Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150559.roa
File: AS150559.roa (raw, json)
Hash identifier: ZVd8slL0UyIJRRt/XF2qYdGaJAsLJOClIsPxWE/F0S8=
Subject key identifier: 8B:C5:05:31:F6:54:82:93:49:54:BE:E7:EE:DB:9F:88:A1:E9:62:F0
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 4B9F6810D57905C984CA4A57F16ED7D7B0A00297
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150559.roa
Signing time: Thu 02 Mar 2023 06:59:05 +0000
ROA not before: Thu 02 Mar 2023 06:54:05 +0000
ROA not after: Thu 29 Feb 2024 06:59:05 +0000
asID: 150559
IP address blocks: 103.95.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:9f:68:10:d5:79:05:c9:84:ca:4a:57:f1:6e:d7:d7:b0:a0:02:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Mar 2 06:54:05 2023 GMT
Not After : Feb 29 06:59:05 2024 GMT
Subject: CN=8BC50531F65482934954BEE7EEDB9F88A1E962F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6b:8c:07:a7:c8:a6:31:49:d6:ca:6d:22:a2:
f2:8e:80:d4:76:66:b4:4a:f2:2a:31:0d:9d:e9:d2:
8d:ce:ee:3b:4c:ab:94:a9:6d:c2:95:29:3c:e9:7e:
66:01:1a:2e:51:5f:42:f1:6b:4c:a2:b1:74:e2:f9:
3e:3a:c2:c8:fa:2a:0c:ec:a3:ef:cb:18:39:c5:bb:
23:ac:25:8f:03:44:1d:e5:7c:0a:8c:4e:ab:ff:ab:
f1:6d:9d:4c:e2:c4:eb:5c:48:1c:0e:08:b9:f9:b2:
47:c3:4d:4d:8f:36:eb:24:78:1e:a7:55:95:b1:a6:
2d:ab:68:40:11:06:50:4b:e2:a1:47:b9:7d:06:5a:
05:2d:ac:d4:c8:dc:05:29:df:7a:0b:38:88:bf:d7:
13:24:ac:3b:7f:62:48:06:11:8f:93:71:cc:6f:24:
04:63:9c:5e:8e:47:ad:cd:aa:38:7a:8f:85:62:29:
93:a8:eb:94:98:a6:ea:fe:25:0a:3f:ae:9b:c7:95:
0a:09:fe:2b:b8:72:e3:e3:10:f2:e5:56:89:c2:ae:
97:7b:97:d7:32:7b:31:83:49:4d:e2:ac:d2:e1:85:
fc:a8:dd:9f:cc:70:1c:96:25:b1:50:14:0f:00:0d:
60:36:31:76:80:fe:64:8d:b2:30:62:45:89:c9:07:
11:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C5:05:31:F6:54:82:93:49:54:BE:E7:EE:DB:9F:88:A1:E9:62:F0
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150559.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.20.0/23
Signature Algorithm: sha256WithRSAEncryption
30:56:55:f6:46:af:56:ac:dd:60:87:58:48:1a:40:d3:76:c1:
22:52:f8:9b:47:fc:4d:32:46:f9:b5:af:be:6f:a0:e1:89:24:
e7:e2:74:84:93:1c:f3:7b:d0:96:fa:1c:d0:30:0b:79:28:29:
a3:1b:6b:99:7e:13:07:8b:d6:92:e7:c4:d7:ef:83:3b:9e:b8:
2d:5d:78:4b:90:da:8c:49:8a:e3:fb:82:31:7d:b7:e8:02:f8:
8a:0b:a8:95:a1:7f:76:ab:7c:22:76:05:98:e2:cc:fb:e9:82:
d5:d1:9c:90:68:3a:ac:7f:1a:5b:e8:3e:31:f9:86:ac:8b:35:
9a:05:4b:c1:a0:fa:6c:45:de:fe:8a:b4:04:46:93:07:3b:90:
7d:f8:b8:fd:30:10:2a:63:9a:bb:ea:f3:67:8c:d8:0a:5b:21:
11:0d:0e:dd:02:94:75:77:de:12:8b:64:6f:18:21:7f:bc:56:
35:d7:0c:fb:70:59:1f:e4:22:30:c3:e9:95:da:24:ea:a2:a2:
60:e2:ac:9e:f8:93:13:24:9e:a0:72:44:3b:99:6a:d3:49:cb:
be:c7:60:a2:a7:2c:aa:49:64:38:25:83:89:75:e5:56:69:10:
1e:2a:81:13:06:5e:be:22:96:21:a1:35:a1:36:b7:22:1e:f0:
4b:44:38:ec
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUS59oENV5BcmEykpX8W7X17CgApcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDMwMjA2NTQwNVoX
DTI0MDIyOTA2NTkwNVowMzExMC8GA1UEAxMoOEJDNTA1MzFGNjU0ODI5MzQ5NTRC
RUU3RUVEQjlGODhBMUU5NjJGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMRrjAenyKYxSdbKbSKi8o6A1HZmtEryKjENnenSjc7uO0yrlKltwpUpPOl+
ZgEaLlFfQvFrTKKxdOL5PjrCyPoqDOyj78sYOcW7I6wljwNEHeV8CoxOq/+r8W2d
TOLE61xIHA4IufmyR8NNTY826yR4HqdVlbGmLatoQBEGUEvioUe5fQZaBS2s1Mjc
BSnfegs4iL/XEySsO39iSAYRj5NxzG8kBGOcXo5Hrc2qOHqPhWIpk6jrlJim6v4l
Cj+um8eVCgn+K7hy4+MQ8uVWicKul3uX1zJ7MYNJTeKs0uGF/Kjdn8xwHJYlsVAU
DwANYDYxdoD+ZI2yMGJFickHEakCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSLxQUx
9lSCk0lUvufu25+Ioeli8DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU1OS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWdfFDANBgkqhkiG9w0BAQsFAAOCAQEAMFZV9kavVqzdYIdYSBpA
03bBIlL4m0f8TTJG+bWvvm+g4Ykk5+J0hJMc83vQlvoc0DALeSgpoxtrmX4TB4vW
kufE1++DO564LV14S5DajEmK4/uCMX236AL4iguolaF/dqt8InYFmOLM++mC1dGc
kGg6rH8aW+g+MfmGrIs1mgVLwaD6bEXe/oq0BEaTBzuQffi4/TAQKmOau+rzZ4zY
ClshEQ0O3QKUdXfeEotkbxghf7xWNdcM+3BZH+QiMMPpldok6qKiYOKsnviTEySe
oHJEO5lq00nLvsdgoqcsqklkOCWDiXXlVmkQHiqBEwZeviKWIaE1oTa3Ih7wS0Q4
7A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org