Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3137302e3130342e302f32332d3234203d3e20313332363334.roa
File: 3130332e3137302e3130342e302f32332d3234203d3e20313332363334.roa (raw, json)
Hash identifier: nm1Hk/Z+XRgRem4C3j8vawQ8+tWJdw1uiuPu3W2ZfLo=
Subject key identifier: 63:F2:46:CF:46:58:4E:C8:20:99:52:A1:D4:BA:85:EF:16:6A:D2:FE
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 32E376F6F099B4B9AF5C29508BDDAC643397D090
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3137302e3130342e302f32332d3234203d3e20313332363334.roa
Signing time: Tue 27 Jul 2021 09:44:59 +0000
ROA not before: Tue 27 Jul 2021 09:39:59 +0000
ROA not after: Wed 27 Jul 2022 09:44:59 +0000
asID: 132634
IP address blocks: 103.170.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:e3:76:f6:f0:99:b4:b9:af:5c:29:50:8b:dd:ac:64:33:97:d0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jul 27 09:39:59 2021 GMT
Not After : Jul 27 09:44:59 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:7f:9b:41:6d:5c:ba:ac:d4:a1:7e:04:12:
dd:b2:35:53:34:a3:ea:46:36:2b:73:28:25:73:4d:
41:ad:16:84:26:da:6d:b6:b6:fc:d4:aa:30:f3:20:
99:50:c0:f9:a8:80:35:99:49:4c:14:a6:01:d8:7f:
ff:96:fe:97:86:e2:0a:b6:6e:11:df:88:51:8c:1d:
ca:82:6f:9e:19:18:f6:cf:7c:4d:4f:e3:e0:6b:5e:
bf:9d:5b:91:1e:3b:6b:84:0e:04:b8:a6:a1:e5:2e:
97:3a:75:6d:6e:08:45:39:16:93:95:3e:6b:7f:e4:
1c:da:28:8f:40:b9:b6:fe:22:56:f7:bf:e5:3c:12:
ef:c4:11:6e:9e:82:cf:b1:bd:ce:e8:4c:2f:f0:18:
40:a2:3d:4e:18:81:f8:f1:0f:5e:94:8f:0b:73:f0:
b3:fe:5f:a7:64:a0:f1:a8:c3:a4:dd:61:fd:31:04:
46:68:5d:1f:27:9a:48:59:81:bb:93:77:dd:9b:14:
27:0c:a9:72:29:12:30:d6:72:85:bf:da:90:cb:a3:
72:7b:16:25:03:3d:33:71:16:98:fa:27:4e:8f:4c:
dc:46:3f:03:ac:ce:6e:98:5c:3d:a5:e8:00:60:46:
6c:7a:80:f3:92:c6:b9:13:8a:51:f4:28:67:09:65:
43:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F2:46:CF:46:58:4E:C8:20:99:52:A1:D4:BA:85:EF:16:6A:D2:FE
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3137302e3130342e302f32332d3234203d3e20313332363334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.104.0/23
Signature Algorithm: sha256WithRSAEncryption
11:e0:1f:32:a4:2c:ef:7e:04:d0:27:b9:cb:79:f1:bc:96:d7:
ec:3d:18:3b:6a:a0:8c:a3:48:b4:e5:ef:e4:20:90:e0:09:c1:
9c:ec:b0:f8:ce:dc:30:6b:91:5e:7b:fb:01:06:e9:71:69:d3:
29:65:cf:3e:b5:71:2d:80:f8:5c:62:db:b5:d3:d5:f9:d1:5d:
62:85:8e:0d:e5:d6:4a:84:3a:16:90:b4:d8:e3:5a:ec:81:d7:
7e:ae:01:13:df:51:ed:96:9a:02:63:f0:95:f4:2e:3b:72:c1:
4b:cf:bb:59:a7:72:8f:4f:6a:82:25:74:46:c5:24:ea:ed:8f:
cd:23:f9:fc:3a:79:48:3e:25:a8:6b:3e:b3:02:09:5e:f1:14:
