Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3130302e302f32332d3234203d3e20313333383030.roa
File: 3130332e3135302e3130302e302f32332d3234203d3e20313333383030.roa (raw, json)
Hash identifier: DtKTQ3UZOcVgf0SaccSlK9e2H6uH5+7jl+FDgBMWNZs=
Subject key identifier: F4:26:03:59:67:25:06:98:42:DA:96:07:79:EB:E6:F2:11:97:FF:2D
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6BDA529EBC6F0449D00CA7D8A0D016713339265E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3130302e302f32332d3234203d3e20313333383030.roa
Signing time: Sat 05 Mar 2022 21:00:00 +0000
ROA not before: Sat 05 Mar 2022 20:55:00 +0000
ROA not after: Sat 04 Mar 2023 21:00:00 +0000
asID: 133800
IP address blocks: 103.150.100.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:da:52:9e:bc:6f:04:49:d0:0c:a7:d8:a0:d0:16:71:33:39:26:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 5 20:55:00 2022 GMT
Not After : Mar 4 21:00:00 2023 GMT
Subject: CN=F42603596725069842DA960779EBE6F21197FF2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6e:1f:f4:30:00:e3:1d:7d:81:83:2d:56:50:
8e:83:0d:b6:8e:58:d6:89:f6:95:ea:fb:11:5d:f6:
a9:d6:7d:ce:13:ef:cf:c4:28:e8:61:1e:37:05:ac:
86:23:58:98:3b:e2:30:ea:71:20:59:92:bf:28:b1:
f1:74:70:2e:17:6f:62:82:1f:87:84:53:ff:57:f0:
42:a8:c4:d4:2d:df:d3:67:fd:8f:92:97:5d:51:06:
ca:f2:ad:ba:51:01:03:88:c9:d8:f8:48:6c:c6:ca:
8b:3d:77:1e:e8:fe:e2:82:c9:1a:e9:86:5d:77:a8:
73:e6:59:99:0d:06:53:f4:2d:dd:21:d6:7d:fe:22:
2e:13:00:9b:b7:07:b0:b3:97:21:50:ab:9f:0a:98:
77:29:9e:d5:e5:fa:0c:a2:14:66:3a:75:0f:3c:e3:
b6:0c:72:ae:9f:ea:1b:12:4a:9f:5f:7f:66:8d:a6:
b0:a9:5c:ad:98:dd:fa:10:4c:1e:b5:83:75:d7:01:
14:e3:6e:15:31:9c:ad:52:07:5e:a6:fe:1c:ef:4f:
d3:20:43:0e:7f:c9:2d:40:ed:56:a6:20:7e:85:fc:
0c:fb:54:1b:fa:a5:10:c7:b2:51:94:b0:c4:f9:be:
c3:f6:d1:64:06:3a:9d:59:ca:76:a9:14:20:7f:8e:
d2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:26:03:59:67:25:06:98:42:DA:96:07:79:EB:E6:F2:11:97:FF:2D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3130302e302f32332d3234203d3e20313333383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.100.0/23
Signature Algorithm: sha256WithRSAEncryption
90:32:f2:a4:9f:46:8a:ea:86:ea:be:3a:6e:23:da:63:e0:fd:
e8:d9:3a:73:00:a5:e5:ca:a0:02:ee:36:78:0f:91:a7:e9:83:
a7:47:e9:21:ca:90:af:d8:6c:e4:9b:2a:8d:33:f2:ee:db:e6:
52:78:92:d2:27:19:dc:95:86:a8:82:6e:91:67:bc:db:ec:a5:
db:ff:ce:b2:f9:63:5d:96:1c:dc:14:6c:97:5b:d9:25:03:44:
52:34:25:1f:55:7b:18:65:41:50:51:c1:d7:eb:36:19:a0:72:
1f:1f:90:18:c8:12:86:27:7d:5e:f1:70:fe:1f:16:68:f7:4d:
4f:e3:4e:0c:16:04:d2:e6:2f:d8:e2:74:17:a2:a3:b6:e4:6a:
ff:37:a6:b9:70:82:24:85:7a:b9:88:d0:1c:be:57:19:fb:41:
ba:06:f4:ec:5e:94:37:92:37:a5:f4:c5:06:e2:f0:84:81:49:
19:9f:39:f2:f2:32:83:e9:87:63:23:67:75:b0:2a:90:04:b2:
95:73:8c:a2:aa:f8:ea:3a:ef:00:44:30:be:5a:f7:0b:bf:06:
50:bd:d0:b7:76:d7:c5:35:48:af:3d:e5:bc:28:10:64:28:4e:
2b:c3:53:cb:c2:3b:db:39:87:83:cd:8e:2a:e0:44:fa:3f:97:
a7:66:16:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:09 2024 by rpki-client on console-fra.rpki-client.org