Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa
File: 3130332e3234372e32332e302f32342d3234203d3e203538343835.roa (raw, json)
Hash identifier: htSFx4p6iY7Q5DyQszaSpShPaJG+H+UCx5WanbF7p4Q=
Subject key identifier: 2A:09:AF:BD:FE:C1:64:89:E9:F4:7D:32:4B:29:B8:8C:0D:CE:68:C0
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0A94E9553ED4B57C91E5BCDC72A133DB8C41F1EA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa
Signing time: Thu 01 Jul 2021 04:20:23 +0000
ROA not before: Thu 01 Jul 2021 04:15:23 +0000
ROA not after: Fri 01 Jul 2022 04:20:23 +0000
asID: 58485
IP address blocks: 103.247.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:94:e9:55:3e:d4:b5:7c:91:e5:bc:dc:72:a1:33:db:8c:41:f1:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Jul 1 04:15:23 2021 GMT
Not After : Jul 1 04:20:23 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ab:77:ed:e3:9a:69:67:0e:f9:57:01:fd:3a:
ab:0c:6a:be:77:38:f9:50:74:d8:dd:66:07:1d:8d:
ac:ea:02:63:52:da:72:2f:6c:e4:66:45:e5:ba:91:
ab:d0:9c:8c:12:92:45:5a:b9:a1:37:9d:5c:02:c2:
ab:fe:c9:91:15:f3:d7:1f:93:72:4b:20:6c:fc:70:
26:ac:a6:43:89:4d:62:ee:7d:77:6c:72:65:98:f4:
83:99:8b:07:df:62:5c:8b:f1:66:cf:1b:bb:0c:1c:
ba:34:a3:00:fa:bf:56:79:df:ee:33:32:ca:f0:1c:
8e:7a:66:af:05:df:13:f9:91:fe:84:e5:13:fc:74:
32:6f:30:a5:82:52:83:1c:c7:5a:00:42:27:7b:d3:
cc:f4:28:1c:47:1e:aa:8f:94:67:a2:68:9a:04:40:
a0:c1:29:2c:5e:06:97:64:1f:41:72:f6:d2:31:1d:
2f:94:cc:ec:c3:d6:7d:ab:f9:b2:2f:3c:b3:45:a6:
24:c5:0b:6a:88:c7:cd:9b:7e:79:53:f1:99:d9:eb:
06:ae:fe:8f:64:b3:57:70:f7:74:99:00:1f:e7:74:
6d:84:85:63:65:60:9c:a1:90:10:94:8e:43:14:53:
11:4a:a7:cb:99:97:70:78:27:0b:3d:65:ee:62:72:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:09:AF:BD:FE:C1:64:89:E9:F4:7D:32:4B:29:B8:8C:0D:CE:68:C0
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.23.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:7a:44:cc:72:30:ae:80:f4:fe:47:03:93:81:18:e8:19:7c:
3c:66:49:fa:55:bb:86:97:c1:e9:b7:c3:2d:5a:9d:24:6b:fa:
d7:e7:43:5f:a7:f0:a5:38:94:0b:ef:4b:50:bb:72:a9:eb:06:
93:cf:57:ed:5d:4d:cf:c5:61:58:fd:c3:77:7b:d5:94:54:34:
d5:85:1a:c6:de:ef:e2:8b:8b:6a:5d:4a:3c:65:7e:8e:ce:77:
82:50:cf:06:e5:d7:43:cd:fb:d0:dc:4b:4d:7a:88:e8:0e:4d:
d8:ad:b0:ba:ea:96:59:bb:1e:3a:ba:6d:cc:87:63:97:7f:1a:
77:1d:ef:61:4b:d1:5d:6f:9c:45:03:81:9a:56:40:df:8d:f8:
3d:1e:42:b6:20:ac:d5:85:99:a3:9d:ed:81:be:d9:df:aa:c2:
1a:2e:d8:db:6e:e5:48:85:2a:14:3c:99:d4:5d:3c:38:db:c6:
40:23:42:02:4e:af:46:bc:59:96:f7:6f:85:1c:ce:27:ba:03:
34:71:ec:50:c4:12:92:b1:88:40:b8:91:68:79:e4:7f:ec:35:
1b:53:67:a0:a1:86:3a:59:59:e7:b8:84:4d:47:59:aa:e1:74:
f8:4c:f6:93:53:c7:bc:bd:d8:c2:fe:89:fb:81:a9:6e:10:f4:
d3:f1:e9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-ams.rpki-client.org