b4:8a:e4:8e:52:a9:97:b8:f3:d9:cb:a4:71:fe:e6:83:32:4e:
b1:c8:2f:a3:a7:8a:8a:c5:f9:59:74:8b:9f:6c:ca:96:56:a8:
e4:36:0e:d5:28:fe:be:30:0c:45:64:0f:a7:ad:17:8a:ec:10:
a1:7a:ad:6b:b5:e8:6a:82:1c:3c:7d:a3:ec:ee:93:bc:f2:41:
70:79:38:82:07:8b:92:12:7f:71:a5:4d:5f:58:d7:f7:44:11:
ef:20:b7:c4:40:4a:f6:85:3a:15:bb:48:ca:da:50:af:b7:9c:
bf:11:db:94
-----BEGIN CERTIFICATE-----
MIIHDDCCBfSgAwIBAgIUMuN29vCZtLmvXClQi92sZDOX0JAwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIxMDcyNzA5Mzk1OVoX
DTIyMDcyNzA5NDQ1OVowggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBCNDgxN0Y5QjQxNkQ1Q0JBQUNENEExN0UwNDEyRERCMjM1NTMzNEEzRUE0
NjM2MkI3MzI4MjU3MzRENDFBRDE2ODQyNkRBNkRCNkI2RkNENEFBMzBGMzIwOTk1
MEMwRjlBODgwMzU5OTQ5NEMxNEE2MDFEODdGRkY5NkZFOTc4NkUyMEFCNjZFMTFE
Rjg4NTE4QzFEQ0E4MjZGOUUxOTE4RjZDRjdDNEQ0RkUzRTA2QjVFQkY5RDVCOTEx
RTNCNkI4NDBFMDRCOEE2QTFFNTJFOTczQTc1NkQ2RTA4NDUzOTE2OTM5NTNFNkI3
RkU0MUNEQTI4OEY0MEI5QjZGRTIyNTZGN0JGRTUzQzEyRUZDNDExNkU5RTgyQ0ZC
MUJEQ0VFODRDMkZGMDE4NDBBMjNENEUxODgxRjhGMTBGNUU5NDhGMEI3M0YwQjNG
RTVGQTc2NEEwRjFBOEMzQTRERDYxRkQzMTA0NDY2ODVEMUYyNzlBNDg1OTgxQkI5
Mzc3REQ5QjE0MjcwQ0E5NzIyOTEyMzBENjcyODVCRkRBOTBDQkEzNzI3QjE2MjUw
MzNEMzM3MTE2OThGQTI3NEU4RjRDREM0NjNGMDNBQ0NFNkU5ODVDM0RBNUU4MDA2
MDQ2NkM3QTgwRjM5MkM2QjkxMzhBNTFGNDI4NjcwOTY1NDM3NTAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0gX+bQW1cuqzUoX4EEt2y
NVM0o+pGNitzKCVzTUGtFoQm2m22tvzUqjDzIJlQwPmogDWZSUwUpgHYf/+W/peG
4gq2bhHfiFGMHcqCb54ZGPbPfE1P4+BrXr+dW5EeO2uEDgS4pqHlLpc6dW1uCEU5
FpOVPmt/5BzaKI9Aubb+Ilb3v+U8Eu/EEW6egs+xvc7oTC/wGECiPU4YgfjxD16U
jwtz8LP+X6dkoPGow6TdYf0xBEZoXR8nmkhZgbuTd92bFCcMqXIpEjDWcoW/2pDL
o3J7FiUDPTNxFpj6J06PTNxGPwOszm6YXD2l6ABgRmx6gPOSxrkTilH0KGcJZUN1
AgMBAAGjggIDMIIB/zAdBgNVHQ4EFgQUY/JGz0ZYTsggmVKh1LqF7xZq0v4wHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCBhgYIKwYB
BQUHAQsEejB4MHYGCCsGAQUFBzALhmpyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby9JRE5JQy1JRC8yLzMxMzAzMzJlMzEzNzMwMmUzMTMwMzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzQucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqmgwDQYJ
KoZIhvcNAQELBQADggEBABHgHzKkLO9+BNAnuct58byW1+w9GDtqoIyjSLTl7+Qg
kOAJwZzssPjO3DBrkV57+wEG6XFp0yllzz61cS2A+Fxi27XT1fnRXWKFjg3l1kqE
OhaQtNjjWuyB136uARPfUe2WmgJj8JX0LjtywUvPu1mnco9PaoIldEbFJOrtj80j
+fw6eUg+JahrPrMCCV7xFLSK5I5SqZe489nLpHH+5oMyTrHIL6OniorF+Vl0i59s
ypZWqOQ2DtUo/r4wDEVkD6etF4rsEKF6rWu16GqCHDx9o+zuk7zyQXB5OIIHi5IS
f3GlTV9Y1/dEEe8gt8RASvaFOhW7SMraUK+3nL8R25Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:46 2024 by rpki-client on console-ams.rpki-client.org