Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135372e3134362e302f32342d3234203d3e20313431313230.roa
File: 3130332e3135372e3134362e302f32342d3234203d3e20313431313230.roa (raw, json)
Hash identifier: EbyhTi0/VUZuCG+EFoD1ThzOttpPvgRK5QiEpXWihLc=
Subject key identifier: CA:33:16:3B:88:21:E8:C6:32:7F:09:E8:8C:13:DD:21:0B:4D:02:E2
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 36938DD230D6FFEE3216BD9180E2925AC52B7087
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135372e3134362e302f32342d3234203d3e20313431313230.roa
Signing time: Sat 23 Oct 2021 04:00:03 +0000
ROA not before: Sat 23 Oct 2021 03:55:03 +0000
ROA not after: Sun 23 Oct 2022 04:00:03 +0000
asID: 141120
IP address blocks: 103.157.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:93:8d:d2:30:d6:ff:ee:32:16:bd:91:80:e2:92:5a:c5:2b:70:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Oct 23 03:55:03 2021 GMT
Not After : Oct 23 04:00:03 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:61:16:b8:7d:87:d3:82:75:88:01:b7:d9:5c:
03:5e:87:46:ad:8d:56:37:58:8a:6c:64:39:e5:5e:
9d:ed:01:fb:0c:21:4e:a2:5d:e7:f4:64:b2:3a:29:
bc:f8:3e:e2:a8:6c:12:0a:04:d9:f0:30:92:78:db:
44:4d:9b:7a:87:06:cd:ae:9f:62:71:f2:95:14:8b:
bb:43:fd:35:9a:fb:13:eb:03:c2:35:b5:4a:c7:40:
bc:bc:51:a8:08:69:4e:81:4c:79:ac:fc:72:0f:2f:
10:b7:0a:83:13:12:3b:bd:84:c2:57:6d:85:54:b3:
ac:32:81:5a:77:c7:5c:4b:f1:a4:1c:f5:5c:4a:58:
88:1e:c3:95:8b:a6:d2:1c:ef:5b:11:50:61:99:83:
ba:61:2a:ae:8b:be:fd:08:fe:14:65:48:b3:de:9e:
c2:b1:57:42:d4:b0:bd:08:b8:19:f0:04:26:06:3e:
e1:e7:31:6c:2c:b4:f4:16:66:8e:6c:0d:b6:d9:a0:
c6:d6:01:9a:e4:44:e7:6a:85:59:38:13:90:b6:02:
4a:34:b6:83:74:64:ce:a2:9c:4e:80:f8:f7:db:6d:
93:1a:56:10:b2:d2:61:1d:11:98:b3:58:ea:b3:d7:
d9:b2:18:1e:83:69:8c:b0:6c:cd:0f:ab:fd:35:66:
35:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:33:16:3B:88:21:E8:C6:32:7F:09:E8:8C:13:DD:21:0B:4D:02:E2
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135372e3134362e302f32342d3234203d3e20313431313230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.157.146.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d1:a0:1a:c4:15:14:e1:57:f6:d4:5a:df:ff:71:5a:0e:5f:
31:bb:65:f4:a9:7a:82:ca:b9:8c:0b:6b:55:f1:2c:f0:0e:ea:
c3:6d:11:c9:c3:74:66:5e:92:11:85:54:1b:44:c2:32:33:29:
6c:6f:6c:92:66:71:6f:18:49:63:f9:d5:f6:00:1e:25:61:fc:
80:f8:7d:14:85:16:07:d2:ce:a2:31:a1:bd:e4:e9:bc:75:f4:
33:43:5a:78:4d:7d:be:cd:b2:36:59:a4:7b:34:6d:71:46:11:
a6:e0:78:b1:ae:d9:4f:3b:15:0c:33:2b:cc:c5:b6:08:6e:98:
