Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135362e3231312e302f32342d3234203d3e20313431303935.roa
File: 3130332e3135362e3231312e302f32342d3234203d3e20313431303935.roa (raw, json)
Hash identifier: 0N+Qk5zWMmaUR2lF275gxtNTT/VIY4HtBXCtzza/m1M=
Subject key identifier: 03:9F:7C:1F:80:48:4D:26:4E:A2:F8:9F:10:55:A9:6A:D6:54:8F:EE
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2997DC599AF242AB59206278AFF167C9F3A50856
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135362e3231312e302f32342d3234203d3e20313431303935.roa
Signing time: Wed 02 Mar 2022 08:00:00 +0000
ROA not before: Wed 02 Mar 2022 07:55:00 +0000
ROA not after: Thu 02 Mar 2023 08:00:00 +0000
asID: 141095
IP address blocks: 103.156.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:97:dc:59:9a:f2:42:ab:59:20:62:78:af:f1:67:c9:f3:a5:08:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 2 07:55:00 2022 GMT
Not After : Mar 2 08:00:00 2023 GMT
Subject: CN=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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c7:db:e8:c8:b8:a8:ca:08:6c:aa:23:f1:8e:
be:73:41:db:17:b4:b5:87:b1:1f:e7:e3:c6:ae:1c:
7a:3d:ed:1d:73:41:47:a2:de:56:44:dc:56:a3:86:
28:2b:56:f8:4e:8c:0a:c4:07:9c:d6:c2:79:dd:75:
94:cb:0e:11:5a:d5:02:60:86:ec:0e:ec:7d:c5:70:
f2:a1:08:14:b4:e4:3e:26:ce:56:0f:6d:41:25:d7:
61:fa:5b:e8:c6:fe:aa:bf:5b:14:8a:e2:ec:d8:4e:
e6:48:1c:da:74:c3:c0:90:7c:78:9f:d6:50:61:5b:
2c:34:20:14:d2:fe:ca:a5:2e:1f:73:46:18:18:c2:
0e:59:8f:43:1f:6c:22:7e:8e:ca:da:6e:a4:9c:d1:
7a:47:e0:c8:fc:59:00:c8:8b:9a:e0:13:53:dc:4f:
0f:3a:44:87:c0:c6:ce:c8:97:6f:e1:ca:53:be:d7:
24:3c:1f:ff:ec:94:90:3c:e0:d3:1b:f7:a1:a4:fe:
d3:47:a6:e7:68:23:7f:60:4f:f3:98:43:06:ec:66:
53:87:db:13:fe:1a:d9:0a:42:a6:1f:16:8c:75:c1:
fa:10:8c:41:d8:cd:73:14:e6:ce:22:fb:5e:cc:36:
0b:5a:80:b6:68:dd:04:1f:4c:03:5a:d2:12:33:b0:
ed:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9F:7C:1F:80:48:4D:26:4E:A2:F8:9F:10:55:A9:6A:D6:54:8F:EE
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135362e3231312e302f32342d3234203d3e20313431303935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.156.211.0/24
Signature Algorithm: sha256WithRSAEncryption
12:b7:68:27:8d:ce:1a:52:37:7c:67:a5:2d:49:56:94:b9:2d:
5d:99:57:2b:db:97:bf:8e:dd:00:44:08:ab:6b:8e:0d:28:f9:
88:1e:56:e2:10:2f:88:2d:bc:6d:7a:e8:aa:38:b4:eb:33:e1:
08:73:da:0c:d9:1a:ee:e8:97:40:a2:4f:00:f5:92:81:2d:d8:
d4:e1:1e:c2:bc:a2:fc:ec:6b:81:ff:d6:4b:d2:25:0d:4e:b1:
42:46:14:70:4b:63:39:18:99:e1:87:7e:a5:28:c9:5d:98:d2:
84:a9:94:45:d9:92:f2:0b:88:e8:0b:29:c4:3d:0a:3d:e6:ad:
3e:0b:f8:57:72:df:c0:7f:36:ef:8c:e1:de:21:3f:c4:71:32:
c2:ae:ee:48:f5:3a:5b:ef:f7:13:c2:d7:19:0c:a8:20:f5:82:
1b:d7:09:46:61:dd:90:be:a6:d5:ae:5f:f6:df:4f:43:81:10:
b4:86:be:93:d9:61:29:63:fe:6b:f7:6e:70:52:03:f6:e7:04:
c6:9b:48:f0:25:a6:36:41:d5:d7:b9:78:eb:74:db:1c:c0:b5:
3f:ee:52:d5:1e:cd:6c:a2:e6:62:0d:bd:cb:f5:a6:c6:a7:8e:
4e:3c:19:a5:e2:93:f1:87:b9:6f:4a:23:72:17:fe:d3:6d:44:
12:c7:64:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:10 2024 by rpki-client on console-fra.rpki-client.org