Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3134392e3230382e302f32342d3234203d3e20313430303239.roa
File: 3130332e3134392e3230382e302f32342d3234203d3e20313430303239.roa (raw, json)
Hash identifier: /8PRMPOW3bYPkAfNzbwx7haz89iB8DrZDrId++ZvbBg=
Subject key identifier: 02:7E:C8:AE:19:3A:C1:7D:B1:1E:02:C7:C1:2B:F3:94:5F:18:8D:20
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2E208559D0008B37B71A28C9E425D197C30B8DEA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3134392e3230382e302f32342d3234203d3e20313430303239.roa
Signing time: Mon 06 Sep 2021 04:05:04 +0000
ROA not before: Mon 06 Sep 2021 04:00:04 +0000
ROA not after: Tue 06 Sep 2022 04:05:04 +0000
asID: 140029
IP address blocks: 103.149.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:20:85:59:d0:00:8b:37:b7:1a:28:c9:e4:25:d1:97:c3:0b:8d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Sep 6 04:00:04 2021 GMT
Not After : Sep 6 04:05:04 2022 GMT
Subject: CN=3082010A0282010100BA1C997BB481E77885CDDC879B0ADCBAE473457479EFFA9C2092D0BADC02E44D32E702513A460B69B1DA43E9E5C94C3EEEF202F7599CC4D129585C1E20855D64F4F9B176ED04FDDC464EDF7800B473E1233FD34F8A7062E745C6B70B171C146173771DE2F0B6D94528258527826BE5CACA7903387015E9CB6F63982E3D8BB3694E3A4C981B10D33E6D02DD3B71A98FB7FCCBB5D8C723CAFA52D515A4AC97B06A8845C28FB1A70C15226A764C00669B8997F266F6E51F6E96FD31778299DAEF176C3EB2E78F23AFC6410D03556199D5821447511FB6988F60F0C5E0865E99BCD34D451BCFFE38281F75E325518FD175B16C3AD4464AD1FB2BF3CC935971D6FEC70203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1c:99:7b:b4:81:e7:78:85:cd:dc:87:9b:0a:
dc:ba:e4:73:45:74:79:ef:fa:9c:20:92:d0:ba:dc:
02:e4:4d:32:e7:02:51:3a:46:0b:69:b1:da:43:e9:
e5:c9:4c:3e:ee:f2:02:f7:59:9c:c4:d1:29:58:5c:
1e:20:85:5d:64:f4:f9:b1:76:ed:04:fd:dc:46:4e:
df:78:00:b4:73:e1:23:3f:d3:4f:8a:70:62:e7:45:
c6:b7:0b:17:1c:14:61:73:77:1d:e2:f0:b6:d9:45:
28:25:85:27:82:6b:e5:ca:ca:79:03:38:70:15:e9:
cb:6f:63:98:2e:3d:8b:b3:69:4e:3a:4c:98:1b:10:
d3:3e:6d:02:dd:3b:71:a9:8f:b7:fc:cb:b5:d8:c7:
23:ca:fa:52:d5:15:a4:ac:97:b0:6a:88:45:c2:8f:
b1:a7:0c:15:22:6a:76:4c:00:66:9b:89:97:f2:66:
f6:e5:1f:6e:96:fd:31:77:82:99:da:ef:17:6c:3e:
b2:e7:8f:23:af:c6:41:0d:03:55:61:99:d5:82:14:
47:51:1f:b6:98:8f:60:f0:c5:e0:86:5e:99:bc:d3:
4d:45:1b:cf:fe:38:28:1f:75:e3:25:51:8f:d1:75:
b1:6c:3a:d4:46:4a:d1:fb:2b:f3:cc:93:59:71:d6:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7E:C8:AE:19:3A:C1:7D:B1:1E:02:C7:C1:2B:F3:94:5F:18:8D:20
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3134392e3230382e302f32342d3234203d3e20313430303239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.208.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:b5:b7:4e:61:47:0c:c8:6e:d3:eb:cf:56:73:f6:28:8d:c8:
b0:20:0f:4f:cc:7b:1c:28:a0:4e:43:fe:42:b3:20:8c:a8:84:
88:ab:b1:9e:44:bf:54:49:45:8d:7a:9e:cd:6b:9d:b2:65:8c:
48:10:29:fa:39:e2:dc:02:29:31:12:ea:39:8e:d0:9a:0d:94:
8b:f5:78:57:e6:14:a7:6d:e4:1e:4e:21:fc:1a:73:77:b5:d6:
2d:7b:91:99:df:f1:13:77:4b:87:6c:94:c0:76:b8:d4:2f:43:
39:38:c1:92:c7:86:a8:34:28:23:3f:97:3e:3b:42:7d:99:46:
70:ad:c0:e9:7d:11:3b:b5:aa:58:67:bd:32:0b:59:50:f0:70:
fe:37:01:55:79:c0:75:cb:c3:20:ad:36:51:1a:a5:d5:e4:80:
4b:d0:04:95:37:ec:e1:09:10:48:7e:10:0b:46:61:e9:45:45:
f0:0c:6e:0c:72:4c:b8:04:ba:71:d6:1b:c5:12:5f:e0:1a:4a:
d4:10:1a:a2:bb:6e:83:e4:3e:4a:67:98:c9:c9:7d:9b:c5:42:
75:a9:8a:09:94:b4:96:8f:e0:07:f4:6e:d9:1a:62:93:ba:bc:
22:1c:5a:2e:4b:82:ac:36:10:ef:53:ed:42:a2:a3:f1:c1:70:
98:00:b1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:43 2024 by rpki-client on console-ams.rpki-client.org