Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/3130332e3232392e3230302e302f32342d3234203d3e203539323835.roa
File: 3130332e3232392e3230302e302f32342d3234203d3e203539323835.roa (raw, json)
Hash identifier: RsE5drurBaSKN6Wtq2p9POaXy786LsxTE9gPsqNLN0E=
Subject key identifier: 8C:EA:1E:E6:D9:51:CE:B6:2D:70:7F:DA:6C:E9:19:FD:37:3E:FF:55
Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Certificate serial: 71352CA2A4CF660A49A462F91E48507E0E9C0AC4
Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/3130332e3232392e3230302e302f32342d3234203d3e203539323835.roa
Signing time: Wed 05 Apr 2023 18:26:40 +0000
ROA not before: Wed 05 Apr 2023 18:21:40 +0000
ROA not after: Wed 03 Apr 2024 18:26:40 +0000
asID: 59285
IP address blocks: 103.229.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:35:2c:a2:a4:cf:66:0a:49:a4:62:f9:1e:48:50:7e:0e:9c:0a:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Validity
Not Before: Apr 5 18:21:40 2023 GMT
Not After : Apr 3 18:26:40 2024 GMT
Subject: CN=8CEA1EE6D951CEB62D707FDA6CE919FD373EFF55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:81:a5:4a:c9:b7:94:cd:ce:b2:eb:16:e2:
4d:d0:b7:99:5d:7a:5a:ae:50:97:2f:7d:9d:1b:cc:
4a:08:a7:03:a6:2a:09:c9:1f:43:8e:c8:d8:16:73:
95:3b:ef:5c:0f:3a:14:2c:13:1b:7e:6f:f4:d7:a3:
69:1a:ab:16:bc:85:ea:40:38:38:60:65:8f:f2:3e:
53:0a:05:f7:53:d9:20:e8:44:29:cc:7f:ec:6a:83:
16:6b:86:cc:ef:1f:52:a8:50:ee:78:d3:ca:b2:97:
a2:e7:54:f3:5f:45:f3:0d:77:e5:92:1d:c4:70:50:
48:ee:22:65:a8:43:17:a0:4e:57:50:36:a1:14:33:
66:a1:3b:7b:8a:3a:7f:bc:69:5a:1e:fe:99:ec:3c:
26:5f:81:82:64:eb:97:f9:32:7e:e8:ed:c5:97:71:
c4:e9:df:ce:9a:fc:66:55:f7:50:b4:3a:fe:8e:fb:
8c:69:b5:eb:d6:60:99:f1:93:10:43:da:97:6e:e0:
e3:25:38:32:12:fd:43:84:4d:95:b2:9e:d9:ad:d0:
22:75:fd:c4:20:57:b7:21:e7:96:f3:a9:ba:75:dc:
f7:c0:d4:1a:c9:7f:50:3b:10:f2:ef:65:d1:7b:30:
10:ce:7a:b0:51:e1:15:f0:df:05:16:ef:2d:2f:16:
cb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EA:1E:E6:D9:51:CE:B6:2D:70:7F:DA:6C:E9:19:FD:37:3E:FF:55
X509v3 Authority Key Identifier:
keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/3130332e3232392e3230302e302f32342d3234203d3e203539323835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.229.200.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:ab:e4:5a:ca:07:8d:01:eb:87:1f:22:59:41:fa:1f:cb:b4:
c1:d9:56:cb:2f:67:e0:8e:d5:f3:91:8c:b0:6e:f1:c7:68:5d:
64:7d:ee:6a:ed:2b:1d:59:d9:ed:e2:9a:18:47:9a:a0:54:e1:
47:a4:8b:92:0b:e1:1a:e2:53:c8:db:3a:ec:98:09:86:aa:b0:
51:cf:77:f1:05:d3:a5:2d:7d:b6:0d:8e:ef:21:34:aa:85:9a:
a6:b9:3a:92:cf:f1:55:6b:7d:95:6a:09:c6:b2:a0:c1:39:e5:
7b:b4:29:d5:12:58:0c:d4:98:51:2f:28:05:04:38:a0:71:5e:
91:2a:86:f8:03:9e:ec:8c:db:53:14:bd:9a:ae:37:f5:70:02:
4d:38:a7:45:45:9a:dd:e7:99:3a:59:f7:6e:95:d8:93:95:bf:
f9:b0:f4:5a:f7:88:c0:59:48:c0:e2:c9:bb:45:70:75:3d:3c:
6b:15:2f:ca:ae:56:6e:6e:51:0c:98:47:20:9e:38:2c:59:d0:
1b:8c:9a:80:8a:c3:44:e6:5f:ba:c4:7b:a4:3d:55:5e:b3:99:
38:12:ea:4c:2d:0d:81:63:ea:29:c2:54:85:60:38:81:a9:b9:
5c:f7:0f:c1:7c:6b:be:de:41:76:cf:03:7f:c4:de:bf:ed:68:
f8:24:b2:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org