Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135372e302f32342d3234203d3e20313430343534.roa
File: 3130332e3130382e3135372e302f32342d3234203d3e20313430343534.roa (raw, json)
Hash identifier: GFo2K4kqKf5ICYgqJwPGM0SyJye1fyYkWpTv8xlRYLM=
Subject key identifier: AF:EE:C2:7F:6A:89:C1:EF:13:FD:1B:81:B1:50:2C:78:84:31:B0:4C
Certificate issuer: /CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014
Certificate serial: 769189F57F3E5F4E149A489F07632B09F037CF13
Authority key identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135372e302f32342d3234203d3e20313430343534.roa
Signing time: Fri 02 Jun 2023 09:55:51 +0000
ROA not before: Fri 02 Jun 2023 09:50:51 +0000
ROA not after: Fri 31 May 2024 09:55:51 +0000
asID: 140454
IP address blocks: 103.108.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:91:89:f5:7f:3e:5f:4e:14:9a:48:9f:07:63:2b:09:f0:37:cf:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014
Validity
Not Before: Jun 2 09:50:51 2023 GMT
Not After : May 31 09:55:51 2024 GMT
Subject: CN=AFEEC27F6A89C1EF13FD1B81B1502C788431B04C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dd:19:5c:51:35:f6:e0:ab:fa:b8:20:03:15:
ee:fd:12:87:35:03:52:3f:61:25:c5:51:62:eb:18:
b8:fd:1d:0f:cc:00:63:d4:24:e2:08:d9:07:e7:d2:
a1:4c:a1:a1:58:f0:e3:34:5d:c9:d0:13:8b:0c:b0:
23:44:7e:82:80:a7:cf:a7:06:6b:9f:00:31:e0:c6:
61:c8:f1:36:0d:68:52:a3:fc:c6:45:b0:c8:43:36:
26:d4:92:dd:74:de:4e:7f:e1:32:f2:fe:60:e6:73:
a3:5c:d5:ac:33:af:12:14:da:34:08:e4:3b:b4:d5:
53:13:3d:f2:1d:e2:1f:9e:5d:dc:0c:6a:98:95:01:
79:28:b1:ba:c7:6d:67:4b:21:cc:6a:90:4d:cc:a0:
7f:2c:75:3e:4b:6b:f1:18:37:6b:9f:9b:b3:7c:f8:
52:63:57:c4:0d:dc:4d:d5:03:79:2b:1b:f7:37:03:
95:76:d0:cf:ee:e6:0e:9b:f7:e2:83:d0:94:8b:59:
7b:f2:b5:fe:29:5a:01:4c:d1:d5:ea:1b:ed:53:36:
55:4f:45:62:e4:44:db:8f:65:95:b8:87:49:d8:36:
7f:cc:01:27:5f:b7:49:d6:76:cc:a9:cc:54:59:13:
f2:0c:91:89:3b:81:33:bd:e9:c1:81:75:4a:f2:3f:
74:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:EE:C2:7F:6A:89:C1:EF:13:FD:1B:81:B1:50:2C:78:84:31:B0:4C
X509v3 Authority Key Identifier:
keyid:E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135372e302f32342d3234203d3e20313430343534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.108.157.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:44:14:a9:0e:66:39:bc:4d:20:9b:0e:d9:d9:a4:40:fb:39:
f3:28:57:66:ff:1d:56:57:a4:97:97:55:14:a5:eb:df:48:63:
50:4a:23:65:6d:e0:21:ef:b5:bb:08:5e:bb:03:ee:c7:94:8a:
a8:f9:3a:0b:10:ba:41:8e:a6:a6:a4:3d:35:4e:8a:8a:7d:6b:
49:e6:56:e6:94:2d:40:5e:bc:81:ef:fe:78:e1:a1:2f:6f:2b:
e0:c6:72:b3:dc:35:9f:00:c5:74:a5:9e:c8:11:5b:3d:70:c9:
06:18:42:60:ff:5c:a2:c9:c4:4f:0c:8a:fe:ef:ba:5e:c4:46:
9e:a4:1d:5f:de:90:b0:21:1e:cf:11:04:8e:56:20:14:b1:7a:
61:2a:80:06:80:f7:f6:78:fa:3c:be:51:70:d1:72:cf:cb:58:
ef:f8:76:1f:77:5f:2d:d4:4a:06:0b:d2:63:ad:f7:cf:20:0d:
91:16:a3:2a:2f:fb:4d:c0:5f:8c:39:5c:75:d2:ae:9d:47:07:
9f:d8:bc:d4:8c:ec:c0:f0:6a:88:e3:c5:2b:e0:5a:45:0b:b8:
52:0a:d0:b8:e3:7d:6b:55:b8:a3:dc:bd:38:ce:2b:ee:0a:43:
eb:93:e4:51:31:84:f0:da:50:af:de:fa:f0:8b:3b:a0:de:80:
ee:6d:69:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org