Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa
File: AS396982.roa (raw, json)
Hash identifier: 7erx4LvIGHgjS8aup3DnkGShawGRozJj6i8ku5SZ0Vc=
Subject key identifier: DE:11:51:49:43:3C:E9:3E:51:8C:BD:26:AF:CF:F4:BF:ED:BC:BE:5E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 41D664B06680D8B43331B76E66939A9C738D9A86
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa
Signing time: Fri 14 Feb 2025 04:00:00 +0000
ROA not before: Fri 14 Feb 2025 03:55:00 +0000
ROA not after: Fri 13 Feb 2026 04:00:00 +0000
asID: 396982
IP address blocks: 103.165.152.0/24 maxlen: 24
103.165.153.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:d6:64:b0:66:80:d8:b4:33:31:b7:6e:66:93:9a:9c:73:8d:9a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 14 03:55:00 2025 GMT
Not After : Feb 13 04:00:00 2026 GMT
Subject: CN=DE115149433CE93E518CBD26AFCFF4BFEDBCBE5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:a3:5b:6e:b7:12:ae:fb:9c:18:da:24:2d:
b4:57:f7:22:6e:06:2a:53:fe:d1:b4:bb:0a:41:bb:
99:73:8b:10:6f:46:f9:a1:be:f9:00:12:72:c5:3c:
c0:1c:c7:8b:35:2b:28:03:16:30:b1:6e:54:34:c9:
4d:c2:68:86:b8:99:a5:dd:e4:8a:13:e0:0b:dd:84:
03:de:60:35:cf:ef:0b:cc:af:85:6f:b8:48:43:3e:
4b:a3:c9:74:b4:0a:f6:b3:fe:45:31:f3:19:e7:da:
1d:b1:ab:cb:01:e8:9f:f8:ce:30:bb:02:0b:5b:fb:
c5:97:fe:be:6d:84:01:31:54:87:e5:77:a0:7f:b2:
75:52:7c:df:98:e8:51:b7:f0:f9:f5:b5:eb:7b:2d:
e0:6c:2b:47:8a:74:30:9b:d7:44:11:6c:6f:a1:36:
1f:71:10:48:31:6d:70:3f:60:35:01:a3:3d:98:40:
e1:ee:70:36:29:52:e8:42:8d:47:18:ea:6a:ce:07:
e9:f5:c4:84:7e:f7:d2:1a:08:97:06:6f:10:75:ad:
1a:41:e1:57:37:50:69:22:af:a9:98:c9:8a:2d:4f:
ea:ff:12:97:ef:58:3a:ab:47:e0:23:10:ac:d2:c9:
ed:77:77:81:36:12:19:15:21:9a:30:b5:7f:4a:62:
17:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:11:51:49:43:3C:E9:3E:51:8C:BD:26:AF:CF:F4:BF:ED:BC:BE:5E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS396982.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.165.152.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:cc:79:3d:8c:d5:07:02:0b:3e:a4:13:55:00:4c:21:2d:bd:
1c:c9:be:6b:03:95:d9:21:dd:e4:fb:14:9e:fb:2f:cb:0c:a8:
8b:3e:f1:f6:09:2a:5c:52:e4:69:16:45:33:0b:84:8e:df:a4:
58:c6:3b:39:3d:59:f7:ac:7d:79:66:d3:72:31:2d:f5:2d:f5:
ad:39:5a:34:1a:4d:9d:1d:b1:be:28:93:49:a3:c0:78:ab:07:
7f:52:6f:a3:f9:77:2b:4b:cc:5c:d1:09:43:eb:b5:c7:0b:70:
29:51:d1:c5:7c:47:89:bc:c6:18:53:5c:49:a7:96:0f:33:1d:
dd:cf:80:b5:e9:ac:5e:b3:ad:52:00:c8:b1:4d:cc:b6:ac:f4:
a2:ca:24:bd:84:9c:de:cc:d8:83:29:ca:f4:ef:13:9e:08:b2:
b1:86:dc:12:1a:7d:a6:55:03:1a:41:5c:bf:37:05:e2:02:fa:
f9:1b:d4:70:ae:19:68:50:aa:59:2b:bc:bb:25:0f:94:0a:66:
9a:a5:09:bc:6e:17:87:aa:23:a2:b0:b7:44:ce:8d:61:f0:fc:
b0:49:2a:20:07:fb:e1:b0:61:91:8f:db:96:25:a4:55:26:c3:
19:34:f8:b3:69:61:27:10:af:25:98:71:e6:3a:55:a6:ab:af:
84:54:26:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:50:02 2025 by rpki-client