Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3137312e3234302e302f32332d3234203d3e20313432333930.roa
File: 3130332e3137312e3234302e302f32332d3234203d3e20313432333930.roa (raw, json)
Hash identifier: QCWLLuZZ1AioSZJXK2OtWd+ocu8GOF5D1GaYp+a7zJI=
Subject key identifier: 9E:FF:A8:59:70:69:40:4E:19:85:5A:4C:5C:9B:F3:AE:F5:AA:49:B7
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 071D5DA39E251CECDF8B9910C8FAA418E5F57BB1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3137312e3234302e302f32332d3234203d3e20313432333930.roa
Signing time: Mon 20 Dec 2021 06:43:50 +0000
ROA not before: Mon 20 Dec 2021 06:38:50 +0000
ROA not after: Tue 20 Dec 2022 06:43:50 +0000
asID: 142390
IP address blocks: 103.171.240.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:1d:5d:a3:9e:25:1c:ec:df:8b:99:10:c8:fa:a4:18:e5:f5:7b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Dec 20 06:38:50 2021 GMT
Not After : Dec 20 06:43:50 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f5:64:21:d8:13:ea:6d:6e:4a:cf:41:e7:8b:
42:8f:ca:50:8d:e0:1f:35:95:16:ee:3b:57:6f:65:
b5:55:46:01:97:09:04:0b:08:17:20:8f:d7:ba:af:
db:98:99:d4:96:bf:0b:0a:b1:1e:c9:16:16:0f:9f:
68:7b:64:ac:e5:5a:5c:b0:e8:02:4e:a3:f6:ac:1d:
2f:a6:f1:0c:7c:80:42:7b:40:df:39:d6:03:ca:d6:
7d:87:e1:9c:7e:8c:79:f4:65:6b:6d:a2:bb:e5:67:
5f:df:c9:47:ac:2b:bc:06:2d:69:91:62:a6:b1:45:
32:2f:9e:c4:f1:3f:9f:a8:d2:c1:df:a0:fa:47:7f:
63:49:98:88:46:63:be:ea:98:69:29:60:33:dd:28:
67:f5:8c:6b:69:ba:a0:23:fb:1f:1c:b9:7e:a1:a8:
0b:97:29:ae:76:5f:98:6b:23:2f:0c:a8:77:fe:be:
7f:09:00:73:53:0f:f0:d6:52:b6:07:99:1a:f2:7f:
ce:5f:71:db:1c:af:22:86:c5:ca:b9:a5:79:2c:90:
e7:1f:b6:b8:ca:5b:24:bd:a0:93:b2:8d:98:09:e3:
8b:4a:41:46:84:26:7f:db:7b:5c:28:13:1b:40:71:
55:d9:8d:21:bb:63:c8:7d:63:79:47:06:56:9a:12:
19:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:FF:A8:59:70:69:40:4E:19:85:5A:4C:5C:9B:F3:AE:F5:AA:49:B7
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3137312e3234302e302f32332d3234203d3e20313432333930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.171.240.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:2b:bc:5e:6a:ed:d9:1f:3c:e6:1c:15:ec:a1:e6:67:6c:5d:
05:84:ed:b6:59:91:81:c3:fd:ce:3e:69:78:4e:3a:24:45:bb:
d4:a2:d9:ac:e6:99:6e:7a:1c:32:e7:d8:ad:ff:99:b0:ab:30:
44:1a:d7:c6:62:7e:5f:a0:19:70:e3:81:8c:e0:2e:99:d0:f7:
17:78:5b:b9:1c:ac:31:cc:94:9c:78:8b:86:2e:bc:f2:55:83:
41:df:18:e0:b1:ba:d4:55:67:1d:17:f9:4a:ba:c0:98:2f:cf:
f4:bc:af:64:23:d7:43:1b:22:71:f5:93:9c:2f:30:45:aa:0a:
5d:eb:dd:34:8c:ec:81:0b:ea:21:b6:2f:66:38:4d:7e:c1:4f:
00:68:dd:ad:bf:a9:b2:78:1d:88:bb:3d:fa:ae:87:9f:20:b0:
ca:6b:8a:2f:df:49:1b:91:f4:09:c8:ab:f6:59:d3:d2:b6:c7:
57:c9:c5:05:d1:24:2b:9d:7f:20:83:15:85:83:57:b2:7a:0e:
a2:ac:43:19:13:1a:22:d5:ff:d1:25:40:78:c9:92:db:3d:b5:
ff:81:5f:20:90:79:af:ab:5d:cd:85:8e:3f:88:93:e3:4b:0a:
cd:7e:e6:c3:06:43:2b:2b:38:03:33:a9:92:4e:56:c2:e1:f1:
47:87:2a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:11 2024 by rpki-client on console-fra.rpki-client.org