Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147074.roa
File: AS147074.roa (raw, json)
Hash identifier: FVHZ0enbHHMuhfzlh3HfggjGZqVmA9PSrDKJ/GzDots=
Subject key identifier: 26:FD:09:7E:AD:60:BD:D8:E6:14:C6:C2:6A:E2:2E:62:8F:60:32:88
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3091798B22064927A4DEC1F8607DE97DEC1C3C30
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147074.roa
Signing time: Tue 08 Mar 2022 02:15:21 +0000
ROA not before: Tue 08 Mar 2022 02:10:21 +0000
ROA not after: Tue 07 Mar 2023 02:15:21 +0000
asID: 147074
IP address blocks: 103.172.36.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:91:79:8b:22:06:49:27:a4:de:c1:f8:60:7d:e9:7d:ec:1c:3c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 8 02:10:21 2022 GMT
Not After : Mar 7 02:15:21 2023 GMT
Subject: CN=26FD097EAD60BDD8E614C6C26AE22E628F603288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9e:2b:b2:2b:ad:c2:5d:97:6b:23:4f:ce:a5:
87:c2:1f:31:ed:ab:ac:bc:75:94:6f:77:cc:62:43:
dd:2c:a1:ee:c8:ce:b1:ff:57:48:6a:f7:93:1c:77:
d4:09:ee:41:22:53:3f:72:85:96:f7:79:cf:44:3c:
89:e3:1c:70:34:a2:d3:08:29:46:be:5e:42:7a:ec:
af:a5:59:49:a8:90:3e:c2:cf:de:dc:1e:b6:cf:80:
f1:83:95:fd:be:f7:3d:04:8b:e1:72:2f:ab:61:95:
44:b4:bf:bd:a5:d9:bb:b4:b7:a5:ff:2c:af:ee:6d:
06:c1:4c:af:54:15:1f:33:ae:18:18:3e:87:9d:04:
fa:f3:ce:bf:9f:af:83:d5:54:0c:e5:e8:fb:d2:27:
34:2c:8e:9f:81:6d:de:53:9f:f2:ea:59:2e:5d:e8:
2a:cf:c1:ae:f2:17:96:f7:f6:12:ef:a1:43:80:26:
2a:65:9e:93:91:15:cf:d5:4e:df:46:0c:a9:fb:26:
d8:ff:c4:8b:87:c7:c9:56:b5:e4:42:db:54:62:a0:
a0:1b:f8:6e:47:b2:97:39:6f:23:77:c5:55:8d:e2:
ac:ee:fe:d0:4e:15:5c:f6:9e:c3:d0:e2:77:fa:9a:
25:55:63:72:cb:5b:4f:0e:c9:bd:1f:6a:81:85:aa:
8c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FD:09:7E:AD:60:BD:D8:E6:14:C6:C2:6A:E2:2E:62:8F:60:32:88
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147074.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.36.0/23
Signature Algorithm: sha256WithRSAEncryption
90:4f:a6:a5:9e:85:c1:3a:bc:39:3b:ce:61:3f:ee:e2:ea:e6:
a4:48:2f:03:77:14:c5:43:fe:86:4d:5d:08:8c:c2:3c:97:6e:
8c:74:bc:c7:24:d3:2a:38:4c:aa:c9:a2:12:6f:03:9f:06:40:
2a:c4:19:da:f0:ba:01:04:ca:09:2f:b3:e8:e3:9d:51:b7:67:
f2:7d:fe:2a:b2:3e:06:2e:fa:75:81:27:f9:1a:68:1c:59:ef:
e3:73:b0:a6:c1:95:5c:35:b6:14:72:e0:4f:4b:93:98:39:45:
1d:62:23:70:7f:15:8f:fc:de:18:c2:5e:e7:87:81:67:2c:b8:
c3:f9:2c:40:e2:ce:b2:81:49:05:3d:e9:22:5b:d5:37:c8:7b:
25:6e:05:90:4d:c2:e1:44:5c:6f:84:61:75:2f:f5:c2:b8:22:
c0:d7:c4:00:cf:90:19:df:06:cc:5a:14:bd:3a:20:32:6d:60:
5c:b6:6b:7b:e4:7a:d2:d8:c6:bd:a8:f1:d9:a7:41:66:57:21:
f2:e4:25:ec:e7:9d:6a:2f:4e:ea:73:8e:81:13:c2:1f:5f:59:
ef:c1:11:10:cb:6b:11:dd:07:26:ca:04:0e:c6:1f:29:e1:bf:
34:54:b6:a6:33:b2:8b:10:e9:e9:db:83:91:f7:bd:81:8d:d4:
1d:77:51:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org