Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3136312e3134302e302f32342d3234203d3e20313333383233.roa
File:                     3130332e3136312e3134302e302f32342d3234203d3e20313333383233.roa (raw, json)
Hash identifier:          YZVQ6yLLPxqRUWwMNASdzmSUrKk1kS2rb6pR87H69vQ=
Subject key identifier:   96:50:1E:A3:53:93:86:16:E5:37:FF:EF:A2:22:FC:EF:38:DC:82:F4
Certificate issuer:       /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial:       645E23CE16610F1C828F822E67907232BA9C1737
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3136312e3134302e302f32342d3234203d3e20313333383233.roa
Signing time:             Sat 29 Jan 2022 08:00:01 +0000
ROA not before:           Sat 29 Jan 2022 07:55:01 +0000
ROA not after:            Sun 29 Jan 2023 08:00:01 +0000
asID:                     133823
IP address blocks:        103.161.140.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:5e:23:ce:16:61:0f:1c:82:8f:82:2e:67:90:72:32:ba:9c:17:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
        Validity
            Not Before: Jan 29 07:55:01 2022 GMT
            Not After : Jan 29 08:00:01 2023 GMT
        Subject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
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:e3:bb:09:32:87:fa:63:2d:a7:da:38:1a:2b:
                    65:b6:86:57:76:f6:df:85:66:cd:80:cc:08:10:75:
                    be:ae:b2:2b:52:97:5f:f7:d4:b2:4e:00:c5:fd:e5:
                    73:96:e1:1f:71:e9:32:34:2f:05:02:89:70:c4:fe:
                    bf:c1:90:ae:4a:c6:5d:7f:40:67:00:04:23:be:95:
                    cc:b6:c7:af:37:ff:cc:4f:c4:7d:8b:9b:3f:3f:49:
                    f6:a1:56:dc:cd:6b:b4:76:60:78:40:21:a0:cb:0f:
                    95:3c:01:a2:83:e0:a8:3c:b7:a3:f5:84:e1:22:23:
                    5a:43:0d:5c:1c:d3:d7:23:28:23:70:87:b6:c2:02:
                    a2:1d:60:4e:6a:19:66:88:02:0b:7e:a4:89:7c:2d:
                    5b:d0:da:d8:19:15:3d:8b:31:57:16:6a:80:de:b0:
                    f7:1a:9f:b4:09:bc:58:55:82:d7:d6:7a:38:be:1d:
                    77:db:a3:07:c4:26:42:44:cf:7c:cb:0e:c6:0e:3f:
                    5d:8f:ec:c9:de:08:9a:97:f5:23:10:31:91:0f:ae:
                    bb:bc:9e:f4:0e:0b:dd:b3:83:d3:71:f8:1a:bd:0f:
                    f3:f3:b0:c0:7b:06:d2:91:cd:fc:70:16:86:d2:18:
                    95:91:87:85:15:4b:7f:c9:c6:e6:d1:87:86:5f:da:
                    38:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:50:1E:A3:53:93:86:16:E5:37:FF:EF:A2:22:FC:EF:38:DC:82:F4
            X509v3 Authority Key Identifier:
                keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3136312e3134302e302f32342d3234203d3e20313333383233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.161.140.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5a:cc:c1:cc:32:f8:60:6d:1f:61:b6:b5:db:f5:32:12:ad:3b:
         ad:cd:5b:3a:c9:05:e8:36:de:5a:43:c3:0c:83:78:34:2d:b7:
