Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135382e302f32342d3234203d3e20313430343534.roa
File: 3130332e3130382e3135382e302f32342d3234203d3e20313430343534.roa (raw, json)
Hash identifier: OYmuxRchgV2Na64sP78OBWs7GPg0aPsL6QGviKi/uzs=
Subject key identifier: 8A:8D:D6:EC:F7:DE:1D:7D:EE:DE:20:E4:D6:DB:C2:36:68:C3:83:9B
Certificate issuer: /CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014
Certificate serial: 5DD66402DDFDE8A1F96E8FB6D5BB8B82E0C79A94
Authority key identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135382e302f32342d3234203d3e20313430343534.roa
Signing time: Fri 02 Jun 2023 09:56:05 +0000
ROA not before: Fri 02 Jun 2023 09:51:05 +0000
ROA not after: Fri 31 May 2024 09:56:05 +0000
asID: 140454
IP address blocks: 103.108.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:d6:64:02:dd:fd:e8:a1:f9:6e:8f:b6:d5:bb:8b:82:e0:c7:9a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014
Validity
Not Before: Jun 2 09:51:05 2023 GMT
Not After : May 31 09:56:05 2024 GMT
Subject: CN=8A8DD6ECF7DE1D7DEEDE20E4D6DBC23668C3839B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9d:a6:2b:6a:48:91:84:3e:7b:ab:37:ea:1c:
10:51:3c:47:6c:78:89:e5:a3:1f:c5:e8:20:26:5d:
58:1d:a1:87:e0:c2:ba:ac:35:67:94:00:c4:2f:5f:
d4:88:40:61:f2:99:ba:82:d8:c1:f9:c1:3c:37:ce:
14:5f:9a:85:16:3d:04:ea:89:2e:8b:f9:6a:bc:ca:
0a:76:c2:cb:eb:af:6e:46:ca:ad:17:7f:a7:c0:ed:
f6:b5:85:85:42:53:83:c3:48:3a:50:cb:ff:80:6a:
f7:ac:08:04:e4:cb:59:60:57:dc:a5:3b:0a:18:d7:
d9:90:1d:fd:21:39:46:1f:63:7c:1a:30:44:ae:f3:
d9:f7:5d:40:83:69:59:c2:3c:18:06:5d:5a:06:e6:
b6:a9:33:9b:fe:66:20:83:d7:8a:7d:16:54:25:83:
fa:1f:01:2d:99:e5:bd:9b:22:6f:7f:b4:05:47:e8:
4c:f5:8a:f2:a0:de:6f:ad:40:f7:87:33:ac:df:f5:
d9:61:80:64:02:2b:be:48:9e:e4:92:e6:6b:32:da:
c8:4d:1d:ff:a5:c8:78:e9:ae:33:6b:ab:da:73:91:
06:06:4e:65:07:36:9e:9f:70:b4:ab:7a:75:dd:7f:
55:06:74:26:b8:70:35:df:44:7a:d7:f2:87:43:ec:
9f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8D:D6:EC:F7:DE:1D:7D:EE:DE:20:E4:D6:DB:C2:36:68:C3:83:9B
X509v3 Authority Key Identifier:
keyid:E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/3130332e3130382e3135382e302f32342d3234203d3e20313430343534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.108.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:9f:d1:9c:0a:7f:26:b5:7d:d1:fe:cf:ed:82:08:5d:1c:5e:
90:e1:4c:5b:59:a4:fc:0a:0e:76:a0:60:53:48:d1:6f:00:9f:
00:d3:9f:8d:2d:0f:93:33:55:17:5c:dc:ad:92:ae:0c:35:3d:
1f:ca:6c:42:d9:a4:75:c2:4f:78:b8:2e:5b:ed:17:15:33:ee:
3c:58:cc:3c:00:3b:8f:53:35:d2:34:7a:a1:e1:94:0b:36:20:
7b:71:ff:57:16:7f:cd:bb:a3:e9:94:f8:7b:e5:5a:d6:c9:d3:
5e:72:a9:3d:7d:d5:ba:f2:74:48:91:03:5f:94:5b:83:45:c9:
2e:8e:4d:dc:fd:5c:06:c4:3c:c6:dc:78:30:25:7c:e3:dd:3d:
c3:36:95:aa:fc:4a:f8:eb:a7:d6:5a:c4:b4:bc:4a:06:8e:13:
f2:e3:26:de:f6:0c:4a:f0:96:8a:96:45:28:aa:f5:35:1f:c6:
0c:2b:64:70:4c:b8:b6:d7:cf:29:e9:b2:c5:86:e7:3a:2c:b4:
3f:64:df:68:77:01:e8:d9:92:01:1b:01:a8:51:29:ba:7a:3f:
76:80:6c:91:dd:ac:e4:1a:c0:c0:52:9f:69:a2:f1:79:a8:00:
c7:0b:91:0d:52:fa:0c:4d:a2:c7:6d:86:30:e0:3b:ab:9f:43:
cd:6a:89:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org