Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3233352e32312e302f32342d3234203d3e2030.roa
File: 3130332e3233352e32312e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: UG71FgOn86Z6wUqjvWbUT4e3rzMl1De4VZRvWL65k24=
Subject key identifier: CD:41:DA:AB:36:55:92:48:13:65:51:55:09:BD:30:9B:95:22:94:04
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 082F918E28B13040D570AAE1DB1CBE8385359BBF
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3233352e32312e302f32342d3234203d3e2030.roa
Signing time: Mon 31 Jan 2022 04:10:47 +0000
ROA not before: Mon 31 Jan 2022 04:05:47 +0000
ROA not after: Tue 31 Jan 2023 04:10:47 +0000
asID: 0
IP address blocks: 103.235.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:2f:91:8e:28:b1:30:40:d5:70:aa:e1:db:1c:be:83:85:35:9b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jan 31 04:05:47 2022 GMT
Not After : Jan 31 04:10:47 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:83:06:68:28:a2:93:57:2a:a9:94:09:d9:fa:
5e:48:b8:5d:1d:8e:32:8d:0c:6a:0d:0b:98:41:79:
77:af:1f:5a:16:d2:c3:68:f2:ea:aa:d0:40:5c:93:
fc:4a:9f:dd:27:16:77:e7:0d:c9:7d:54:55:92:ad:
0c:4a:8b:86:4f:03:03:98:52:86:5e:54:78:b4:a3:
20:87:1a:56:d1:72:45:52:24:b0:64:79:24:47:6f:
07:7b:1d:06:b1:3f:e0:72:c1:df:fc:0e:27:d9:35:
0c:ce:83:9a:e4:2e:9f:d1:10:25:d9:69:70:f3:a9:
a1:01:13:6b:46:14:cb:21:0b:4b:69:6f:33:11:ba:
74:c4:8c:0f:8a:d6:6f:3a:3d:d0:c8:bd:83:50:ef:
62:93:9f:3c:cc:86:6a:ab:52:57:73:ca:f1:56:9c:
eb:97:d0:44:46:4b:5c:c8:62:2b:22:b4:38:ee:bc:
00:a9:84:da:d1:e5:c4:3e:49:dd:4e:2b:a6:e7:e2:
8d:d5:1d:44:2e:ed:b6:fa:b9:37:26:2a:2f:18:83:
3f:79:a0:47:49:2d:ae:ff:5c:54:34:24:07:37:2d:
0f:44:88:69:86:17:2b:75:0c:87:ee:a9:e2:ef:05:
29:6b:45:61:83:7a:fc:9e:89:4a:e6:e5:26:da:db:
4a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:41:DA:AB:36:55:92:48:13:65:51:55:09:BD:30:9B:95:22:94:04
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3233352e32312e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.235.21.0/24
Signature Algorithm: sha256WithRSAEncryption
23:95:75:e2:7d:1f:ec:c8:95:cc:fb:26:c4:5a:22:a4:86:66:
ac:44:dd:df:57:1a:cd:39:cd:ba:18:ad:b3:19:a6:65:69:eb:
54:a3:4b:1e:64:63:3a:f9:9d:07:fc:8c:d3:e9:51:05:3d:6f:
21:8e:45:e3:bf:e3:5d:fc:6c:3f:72:cd:aa:3e:0c:97:e3:92:
be:e7:00:50:9c:9c:9d:cd:6a:a9:1b:02:a0:cc:17:c5:13:e7:
17:9d:60:4b:9e:f7:60:e9:2d:ed:b0:9f:ca:a1:01:b0:4f:9f:
5d:b3:75:56:e6:3a:e2:dd:0f:a9:df:c3:b1:65:88:9f:81:d5:
b6:50:84:58:c6:a7:45:c9:1a:65:4f:6f:77:10:42:89:60:cc:
7f:78:e9:63:f4:e8:58:95:1e:80:80:32:3d:71:cd:b6:c1:04:
c5:8a:85:7a:86:b0:5a:ac:d5:fd:5a:78:ff:45:a0:81:59:96:
6b:be:89:b2:aa:35:dd:39:fe:0b:4d:1d:01:3f:c2:06:15:9a:
