Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3235322e32332e302f32342d3234203d3e203539313337.roa
File:                     3130332e3235322e32332e302f32342d3234203d3e203539313337.roa (raw, json)
Hash identifier:          ijEAxaMtdGwbHijBxsgt6dTQemKonlPTqtClbShwwJ0=
Subject key identifier:   F1:5B:A6:45:41:D5:74:97:96:0B:33:6E:2B:7A:A8:C0:C0:03:6C:C3
Certificate issuer:       /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial:       55FEA1FF8FBB15B00DD37F1EE0D4BD9438DE6F71
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3235322e32332e302f32342d3234203d3e203539313337.roa
Signing time:             Tue 12 Oct 2021 04:00:03 +0000
ROA not before:           Tue 12 Oct 2021 03:55:03 +0000
ROA not after:            Wed 12 Oct 2022 04:00:03 +0000
asID:                     59137
IP address blocks:        103.252.23.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            55:fe:a1:ff:8f:bb:15:b0:0d:d3:7f:1e:e0:d4:bd:94:38:de:6f:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
        Validity
            Not Before: Oct 12 03:55:03 2021 GMT
            Not After : Oct 12 04:00:03 2022 GMT
        Subject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
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:49:ba:cf:b4:18:cd:b1:0c:6a:0a:68:22:06:
                    3d:68:5f:d1:e8:8a:63:2b:33:db:45:1e:d2:7e:4b:
                    55:e9:e6:02:03:d3:e9:72:53:be:20:76:20:cf:ef:
                    7d:ce:2f:1e:6a:15:75:62:95:a3:0b:cb:4f:49:93:
                    f9:8c:cf:76:33:f5:71:d3:04:63:aa:e6:20:a1:a5:
                    9d:37:e6:74:b0:9b:db:bb:40:a7:f9:91:81:a3:b7:
                    64:d0:52:97:de:34:b3:5f:d9:cc:52:bb:b0:9d:66:
                    41:71:0b:28:ad:d6:ca:13:88:82:e8:b6:c2:bf:fe:
                    fc:df:66:d7:28:cd:77:2e:2d:4a:73:dc:18:50:1d:
                    8e:5d:d0:03:68:ec:c1:f2:56:40:27:8f:8f:42:b4:
                    fd:f1:65:00:f7:77:81:4a:c0:c2:2c:c3:a2:ba:fb:
                    39:83:0c:58:ac:bc:5d:38:ee:e7:4a:5f:22:4e:82:
                    84:a6:45:f7:71:b6:50:cf:3e:7c:b8:b7:e3:62:0c:
                    2a:75:fb:23:41:c6:e1:c1:be:be:a6:f0:d6:fa:15:
                    b8:a3:9c:59:fc:12:22:d3:80:06:ec:21:50:18:9d:
                    dd:17:91:c7:27:35:89:ef:01:e7:44:cd:72:6e:17:
                    08:88:79:25:96:f8:2c:17:fe:da:83:09:38:31:a7:
                    4f:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:5B:A6:45:41:D5:74:97:96:0B:33:6E:2B:7A:A8:C0:C0:03:6C:C3
            X509v3 Authority Key Identifier:
                keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3130332e3235322e32332e302f32342d3234203d3e203539313337.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.252.23.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0f:69:8f:df:69:6f:78:18:bb:2d:dd:e1:99:b1:16:cb:53:dd:
         60:af:98:65:26:ec:99:7f:9f:a2:13:d5:ed:9c:74:f1:89:c7:
         4b:5e:98:52:4c:72:c7:12:b0:05:9a:c2:4d:e1:5e:c4:df:e5:
         50:98:67:19:92:8c:1c:e8:c0:3d:72:99:63:81:29:0b:94:ed:
         0a:87:f4:f6:51:cb:ef:7e:d7:93:65:af:ee:33:4d:9c:0e:19:
         30:e5:ab:2f:f8:e1:06:57:56:53:3c:38:e9:7b:58:3d:49:c8:
         d4:28:0e:0f:8f:7c:2a:c1:58:f6:3b:a4:f7:55:0d:e1:c1:32:
         f4:d2:44:17:1a:3a:6e:f3:87:4d:09:eb:8d:f3:f7:68:7e:09:
         69:93:98:98:35:ce:3a:18:6f:f6:7d:c9:a0:c7:3e:ab:1b:27:
         c7:f0:6d:9f:b1:1b:78:aa:a9:ac:9e:74:4a:62:41:91:3d:6c:
         48:cf:d8:3c:98:05:cd:ef:38:35:db:90:dc:12:f4:2c:fa:3a:
         d1:71:65:8c:40:3e:96:59:fa:9d:a2:48:ab:d8:85:a7:bc:6b:
         5c:d8:5c:5b:d9:b4:19:1a:1c:6e:d4:1b:e1:5e:2c:99:c2:4b:
         1c:86:0b:a0:7c:ff:6d:ae:01:8f:37:90:84:73:05:3f:02:de:
         7b:a4:fe:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-ams.rpki-client.org