Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3132302e302f32332d3234203d3e20313333383030.roa
File: 3130332e3135302e3132302e302f32332d3234203d3e20313333383030.roa (raw, json)
Hash identifier: sS+tuHDAxAby3kG0ocl7z4XFBI7ingxJOojaQVav5IY=
Subject key identifier: B0:8F:A5:73:71:30:A4:1B:94:28:F0:2E:BC:08:87:48:E2:CE:BA:5C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 7BAF47D40D8810331E614FE268B68D8B21916A94
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3132302e302f32332d3234203d3e20313333383030.roa
Signing time: Sat 05 Mar 2022 21:00:00 +0000
ROA not before: Sat 05 Mar 2022 20:55:00 +0000
ROA not after: Sat 04 Mar 2023 21:00:00 +0000
asID: 133800
IP address blocks: 103.150.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:af:47:d4:0d:88:10:33:1e:61:4f:e2:68:b6:8d:8b:21:91:6a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 5 20:55:00 2022 GMT
Not After : Mar 4 21:00:00 2023 GMT
Subject: CN=B08FA5737130A41B9428F02EBC088748E2CEBA5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ab:9b:a3:f8:67:f9:ac:0f:e0:d6:4d:df:9c:
e1:44:0a:6e:37:36:b0:68:09:e2:07:69:ae:30:24:
f6:a3:99:11:ea:aa:34:f4:65:2f:11:7d:a5:89:76:
2b:ac:54:89:15:40:8a:d3:bb:cf:a6:f7:c0:66:d8:
e6:20:24:ee:99:29:b6:ba:94:f0:7f:04:b7:2c:41:
3b:a9:f7:07:1b:c4:f9:ed:2d:22:85:8d:cf:da:36:
79:c2:1f:eb:0e:a2:05:27:3f:c7:76:be:27:a1:c7:
88:de:0d:9f:2e:97:89:75:ad:d0:10:89:cb:98:be:
b5:86:45:b5:98:ee:87:55:24:52:68:fe:0c:e3:8c:
65:a1:d9:68:10:18:cb:c4:64:09:a4:52:e3:41:c2:
11:3a:2f:42:b4:6c:3c:41:98:8f:21:bd:3f:e9:49:
18:5b:e0:0a:6c:cd:b2:43:e1:53:75:b3:38:24:f8:
ca:a1:91:76:73:c4:f6:fb:b4:f5:04:4f:8b:b1:be:
c7:db:be:9c:b6:6b:f8:15:62:14:a6:95:27:a3:ec:
d0:bc:b3:8e:f0:72:04:b4:a7:4c:b4:f8:7f:01:21:
05:33:5b:94:ff:7b:e2:dc:e6:e4:ba:cc:a6:51:0e:
62:15:9d:eb:bb:93:a4:72:0a:a4:1c:0d:79:6e:22:
68:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8F:A5:73:71:30:A4:1B:94:28:F0:2E:BC:08:87:48:E2:CE:BA:5C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135302e3132302e302f32332d3234203d3e20313333383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.120.0/23
Signature Algorithm: sha256WithRSAEncryption
45:cf:e1:cf:42:b8:f6:92:7b:fb:81:bb:06:14:21:3a:49:70:
56:c9:e7:e1:32:1c:86:2a:30:a3:26:c1:f0:a9:73:94:8c:6a:
5e:fa:09:34:30:d7:27:bd:c8:b7:f0:d6:d1:4a:ab:21:7e:ca:
84:62:71:c3:0b:77:b7:87:49:7d:27:a8:61:da:63:38:eb:45:
26:34:bd:4d:25:ce:76:e1:6b:48:a9:cc:c6:1c:b5:cb:fe:ed:
77:0c:27:92:8f:fa:98:5b:c2:c2:20:64:ed:14:60:4f:3c:ce:
d5:3c:30:dc:29:9e:9e:bf:fd:87:99:00:c0:fe:8d:49:ff:70:
84:c4:1c:8b:62:70:fd:23:a3:56:ab:5f:6c:09:df:68:63:fd:
6c:19:d6:e5:ed:6f:ed:18:1b:a5:07:47:1d:54:90:b5:4f:48:
9d:43:b1:ce:24:95:e8:1b:29:66:d8:e3:0c:36:3f:3b:c3:42:
64:22:5c:88:f8:44:3a:ff:4b:d9:16:bf:96:3a:e9:68:98:97:
1f:ee:85:72:a5:5a:bd:d0:9e:34:60:11:bd:19:02:96:77:99:
63:b3:2d:7f:49:1b:ae:21:6e:65:21:cc:84:53:e3:57:3d:be:
03:4d:27:e5:77:20:cb:e8:a1:bc:af:e6:c6:86:70:e3:e5:08:
79:b3:51:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:43 2024 by rpki-client on console-ams.rpki-client.org