         37:12:10:bd:74:91:98:cd:e1:4d:c4:1c:89:6a:86:3e:cb:94:
         ce:2b:95:b3:a7:5d:53:49:58:93:55:dc:6a:2b:93:3b:4d:ac:
         64:c8:d7:7e:b6:33:6d:8a:c9:b9:1a:19:ae:f5:89:48:d8:ab:
         f0:5b:15:c6:46:8e:17:b0:36:92:0c:35:88:03:dc:9e:64:86:
         82:f1:40:0f:fd:24:9c:8a:c0:7a:a5:c2:7b:86:ea:64:ce:9a:
         5d:e5:6f:d8:49:8a:62:2b:56:72:9e:4c:ca:47:7b:ca:07:3f:
         85:dd:fd:a3:c9:f0:1a:7e:23:f7:c2:30:0a:20:2d:2d:12:58:
         39:64:f6:ae:7d:66:0a:a1:ef:5c:3e:c2:a0:c0:40:fe:3a:0c:
         2b:df:1e:78:c4:ca:96:e1:9f:07:7d:c6:c4:9d:a8:54:96:a8:
         fe:03:91:0e:5b:f6:71:8b:7e:47:93:c3:b6:04:7e:c1:29:d0:
         f9:86:f8:2e:92:ae:d4:80:3d:27:3a:63:17:54:39:67:0b:00:
         72:2b:e5:df:c6:4f:ce:73:10:0e:94:78:21:52:e2:ed:f6:36:
         b7:81:e4:24
-----BEGIN CERTIFICATE-----
MIIHDDCCBfSgAwIBAgIUZF4jzhZhDxyCj4IuZ5ByMrqcFzcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIyMDEyOTA3NTUwMVoX
DTIzMDEyOTA4MDAwMVowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBBREUzQkIwOTMyODdGQTYzMkRBN0RBMzgxQTJCNjVCNjg2NTc3NkY2REY4
NTY2Q0Q4MENDMDgxMDc1QkVBRUIyMkI1Mjk3NUZGN0Q0QjI0RTAwQzVGREU1NzM5
NkUxMUY3MUU5MzIzNDJGMDUwMjg5NzBDNEZFQkZDMTkwQUU0QUM2NUQ3RjQwNjcw
MDA0MjNCRTk1Q0NCNkM3QUYzN0ZGQ0M0RkM0N0Q4QjlCM0YzRjQ5RjZBMTU2REND
RDZCQjQ3NjYwNzg0MDIxQTBDQjBGOTUzQzAxQTI4M0UwQTgzQ0I3QTNGNTg0RTEy
MjIzNUE0MzBENUMxQ0QzRDcyMzI4MjM3MDg3QjZDMjAyQTIxRDYwNEU2QTE5NjY4
ODAyMEI3RUE0ODk3QzJENUJEMERBRDgxOTE1M0Q4QjMxNTcxNjZBODBERUIwRjcx
QTlGQjQwOUJDNTg1NTgyRDdENjdBMzhCRTFENzdEQkEzMDdDNDI2NDI0NENGN0ND
QjBFQzYwRTNGNUQ4RkVDQzlERTA4OUE5N0Y1MjMxMDMxOTEwRkFFQkJCQzlFRjQw
RTBCRERCMzgzRDM3MUY4MUFCRDBGRjNGM0IwQzA3QjA2RDI5MUNERkM3MDE2ODZE
MjE4OTU5MTg3ODUxNTRCN0ZDOUM2RTZEMTg3ODY1RkRBMzg0NzAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt47sJMof6Yy2n2jgaK2W2
hld29t+FZs2AzAgQdb6usitSl1/31LJOAMX95XOW4R9x6TI0LwUCiXDE/r/BkK5K
xl1/QGcABCO+lcy2x683/8xPxH2Lmz8/SfahVtzNa7R2YHhAIaDLD5U8AaKD4Kg8
t6P1hOEiI1pDDVwc09cjKCNwh7bCAqIdYE5qGWaIAgt+pIl8LVvQ2tgZFT2LMVcW
aoDesPcan7QJvFhVgtfWeji+HXfbowfEJkJEz3zLDsYOP12P7MneCJqX9SMQMZEP
rru8nvQOC92zg9Nx+Bq9D/PzsMB7BtKRzfxwFobSGJWRh4UVS3/JxubRh4Zf2jhH
AgMBAAGjggIDMIIB/zAdBgNVHQ4EFgQUllAeo1OThhblN//voiL87zjcgvQwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBhgYIKwYB
BQUHAQsEejB4MHYGCCsGAQUFBzALhmpyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMxMzAzMzJlMzEzNjMxMmUzMTM0MzAyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYwwDQYJ
KoZIhvcNAQELBQADggEBAFrMwcwy+GBtH2G2tdv1MhKtO63NWzrJBeg23lpDwwyD
eDQttzcSEL10kZjN4U3EHIlqhj7LlM4rlbOnXVNJWJNV3GorkztNrGTI1362M22K
ybkaGa71iUjYq/BbFcZGjhewNpIMNYgD3J5khoLxQA/9JJyKwHqlwnuG6mTOml3l
b9hJimIrVnKeTMpHe8oHP4Xd/aPJ8Bp+I/fCMAogLS0SWDlk9q59Zgqh71w+wqDA
QP46DCvfHnjEypbhnwd9xsSdqFSWqP4DkQ5b9nGLfkeTw7YEfsEp0PmG+C6SrtSA
PSc6YxdUOWcLAHIr5d/GT85zEA6UeCFS4u32NreB5CQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:45 2024 by rpki-client on console-ams.rpki-client.org