Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa
File: 3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa (raw, json)
Hash identifier: bejvjeHxM9vQNpizs/18rbWXaINfCpU44+ADCBgxnRo=
Subject key identifier: 9C:D7:A3:13:54:E6:4D:93:B5:E2:9F:0D:A3:D0:CA:B8:C3:AC:30:5D
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 659D022885D6C8BAA2F58947D8877EAAF63AD51B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa
Signing time: Fri 04 Mar 2022 05:00:00 +0000
ROA not before: Fri 04 Mar 2022 04:55:00 +0000
ROA not after: Sat 04 Mar 2023 05:00:00 +0000
asID: 141128
IP address blocks: 103.158.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:9d:02:28:85:d6:c8:ba:a2:f5:89:47:d8:87:7e:aa:f6:3a:d5:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 4 04:55:00 2022 GMT
Not After : Mar 4 05:00:00 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:82:d8:d1:58:58:a6:ac:dc:29:c8:27:7c:d7:
59:c0:43:19:90:28:e4:67:cb:1f:3b:a0:4b:e2:da:
a5:65:d7:e5:bd:4c:2b:d4:2d:0b:46:7f:1f:9f:c4:
7b:22:63:c1:4f:9b:3b:3d:dc:bc:e2:4b:dc:2c:91:
56:43:54:89:ab:21:fb:a3:dc:15:63:ee:60:ca:ce:
d3:86:e2:7e:5c:e9:ef:dd:af:a4:0f:5f:bd:2d:3f:
0f:39:05:4a:f5:3d:5e:05:36:d9:30:58:01:eb:f5:
88:97:00:9c:1e:10:28:e6:fa:0f:48:cf:dc:26:e8:
34:59:ac:d5:42:6f:e6:a2:29:79:af:0a:69:21:0d:
c2:0a:3e:09:32:8c:b9:28:a7:a3:0c:59:71:bb:f3:
73:7d:cd:77:f7:c8:6e:17:ed:9f:7f:41:45:66:3e:
e3:c4:3a:cb:23:75:1f:97:7d:d3:07:96:10:04:d9:
80:29:bc:c9:34:62:2c:c3:9a:4e:b0:fb:e9:2a:5f:
e8:6f:e5:d7:5a:78:bb:ad:70:52:20:a3:3d:9e:ed:
1c:dc:a7:c8:59:f5:dc:74:bb:91:21:13:3d:3b:f3:
db:4d:f4:f2:fb:fc:1b:62:ed:24:43:61:e9:6d:6d:
f2:08:1f:cc:c8:d5:da:3c:d2:a0:e2:14:5e:b4:c9:
ca:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D7:A3:13:54:E6:4D:93:B5:E2:9F:0D:A3:D0:CA:B8:C3:AC:30:5D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3135382e3133302e302f32342d3234203d3e20313431313238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.130.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:e8:98:1d:91:ec:58:dd:2a:48:01:ca:d3:46:d1:f6:7b:50:
61:74:e6:82:f3:53:ad:d8:4a:20:d7:a4:1e:42:42:96:52:20:
da:63:49:a0:ba:7a:b8:c8:0b:01:91:05:f4:34:5f:f8:80:05:
87:cc:43:4e:84:8d:87:98:96:16:02:c1:ac:3d:2f:a0:f5:06:
3d:97:22:5f:c4:83:7b:66:85:81:1a:ed:65:4a:a4:1f:5e:d2:
40:f3:94:d1:b0:d5:66:49:17:ee:8c:69:90:11:c6:19:d6:e8:
23:64:c0:68:cc:10:13:de:01:b0:57:3b:2b:d0:2a:6a:c7:88:
6b:8c:a1:10:6f:40:8d:0e:43:4f:ed:4a:8b:10:f0:66:67:c3:
