Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e203339363938.roa
File: 3130332e31372e3137382e302f32342d3234203d3e203339363938.roa (raw, json)
Hash identifier: hy7rlmim+64y5Omxro95/smdPIMudtsLmW130mUqwmI=
Subject key identifier: 99:D0:F6:6C:07:23:E4:6E:7B:E3:EC:DC:03:80:BA:8F:9F:14:AB:43
Certificate issuer: /CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA
Certificate serial: 2E3D22685329112C929084FBD4B5944E634DDE86
Authority key identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e203339363938.roa
Signing time: Fri 11 Nov 2022 11:28:03 +0000
ROA not before: Fri 11 Nov 2022 11:23:03 +0000
ROA not after: Fri 10 Nov 2023 11:28:03 +0000
asID: 39698
IP address blocks: 103.17.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:3d:22:68:53:29:11:2c:92:90:84:fb:d4:b5:94:4e:63:4d:de:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA
Validity
Not Before: Nov 11 11:23:03 2022 GMT
Not After : Nov 10 11:28:03 2023 GMT
Subject: CN=99D0F66C0723E46E7BE3ECDC0380BA8F9F14AB43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6c:11:6d:89:95:ef:25:af:c3:ae:08:02:f9:
07:5e:61:07:ac:ad:e9:f0:51:cf:83:aa:59:93:95:
fd:d0:ca:b0:84:a5:a4:8b:68:9e:c7:4c:97:6d:d9:
96:64:21:0d:2c:86:4b:2c:20:ee:90:68:2b:d5:ee:
f2:28:33:88:cf:39:1d:1d:f9:07:34:88:71:7a:ae:
1f:d1:3c:ef:38:0f:0c:b0:0e:49:39:9f:1e:2d:7e:
2b:a9:87:0d:f5:19:cd:f8:52:12:7c:5d:4d:f9:12:
e1:94:62:b1:6f:01:dd:32:8b:12:54:8f:73:ec:92:
ef:61:a0:3e:35:6f:05:33:c3:a9:08:eb:7f:5f:3f:
ae:9b:cf:20:63:b2:13:aa:d3:dc:2a:cc:02:60:f5:
25:d8:9e:e7:bf:e3:72:d3:3e:38:af:2a:92:6f:42:
4c:35:cf:35:0c:ec:23:2c:21:90:0f:3a:4f:84:e2:
29:61:28:73:78:68:7f:6c:b1:ae:fc:71:5d:22:5e:
b0:cb:00:3c:43:4f:37:08:1b:10:6e:02:1c:73:0f:
88:98:67:02:8e:9c:09:f8:3d:ac:26:ff:38:9e:0b:
54:bf:76:20:92:7d:6f:3d:2f:8e:dc:51:4e:c1:97:
ed:d9:01:b5:7c:a3:9f:5a:56:70:80:f1:ca:cb:27:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D0:F6:6C:07:23:E4:6E:7B:E3:EC:DC:03:80:BA:8F:9F:14:AB:43
X509v3 Authority Key Identifier:
keyid:87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e203339363938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.178.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2a:08:b7:ac:c3:5d:17:e0:ba:82:34:9d:43:c5:b5:de:17:
ad:15:72:52:88:8a:27:bd:97:9e:56:f4:93:ef:de:82:7a:9d:
87:0f:25:8b:d1:9b:72:7c:e6:6c:ad:46:0f:1d:3a:a1:4a:3b:
61:3e:46:b8:10:e7:8e:86:2e:64:6e:ac:7a:bb:33:f0:b9:1f:
de:b9:67:04:cb:ed:dd:65:f4:f6:77:e9:1d:50:da:9b:2e:18:
de:e5:aa:ac:a3:c3:e5:3f:9d:97:51:ac:af:31:bb:b9:d2:0b:
7f:06:2b:d5:5b:9f:03:57:57:c1:fd:cd:78:00:b0:38:77:94:
20:69:0e:63:2c:0d:52:5c:fe:10:de:b5:67:b6:a9:59:04:b0:
c1:ae:2f:eb:83:aa:1f:e6:7c:75:db:cb:a5:98:9c:b2:a8:05:
2c:d1:82:bb:c7:64:84:12:8d:14:23:19:08:c3:86:13:c6:c5:
9a:2f:93:e2:f0:a7:68:0f:12:ff:24:8b:f9:fe:29:e6:31:0c:
19:0d:a5:e4:04:db:af:00:88:89:68:70:fb:2c:9a:33:3a:e4:
49:2a:d3:2e:91:e4:97:70:97:0e:5b:5d:97:e6:02:eb:93:c7:
5a:79:f0:84:be:54:cf:58:3b:fc:a8:0d:39:2e:d7:85:3a:09:
9b:94:e8:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org