Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150194.roa
File: AS150194.roa (raw, json)
Hash identifier: yHOoJ8cSHPxyFUihPg58UCQKN17DlcvrUHbjM2FzTPM=
Subject key identifier: 24:32:C0:28:0C:4B:3D:D3:FE:64:E8:95:63:E4:9C:6E:A2:7E:EC:35
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 20C01B972CEB15D3AC618972D714801940C99F19
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150194.roa
Signing time: Mon 27 Feb 2023 03:13:48 +0000
ROA not before: Mon 27 Feb 2023 03:08:48 +0000
ROA not after: Mon 26 Feb 2024 03:13:48 +0000
asID: 150194
IP address blocks: 103.49.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:c0:1b:97:2c:eb:15:d3:ac:61:89:72:d7:14:80:19:40:c9:9f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Feb 27 03:08:48 2023 GMT
Not After : Feb 26 03:13:48 2024 GMT
Subject: CN=2432C0280C4B3DD3FE64E89563E49C6EA27EEC35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:38:4d:8d:d2:37:d9:c9:b4:99:6d:1e:75:
d0:22:1e:c7:3b:ca:3d:69:bf:4b:99:bd:2f:ab:74:
7d:79:1b:10:a7:df:33:e0:c1:e0:73:9a:db:7f:cf:
bf:1f:8b:31:31:bf:0f:e6:f1:6d:a1:c0:4c:a1:7b:
89:49:9c:11:3c:93:b1:95:ae:bb:e7:cf:c6:e7:d0:
a1:d1:3a:84:e5:d8:68:e9:81:a9:81:92:bc:6d:5c:
14:cd:72:01:fe:c9:27:06:44:ab:37:8b:af:84:11:
8c:93:c4:25:af:0e:7e:ac:49:47:cb:ce:bc:b2:eb:
3c:29:90:cd:a5:af:aa:2b:9c:44:fa:de:e1:86:af:
fd:3a:5d:59:c7:00:c2:bc:a4:c9:52:c4:c2:95:e6:
26:16:4a:98:b3:e0:15:1b:26:22:b8:3f:1f:70:fe:
c2:44:2e:20:fb:04:71:28:ab:96:d0:53:88:c2:5c:
b9:40:f4:c9:bc:d5:16:e3:e3:11:ab:38:f0:93:9e:
f5:39:ba:b4:24:e5:12:ba:b6:8b:c9:76:fe:3d:33:
23:cf:e9:c4:51:73:46:fc:87:5e:c3:9d:03:75:74:
18:32:3d:fb:7a:3d:ef:92:77:aa:be:09:cb:95:f3:
16:12:1e:b0:ba:ba:77:6a:d2:f6:23:6f:1e:d7:30:
6c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:32:C0:28:0C:4B:3D:D3:FE:64:E8:95:63:E4:9C:6E:A2:7E:EC:35
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150194.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.49.150.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ec:f9:9f:c7:d2:9a:87:39:69:5e:8c:5a:7c:a3:c6:c2:70:
18:43:73:1f:e9:fd:8e:25:86:f2:f8:18:2b:95:1e:28:60:f7:
cc:e8:c7:1f:db:75:d4:97:f3:c5:c3:2f:fa:ff:92:ab:f7:02:
11:4e:4d:45:2c:a8:99:17:6d:09:72:14:7f:18:7b:ca:d6:04:
74:91:d3:b6:27:9d:2d:a1:ed:e0:7b:2f:af:51:a9:36:d6:d5:
44:5f:88:b0:3d:75:c4:be:3d:ec:90:ff:06:2e:32:16:f9:05:
30:a7:c7:09:ae:75:f3:18:e7:54:94:51:08:fc:88:ea:78:8d:
29:76:ca:7b:d4:ec:56:3c:5c:2b:71:90:53:bf:f2:84:d0:7d:
b0:66:1e:d9:d6:ff:0d:af:b2:cb:b6:c8:5d:68:f5:1e:59:b7:
da:1e:0a:2c:b5:87:4b:37:3a:43:fd:e9:3c:03:3d:16:53:40:
76:fc:be:42:20:84:cc:7e:89:a5:48:e7:11:07:0d:42:21:fc:
65:a9:0c:5a:8a:d4:63:c6:6c:08:60:3e:91:45:33:18:0c:f7:
fa:a1:d8:87:33:86:61:18:a3:23:8b:6d:3f:fb:7f:d7:79:b4:
42:8d:bc:d7:0d:4f:11:63:ec:d9:65:7a:28:e9:5c:50:fc:d9:
ca:32:80:52
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUIMAblyzrFdOsYYly1xSAGUDJnxkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDIyNzAzMDg0OFoX
DTI0MDIyNjAzMTM0OFowMzExMC8GA1UEAxMoMjQzMkMwMjgwQzRCM0REM0ZFNjRF
ODk1NjNFNDlDNkVBMjdFRUMzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKqrOE2N0jfZybSZbR510CIexzvKPWm/S5m9L6t0fXkbEKffM+DB4HOa23/P
vx+LMTG/D+bxbaHATKF7iUmcETyTsZWuu+fPxufQodE6hOXYaOmBqYGSvG1cFM1y
Af7JJwZEqzeLr4QRjJPEJa8OfqxJR8vOvLLrPCmQzaWvqiucRPre4Yav/TpdWccA
wrykyVLEwpXmJhZKmLPgFRsmIrg/H3D+wkQuIPsEcSirltBTiMJcuUD0ybzVFuPj
Eas48JOe9Tm6tCTlErq2i8l2/j0zI8/pxFFzRvyHXsOdA3V0GDI9+3o975J3qr4J
y5XzFhIesLq6d2rS9iNvHtcwbF8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQkMsAo
DEs90/5k6JVj5Jxuon7sNTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDE5NC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAGcxljANBgkqhkiG9w0BAQsFAAOCAQEAfez5n8fSmoc5aV6MWnyj
xsJwGENzH+n9jiWG8vgYK5UeKGD3zOjHH9t11JfzxcMv+v+Sq/cCEU5NRSyomRdt
CXIUfxh7ytYEdJHTtiedLaHt4Hsvr1GpNtbVRF+IsD11xL497JD/Bi4yFvkFMKfH
Ca518xjnVJRRCPyI6niNKXbKe9TsVjxcK3GQU7/yhNB9sGYe2db/Da+yy7bIXWj1
Hlm32h4KLLWHSzc6Q/3pPAM9FlNAdvy+QiCEzH6JpUjnEQcNQiH8ZakMWorUY8Zs
CGA+kUUzGAz3+qHYhzOGYRijI4ttP/t/13m0Qo281w1PEWPs2WV6KOlcUPzZyjKA
Ug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org