03:22:08:04:32:58:c3:99:d7:88:a7:04:f5:43:89:d0:8f:75:
62:59:12:ec:61:ea:b0:4b:d6:7a:b9:ba:3c:81:09:25:c5:35:
6d:a9:3c:cb:42:c6:c2:fe:0a:b5:56:c7:9c:5b:5d:b9:12:26:
d4:25:72:01:21:e3:e8:ae:d4:92:30:38:bb:67:f9:23:89:f7:
f7:dd:e4:c3:8d:0c:54:05:8d:43:95:61:d0:e3:75:77:9c:b7:
99:c9:4a:2d:5a:ab:67:53:0a:a1:14:b8:50:aa:2d:77:a8:0b:
61:89:b6:8f:92:02:f1:59:0c:7e:65:cf:64:20:c5:11:8a:a9:
8b:1d:3c:5d
-----BEGIN CERTIFICATE-----
MIIHDDCCBfSgAwIBAgIUNpON0jDW/+4yFr2RgOKSWsUrcIcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMTAyMzAzNTUwM1oX
DTIyMTAyMzA0MDAwM1owggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBCOTYxMTZCODdEODdEMzgyNzU4ODAxQjdEOTVDMDM1RTg3NDZBRDhENTYz
NzU4OEE2QzY0MzlFNTVFOURFRDAxRkIwQzIxNEVBMjVERTdGNDY0QjIzQTI5QkNG
ODNFRTJBODZDMTIwQTA0RDlGMDMwOTI3OERCNDQ0RDlCN0E4NzA2Q0RBRTlGNjI3
MUYyOTUxNDhCQkI0M0ZEMzU5QUZCMTNFQjAzQzIzNUI1NEFDNzQwQkNCQzUxQTgw
ODY5NEU4MTRDNzlBQ0ZDNzIwRjJGMTBCNzBBODMxMzEyM0JCRDg0QzI1NzZEODU1
NEIzQUMzMjgxNUE3N0M3NUM0QkYxQTQxQ0Y1NUM0QTU4ODgxRUMzOTU4QkE2RDIx
Q0VGNUIxMTUwNjE5OTgzQkE2MTJBQUU4QkJFRkQwOEZFMTQ2NTQ4QjNERTlFQzJC
MTU3NDJENEIwQkQwOEI4MTlGMDA0MjYwNjNFRTFFNzMxNkMyQ0I0RjQxNjY2OEU2
QzBEQjZEOUEwQzZENjAxOUFFNDQ0RTc2QTg1NTkzODEzOTBCNjAyNEEzNEI2ODM3
NDY0Q0VBMjlDNEU4MEY4RjdEQjZEOTMxQTU2MTBCMkQyNjExRDExOThCMzU4RUFC
M0Q3RDlCMjE4MUU4MzY5OENCMDZDQ0QwRkFCRkQzNTY2MzUzNzAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5YRa4fYfTgnWIAbfZXANe
h0atjVY3WIpsZDnlXp3tAfsMIU6iXef0ZLI6Kbz4PuKobBIKBNnwMJJ420RNm3qH
Bs2un2Jx8pUUi7tD/TWa+xPrA8I1tUrHQLy8UagIaU6BTHms/HIPLxC3CoMTEju9
hMJXbYVUs6wygVp3x1xL8aQc9VxKWIgew5WLptIc71sRUGGZg7phKq6Lvv0I/hRl
SLPensKxV0LUsL0IuBnwBCYGPuHnMWwstPQWZo5sDbbZoMbWAZrkROdqhVk4E5C2
Ako0toN0ZM6inE6A+PfbbZMaVhCy0mEdEZizWOqz19myGB6DaYywbM0Pq/01ZjU3
AgMBAAGjggIDMIIB/zAdBgNVHQ4EFgQUyjMWO4gh6MYyfwnojBPdIQtNAuIwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBhgYIKwYB
BQUHAQsEejB4MHYGCCsGAQUFBzALhmpyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMxMzAzMzJlMzEzNTM3MmUzMTM0MzYyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnZIwDQYJ
KoZIhvcNAQELBQADggEBACrRoBrEFRThV/bUWt//cVoOXzG7ZfSpeoLKuYwLa1Xx
LPAO6sNtEcnDdGZekhGFVBtEwjIzKWxvbJJmcW8YSWP51fYAHiVh/ID4fRSFFgfS
zqIxob3k6bx19DNDWnhNfb7NsjZZpHs0bXFGEabgeLGu2U87FQwzK8zFtghumAMi
CAQyWMOZ14inBPVDidCPdWJZEuxh6rBL1nq5ujyBCSXFNW2pPMtCxsL+CrVWx5xb
XbkSJtQlcgEh4+iu1JIwOLtn+SOJ9/fd5MONDFQFjUOVYdDjdXect5nJSi1aq2dT
CqEUuFCqLXeoC2GJto+SAvFZDH5lz2QgxRGKqYsdPF0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:10 2024 by rpki-client on console-fra.rpki-client.org