f7:c6:04:ae:39:5d:cd:8e:4e:28:bd:ed:7a:aa:05:de:1b:53:
42:d6:48:1e:e4:11:8b:49:5c:89:5a:ca:20:b5:89:96:8a:bc:
f5:1a:af:22:5c:84:0d:55:ff:cf:fb:13:1b:18:f5:c7:ec:77:
51:cc:0e:66
-----BEGIN CERTIFICATE-----
MIIG/zCCBeegAwIBAgIUCC+RjiixMEDVcKrh2xy+g4U1m78wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIyMDEzMTA0MDU0N1oX
DTIzMDEzMTA0MTA0N1owggItMYICKTCCAiUGA1UEAxOCAhwzMDgyMDEwQTAyODIw
MTAxMDBERDgzMDY2ODI4QTI5MzU3MkFBOTk0MDlEOUZBNUU0OEI4NUQxRDhFMzI4
RDBDNkEwRDBCOTg0MTc5NzdBRjFGNUExNkQyQzM2OEYyRUFBQUQwNDA1QzkzRkM0
QTlGREQyNzE2NzdFNzBEQzk3RDU0NTU5MkFEMEM0QThCODY0RjAzMDM5ODUyODY1
RTU0NzhCNEEzMjA4NzFBNTZEMTcyNDU1MjI0QjA2NDc5MjQ0NzZGMDc3QjFEMDZC
MTNGRTA3MkMxREZGQzBFMjdEOTM1MENDRTgzOUFFNDJFOUZEMTEwMjVEOTY5NzBG
M0E5QTEwMTEzNkI0NjE0Q0IyMTBCNEI2OTZGMzMxMUJBNzRDNDhDMEY4QUQ2NkYz
QTNERDBDOEJEODM1MEVGNjI5MzlGM0NDQzg2NkFBQjUyNTc3M0NBRjE1NjlDRUI5
N0QwNDQ0NjRCNUNDODYyMkIyMkI0MzhFRUJDMDBBOTg0REFEMUU1QzQzRTQ5REQ0
RTJCQTZFN0UyOERENTFENDQyRUVEQjZGQUI5MzcyNjJBMkYxODgzM0Y3OUEwNDc0
OTJEQUVGRjVDNTQzNDI0MDczNzJEMEY0NDg4Njk4NjE3MkI3NTBDODdFRUE5RTJF
RjA1Mjk2QjQ1NjE4MzdBRkM5RTg5NEFFNkU1MjZEQURCNEEyMTAyMDMwMTAwMDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdgwZoKKKTVyqplAnZ+l5I
uF0djjKNDGoNC5hBeXevH1oW0sNo8uqq0EBck/xKn90nFnfnDcl9VFWSrQxKi4ZP
AwOYUoZeVHi0oyCHGlbRckVSJLBkeSRHbwd7HQaxP+Bywd/8DifZNQzOg5rkLp/R
ECXZaXDzqaEBE2tGFMshC0tpbzMRunTEjA+K1m86PdDIvYNQ72KTnzzMhmqrUldz
yvFWnOuX0ERGS1zIYisitDjuvACphNrR5cQ+Sd1OK6bn4o3VHUQu7bb6uTcmKi8Y
gz95oEdJLa7/XFQ0JAc3LQ9EiGmGFyt1DIfuqeLvBSlrRWGDevyeiUrm5Sba20oh
AgMBAAGjggH2MIIB8jAdBgNVHQ4EFgQUzUHaqzZVkkgTZVFVCb0wm5UilAQwHwYD
VR0jBBgwFoAUuo930h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgeAMGkG
A1UdHwRiMGAwXqBcoFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgz
Mzc2Qi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdD
NzJGRDFGRjIvdW85MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjB6BggrBgEF
BQcBCwRuMGwwagYIKwYBBQUHMAuGXnJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5l
dC9yZXBvL0lETklDLUlELzIvMzEzMDMzMmUzMjMzMzUyZTMyMzEyZTMwMmYzMjM0
MmQzMjM0MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfrFTANBgkqhkiG9w0BAQsFAAOC
AQEAI5V14n0f7MiVzPsmxFoipIZmrETd31cazTnNuhitsxmmZWnrVKNLHmRjOvmd
B/yM0+lRBT1vIY5F47/jXfxsP3LNqj4Ml+OSvucAUJycnc1qqRsCoMwXxRPnF51g
S573YOkt7bCfyqEBsE+fXbN1VuY64t0Pqd/DsWWIn4HVtlCEWManRckaZU9vdxBC
iWDMf3jpY/ToWJUegIAyPXHNtsEExYqFeoawWqzV/Vp4/0WggVmWa76Jsqo13Tn+
C00dAT/CBhWa98YErjldzY5OKL3teqoF3htTQtZIHuQRi0lciVrKILWJloq89Rqv
IlyEDVX/z/sTGxj1x+x3UcwOZg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:11 2024 by rpki-client on console-fra.rpki-client.org