Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa
File: 3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa (raw, json)
Hash identifier: i66duaPpMdK/aypfmsVNCdgkRkwnWcIJSv/KaYgXaVw=
Subject key identifier: A0:7F:64:1D:67:03:D8:8E:D8:BC:B7:B6:4F:B1:E6:FE:EB:85:96:11
Certificate issuer: /CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51
Certificate serial: 239F851DB7888487E7A6B66E829B40F61861E1E1
Authority key identifier: 33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa
Signing time: Fri 05 Aug 2022 01:40:00 +0000
ROA not before: Fri 05 Aug 2022 01:35:00 +0000
ROA not after: Fri 04 Aug 2023 01:40:00 +0000
asID: 18059
IP address blocks: 103.120.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:9f:85:1d:b7:88:84:87:e7:a6:b6:6e:82:9b:40:f6:18:61:e1:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51
Validity
Not Before: Aug 5 01:35:00 2022 GMT
Not After : Aug 4 01:40:00 2023 GMT
Subject: CN=A07F641D6703D88ED8BCB7B64FB1E6FEEB859611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:dd:08:ad:c0:7b:29:0c:db:e4:ad:2f:56:64:
ae:7d:ee:5c:3f:9c:e4:75:43:04:84:88:b6:dc:3e:
65:2f:a7:2e:cf:9e:a0:73:76:9d:41:65:89:a7:79:
73:dc:18:72:01:3e:2c:11:98:01:18:6a:ed:80:3e:
37:20:e1:1d:58:e6:5a:9c:92:4e:51:70:c2:0c:5c:
4a:ed:7c:f1:4e:c2:53:e3:21:a9:35:45:3d:28:1a:
d4:95:78:28:94:dc:cf:2a:32:b7:46:e0:f0:9f:93:
e5:06:68:32:40:db:b7:59:0f:5d:dc:46:a0:1b:1d:
18:6c:ae:e5:a1:41:91:5c:fd:f0:14:6c:3a:7f:2c:
8c:66:85:83:0b:bb:bd:ef:7d:20:9e:80:2c:77:00:
8d:e1:bf:71:d5:ce:2a:18:3f:95:32:f9:22:3a:78:
2f:25:49:9f:ed:a8:77:ae:7f:b0:9f:38:9e:73:fb:
1b:39:0b:30:d0:ac:7e:5e:68:21:f6:88:fd:25:e3:
76:db:4a:ca:2b:ea:41:d4:60:26:b8:0c:02:12:18:
b7:2e:2f:50:50:12:4b:ca:d4:6f:2c:28:d9:a7:d4:
af:e1:04:f9:3a:fc:35:c4:bd:7e:5e:5a:47:56:82:
2c:dc:2d:57:86:bd:75:2a:64:e1:2d:33:c7:52:9f:
7d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:7F:64:1D:67:03:D8:8E:D8:BC:B7:B6:4F:B1:E6:FE:EB:85:96:11
X509v3 Authority Key Identifier:
keyid:33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.120.233.0/24
Signature Algorithm: sha256WithRSAEncryption
43:c8:50:7a:9e:6e:e9:89:fa:00:31:63:db:c3:3e:c5:5c:c2:
aa:75:94:70:39:16:ff:4f:fe:13:29:bc:94:ec:bb:94:e5:9c:
d4:d5:fb:55:5d:aa:33:3e:d8:ae:f3:0a:b9:ce:8f:82:c3:a2:
fa:f1:c7:0b:e1:59:76:f8:57:1e:a7:83:5c:34:c9:80:10:02:
10:88:74:d2:6d:7c:d4:b2:20:2b:db:3f:c0:4e:2b:2b:db:cb:
ed:f4:dc:37:04:b8:45:c5:43:2a:5a:02:d2:47:3d:c8:c9:10:
3b:a3:4f:d7:69:30:fa:21:e8:17:b6:7c:da:69:c6:f8:69:b6:
58:9a:8c:11:a4:da:c6:32:6d:09:fc:a7:5f:60:d1:0f:e8:73:
1a:a9:41:44:99:5e:fe:bb:63:7e:bc:2c:35:1c:85:7b:c0:9b:
16:c8:34:b3:7e:94:e6:4f:65:e6:15:7f:49:63:06:ed:82:3b:
dc:8a:6e:6d:65:33:69:ca:45:fb:9c:29:9f:9a:c2:fc:7e:53:
a7:8c:3b:41:94:34:ad:cd:b5:f1:77:13:ec:c4:f7:94:9e:84:
e0:fc:35:ef:9a:9d:a0:fe:7e:0c:e2:0b:a2:d4:93:cb:ea:cb:
eb:2a:a3:1a:b6:02:e3:fa:e3:ce:1c:cd:81:38:70:53:15:0f:
a0:fa:e6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org