Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3130322e302f32332d3234203d3e20313333383030.roa
File: 3130332e3135302e3130322e302f32332d3234203d3e20313333383030.roa (raw, json)
Hash identifier: GU3AzDCTSnYQaVj+0CLQSUY9huOzhttp5kPmOvjVUpA=
Subject key identifier: A2:AF:A5:AD:2D:EE:C4:57:36:1D:B7:5C:C4:69:58:3E:A9:EF:4F:E6
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 74ABEE37D4B6EBC9DF456B1782FDCB4AB7C74995
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3130322e302f32332d3234203d3e20313333383030.roa
Signing time: Sat 05 Mar 2022 21:00:01 +0000
ROA not before: Sat 05 Mar 2022 20:55:01 +0000
ROA not after: Sat 04 Mar 2023 21:00:01 +0000
asID: 133800
IP address blocks: 103.150.102.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:ab:ee:37:d4:b6:eb:c9:df:45:6b:17:82:fd:cb:4a:b7:c7:49:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 5 20:55:01 2022 GMT
Not After : Mar 4 21:00:01 2023 GMT
Subject: CN=A2AFA5AD2DEEC457361DB75CC469583EA9EF4FE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5e:8d:02:b1:3a:9a:97:0f:73:44:f9:d4:0d:
bb:a7:be:73:86:cf:a9:67:4a:49:a7:07:d8:96:5b:
b7:d1:86:45:37:98:dd:81:a1:b7:c0:37:a6:e5:39:
fc:6e:fd:87:f1:e1:54:c1:7b:07:c0:4d:d7:b1:b6:
92:c0:c3:50:43:61:99:ea:21:60:c0:53:38:72:b6:
7d:19:cd:32:0f:40:67:c1:07:76:6e:e3:e2:99:fe:
72:df:73:b7:60:09:69:2f:1a:6d:64:61:34:f2:23:
88:37:6f:63:01:3b:e1:bc:69:2a:03:8d:88:0d:c2:
4e:39:83:c8:4c:d4:7f:84:d8:31:c1:91:42:19:11:
4c:b4:fb:bf:be:2a:e0:1d:09:24:cb:79:de:9e:99:
2d:35:e8:8f:25:da:43:dc:39:ea:70:2e:14:6e:57:
7a:ff:18:14:08:cb:87:cc:3d:d0:d0:22:a5:36:e6:
89:a2:db:af:f6:b1:bd:73:5e:dc:5f:7e:08:26:e4:
63:0a:7c:35:89:db:ae:ab:10:a8:71:2b:82:79:32:
4d:ee:63:d3:16:6e:f5:ff:fe:ec:d1:85:3f:90:f9:
8c:30:58:e4:2a:fc:72:27:ef:91:3a:1e:43:c1:a8:
fd:98:fd:e6:e1:25:85:7a:2f:60:9a:62:40:c5:37:
4c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AF:A5:AD:2D:EE:C4:57:36:1D:B7:5C:C4:69:58:3E:A9:EF:4F:E6
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3130322e302f32332d3234203d3e20313333383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.102.0/23
Signature Algorithm: sha256WithRSAEncryption
92:ea:3d:5d:61:d9:40:2d:74:f8:73:e9:a9:dd:93:50:2a:bd:
18:9b:a9:a6:31:c6:b2:f1:4d:46:20:de:73:80:a5:16:c9:e7:
b2:20:d8:fd:fe:65:55:6b:f5:5c:8e:48:6d:97:a7:45:e0:99:
21:30:2c:a3:ca:31:fe:91:ce:df:8d:75:e0:4c:e9:93:5d:88:
7d:57:d6:ec:4c:d9:45:60:e1:2b:b1:e8:39:58:bb:58:ef:8a:
32:e3:5f:3b:85:eb:17:8a:40:3b:1b:c6:41:8f:ff:fc:bd:0c:
75:1d:6c:81:0f:d0:90:5f:82:10:4a:2f:54:b6:49:00:ab:73:
26:e7:74:2b:8b:51:d3:fa:19:28:3b:a8:ea:ae:56:b6:87:00:
aa:4c:13:21:88:5a:b5:ce:c3:fa:d6:89:7a:ba:8d:bb:9c:c9:
fa:25:ac:ce:1c:14:a1:10:b5:d4:f1:3b:7e:48:22:d5:89:11:
3f:a6:b9:e0:dc:39:ae:83:90:e4:74:63:a5:2d:6d:f2:96:de:
a1:72:71:1a:27:ed:6f:d9:10:91:a9:7c:36:43:44:be:bb:d2:
33:ab:d5:29:cf:e4:e2:80:af:91:21:c1:f4:5c:be:6b:70:a5:
9f:03:4c:b1:e9:da:bd:6a:45:23:d0:ed:36:f3:95:ff:9b:53:
c0:d0:94:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:09 2024 by rpki-client on console-fra.rpki-client.org