de:f7:81:6e:cd:7e:d1:e1:e1:0a:8b:04:a8:a6:0f:51:0f:45:
7b:b4:6d:04:5e:59:98:39:37:1e:f3:0c:87:59:2f:7c:e6:a5:
30:73:a1:92:33:62:64:76:ef:1a:24:ab:fa:56:66:7c:61:00:
71:7f:d4:aa:dd:f3:ea:02:1f:97:39:5b:79:88:6a:61:5f:d0:
05:63:4f:3e:1c:bf:44:5c:be:0a:73:98:e1:61:4d:80:29:1c:
53:e9:5b:ad:6f:ac:43:c6:66:5d:96:6b:8c:d5:eb:5f:cf:70:
6b:c4:f5:92
-----BEGIN CERTIFICATE-----
MIIHDDCCBfSgAwIBAgIUZZ0CKIXWyLqi9YlH2Id+qvY61RswDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIyMDMwNDA0NTUwMFoX
DTIzMDMwNDA1MDAwMFowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBDMDgyRDhEMTU4NThBNkFDREMyOUM4Mjc3Q0Q3NTlDMDQzMTk5MDI4RTQ2
N0NCMUYzQkEwNEJFMkRBQTU2NUQ3RTVCRDRDMkJENDJEMEI0NjdGMUY5RkM0N0Iy
MjYzQzE0RjlCM0IzRERDQkNFMjRCREMyQzkxNTY0MzU0ODlBQjIxRkJBM0RDMTU2
M0VFNjBDQUNFRDM4NkUyN0U1Q0U5RUZEREFGQTQwRjVGQkQyRDNGMEYzOTA1NEFG
NTNENUUwNTM2RDkzMDU4MDFFQkY1ODg5NzAwOUMxRTEwMjhFNkZBMEY0OENGREMy
NkU4MzQ1OUFDRDU0MjZGRTZBMjI5NzlBRjBBNjkyMTBEQzIwQTNFMDkzMjhDQjky
OEE3QTMwQzU5NzFCQkYzNzM3RENENzdGN0M4NkUxN0VEOUY3RjQxNDU2NjNFRTND
NDNBQ0IyMzc1MUY5NzdERDMwNzk2MTAwNEQ5ODAyOUJDQzkzNDYyMkNDMzlBNEVC
MEZCRTkyQTVGRTg2RkU1RDc1QTc4QkJBRDcwNTIyMEEzM0Q5RUVEMUNEQ0E3Qzg1
OUY1REM3NEJCOTEyMTEzM0QzQkYzREI0REY0RjJGQkZDMUI2MkVEMjQ0MzYxRTk2
RDZERjIwODFGQ0NDOEQ1REEzQ0QyQTBFMjE0NUVCNEM5Q0FGNTAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAgtjRWFimrNwpyCd811nA
QxmQKORnyx87oEvi2qVl1+W9TCvULQtGfx+fxHsiY8FPmzs93LziS9wskVZDVImr
Ifuj3BVj7mDKztOG4n5c6e/dr6QPX70tPw85BUr1PV4FNtkwWAHr9YiXAJweECjm
+g9Iz9wm6DRZrNVCb+aiKXmvCmkhDcIKPgkyjLkop6MMWXG783N9zXf3yG4X7Z9/
QUVmPuPEOssjdR+XfdMHlhAE2YApvMk0YizDmk6w++kqX+hv5ddaeLutcFIgoz2e
7Rzcp8hZ9dx0u5EhEz0789tN9PL7/Bti7SRDYeltbfIIH8zI1do80qDiFF60ycr1
AgMBAAGjggIDMIIB/zAdBgNVHQ4EFgQUnNejE1TmTZO14p8No9DKuMOsMF0wHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBhgYIKwYB
BQUHAQsEejB4MHYGCCsGAQUFBzALhmpyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMxMzAzMzJlMzEzNTM4MmUzMTMzMzAyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnoIwDQYJ
KoZIhvcNAQELBQADggEBACromB2R7FjdKkgBytNG0fZ7UGF05oLzU63YSiDXpB5C
QpZSINpjSaC6erjICwGRBfQ0X/iABYfMQ06EjYeYlhYCwaw9L6D1Bj2XIl/Eg3tm
hYEa7WVKpB9e0kDzlNGw1WZJF+6MaZARxhnW6CNkwGjMEBPeAbBXOyvQKmrHiGuM
oRBvQI0OQ0/tSosQ8GZnw973gW7NftHh4QqLBKimD1EPRXu0bQReWZg5Nx7zDIdZ
L3zmpTBzoZIzYmR27xokq/pWZnxhAHF/1Krd8+oCH5c5W3mIamFf0AVjTz4cv0Rc
vgpzmOFhTYApHFPpW61vrEPGZl2Wa4zV61/PcGvE9ZI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:10 2024 by rpki-client on console-fra.rpki-client.org