Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135382e302f32342d3234203d3e20313337333036.roa
File: 3130332e3130382e3135382e302f32342d3234203d3e20313337333036.roa (raw, json)
Hash identifier: /DC0Hz5C0cnt3+mO3THF2saTPpDJBQmtXpUfPaHfafw=
Subject key identifier: 02:64:2E:47:89:44:73:7C:24:AD:C3:B4:A9:C9:E4:AD:BA:63:95:A7
Certificate issuer: /CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014
Certificate serial: 76E5D83AA1B58DDE90D2D4D9106673123702E0CA
Authority key identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135382e302f32342d3234203d3e20313337333036.roa
Signing time: Sun 28 Aug 2022 23:02:37 +0000
ROA not before: Sun 28 Aug 2022 22:57:37 +0000
ROA not after: Sun 27 Aug 2023 23:02:37 +0000
asID: 137306
IP address blocks: 103.108.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:e5:d8:3a:a1:b5:8d:de:90:d2:d4:d9:10:66:73:12:37:02:e0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014
Validity
Not Before: Aug 28 22:57:37 2022 GMT
Not After : Aug 27 23:02:37 2023 GMT
Subject: CN=02642E478944737C24ADC3B4A9C9E4ADBA6395A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:43:94:77:ee:67:51:26:2b:20:64:ec:e0:
23:1f:9f:89:ea:8f:79:96:ac:45:d1:a2:cb:33:a4:
35:3b:de:0a:52:b6:40:98:dd:0f:78:38:b7:83:d8:
86:1f:46:6a:72:1c:25:30:7a:d2:d2:4f:46:25:dd:
e7:1b:31:a1:be:63:d0:34:c9:a7:3f:d2:84:d8:dc:
0b:24:95:70:88:11:b4:39:ab:c5:d9:27:a2:74:73:
36:d1:cc:6e:19:86:e1:9c:e4:38:b1:9c:78:e1:7c:
d9:55:03:f6:2d:6b:cb:d1:bb:f5:b5:f6:9e:57:b0:
29:57:95:2b:22:51:eb:79:8e:d1:69:93:5a:99:a3:
0e:70:4d:4c:b4:fe:99:be:de:34:a3:70:ed:61:4d:
f3:9c:6e:92:3d:72:10:f6:8c:c9:95:5c:4c:82:6d:
9b:4d:5d:08:9b:13:a8:53:fc:ba:ab:e2:a6:8e:bf:
5a:38:d9:df:5e:45:de:b8:aa:9a:4e:24:79:0e:8b:
0b:21:25:ed:75:fd:83:8b:60:cd:37:4a:da:5d:fa:
90:96:d0:f2:56:d0:0b:75:9e:97:72:0e:ca:f2:72:
69:b3:ff:6b:db:f9:91:09:b9:4f:1e:0a:6b:64:c8:
1e:b1:76:e4:e7:ca:e2:ac:42:27:42:76:b7:0e:77:
ce:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:64:2E:47:89:44:73:7C:24:AD:C3:B4:A9:C9:E4:AD:BA:63:95:A7
X509v3 Authority Key Identifier:
keyid:E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135382e302f32342d3234203d3e20313337333036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.108.158.0/24
Signature Algorithm: sha256WithRSAEncryption
57:27:d5:e5:65:ff:26:b0:b4:ac:bb:d2:e2:bb:3e:60:b9:ea:
67:98:29:d2:6b:46:26:a8:45:28:4c:d7:c2:89:87:a4:e0:77:
ce:b3:fe:86:af:0c:3a:65:18:30:1d:c4:49:0f:01:66:5f:b0:
4c:ad:31:44:8e:74:ef:7d:c8:16:9c:7f:f1:c7:6a:a6:2a:8d:
2b:a2:7e:08:43:04:8a:1f:29:be:9d:ec:49:bc:8d:c7:77:51:
c6:f9:28:a9:c9:45:47:13:07:12:3b:c5:c8:2d:76:99:b0:aa:
8f:4a:1a:b6:d6:48:b1:86:7b:78:85:da:74:35:dd:04:bf:22:
f2:05:e4:9e:8b:f4:cd:93:ba:79:89:58:0a:08:0d:cf:34:53:
b1:59:02:a1:a5:fc:7a:bd:04:e6:a4:1b:74:ef:99:25:57:fb:
5d:c5:a5:6f:b2:4c:3e:30:82:60:d1:7d:93:a7:24:b8:5d:c6:
5a:59:81:59:aa:08:47:ed:6c:0b:26:f0:ed:bd:bd:4b:57:41:
7f:75:aa:b8:38:af:da:36:a7:61:6e:f0:87:40:75:86:7f:cf:
57:78:38:35:88:05:bb:4a:0e:94:d3:6c:60:dd:ef:3a:7e:af:
be:df:99:92:46:e9:24:83:40:cf:fb:49:65:99:db:3d:70:18:
a0:c5:64:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org