:b7:
62:c1:dc:bf:e0:0f:0a:7a:b0:88:6b:10:2a:de:c3:
13:21:f1:37:f7:1d:80:b1:23:4d:1a:29:c7:f1:62:
5e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:76:33:35:74:43:30:08:47:EC:95:C6:B1:FE:7E:C9:6F:4E:E8:C3
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3133362e35382e302f3234203d3e20313331313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.58.0/24
Signature Algorithm: sha256WithRSAEncryption
73:4b:e7:b8:14:c5:9c:1d:e9:dc:95:ac:8d:ff:64:fb:82:33:
29:94:70:9d:8e:5f:dc:7b:80:0b:e0:16:fe:59:36:37:5e:9c:
38:b3:df:8e:52:cf:6a:32:4f:bb:00:15:1b:39:98:ba:22:66:
0c:84:af:af:5b:00:4d:60:5d:0a:63:e1:f0:cf:67:78:d1:8a:
53:a1:b0:bd:68:54:2f:53:57:45:a9:73:4b:56:82:4e:d3:14:
03:1b:70:3a:b2:c9:f7:5b:7d:ff:8b:de:01:2e:1d:4a:2b:0d:
49:20:f1:1f:82:0c:b4:0e:72:40:ee:43:b7:1f:27:7c:c3:ba:
4a:a6:17:0c:1e:e6:bc:be:28:b4:3c:1a:f8:97:3a:33:88:7b:
15:ce:eb:37:ba:12:d7:28:69:ef:df:b5:1f:6c:94:d6:da:b3:
12:bc:d8:6d:00:4b:e8:ca:da:26:d7:de:2b:82:9c:1a:4c:67:
85:b8:fa:03:f6:ed:a9:ab:a5:c2:cb:93:dd:b2:a7:d2:51:09:
78:88:0c:0c:7a:a2:f4:74:a1:4d:8a:af:0a:e5:47:c3:be:a5:
da:77:e1:79:9d:ca:44:82:9b:b3:0d:58:c9:76:d0:75:5c:7e:
97:62:06:e6:fe:f3:71:82:6e:53:ee:87:3e:be:b7:47:83:bb:
0e:78:31:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:43 2024 by rpki-client on console-ams.rpki-client.org