Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f30e27-b95e-4d75-968d-538fb7918829/0/3130332e3139312e35382e302f32342d3234203d3e20313439393039.roa
File: 3130332e3139312e35382e302f32342d3234203d3e20313439393039.roa (raw, json)
Hash identifier: RoWf+cDgnSj8HMe6N3LcDMI4NpY7RbyY/HVuzrDUv5Y=
Subject key identifier: 29:FE:20:17:4F:62:04:E9:12:0D:7F:BB:EF:11:1C:82:EA:DF:69:68
Certificate issuer: /CN=A7DCE7647FA775A7E9DF44EAEFAC52118F3669F8
Certificate serial: 57CD670C935B1A49D961265C7744A5AA71956952
Authority key identifier: A7:DC:E7:64:7F:A7:75:A7:E9:DF:44:EA:EF:AC:52:11:8F:36:69:F8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7DCE7647FA775A7E9DF44EAEFAC52118F3669F8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d3f30e27-b95e-4d75-968d-538fb7918829/0/3130332e3139312e35382e302f32342d3234203d3e20313439393039.roa
Signing time: Mon 21 Nov 2022 04:26:33 +0000
ROA not before: Mon 21 Nov 2022 04:21:33 +0000
ROA not after: Mon 20 Nov 2023 04:26:33 +0000
asID: 149909
IP address blocks: 103.191.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:cd:67:0c:93:5b:1a:49:d9:61:26:5c:77:44:a5:aa:71:95:69:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7DCE7647FA775A7E9DF44EAEFAC52118F3669F8
Validity
Not Before: Nov 21 04:21:33 2022 GMT
Not After : Nov 20 04:26:33 2023 GMT
Subject: CN=29FE20174F6204E9120D7FBBEF111C82EADF6968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:92:20:77:5f:59:8d:b9:29:d0:41:14:5f:64:
e4:79:49:75:4d:3f:cc:10:f9:20:56:2e:35:fa:ac:
1d:b9:8c:3c:5f:44:7c:aa:15:66:37:a2:25:30:b9:
08:e9:e2:11:c4:90:96:96:5f:13:43:a4:47:64:48:
e1:28:cf:98:df:11:7f:5f:46:e2:f3:04:bf:31:9a:
ad:71:0a:c1:ab:39:be:76:4d:1d:71:e6:57:3e:da:
33:84:56:05:a9:ef:14:89:c3:45:6c:72:1a:be:2e:
0d:ab:d6:6a:ee:24:97:2b:ee:78:23:d4:6e:74:b9:
a1:cf:b1:96:e0:62:ba:7f:0c:a1:75:48:b9:28:f3:
ed:6c:b6:f6:9d:05:ba:04:a1:08:83:e8:7f:a1:98:
0e:eb:5f:e5:34:e7:b3:31:dc:8c:7d:3a:37:63:0d:
8e:29:9b:fc:9d:35:b8:a0:d8:8f:e1:6d:d8:f6:d3:
43:38:f1:ac:5a:3c:30:be:8c:84:8f:99:5a:84:4e:
46:bc:3c:a5:34:38:dc:53:d7:8e:71:c9:42:c0:93:
3f:d9:e7:7e:3a:33:f3:ef:f3:dc:37:93:10:3f:b9:
21:cc:37:ca:31:8d:b6:2a:55:46:6b:97:d4:46:28:
b0:4b:eb:db:4b:61:75:2b:ed:23:af:b0:33:d3:44:
df:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FE:20:17:4F:62:04:E9:12:0D:7F:BB:EF:11:1C:82:EA:DF:69:68
X509v3 Authority Key Identifier:
keyid:A7:DC:E7:64:7F:A7:75:A7:E9:DF:44:EA:EF:AC:52:11:8F:36:69:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d3f30e27-b95e-4d75-968d-538fb7918829/0/A7DCE7647FA775A7E9DF44EAEFAC52118F3669F8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7DCE7647FA775A7E9DF44EAEFAC52118F3669F8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f30e27-b95e-4d75-968d-538fb7918829/0/3130332e3139312e35382e302f32342d3234203d3e20313439393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.191.58.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b0:95:fb:eb:f2:92:d1:ff:de:8b:9b:79:4f:cf:8f:e6:68:
3c:bf:0c:43:47:3f:41:94:12:90:be:dc:cd:10:ef:90:69:75:
43:04:c5:19:6c:41:aa:fd:58:22:84:ac:37:37:50:1d:36:28:
e2:63:3e:17:a8:6b:c6:39:a5:c2:52:db:07:9d:fc:7a:2c:bb:
b3:18:0c:71:08:bc:2a:cc:0f:c5:67:ba:76:0d:a6:c8:63:54:
04:dd:c7:d4:13:ba:3c:15:34:6d:04:72:dd:c1:15:1b:59:4c:
92:12:4b:5e:6f:9a:7b:0f:30:51:37:54:2c:0b:b4:f9:93:dc:
9d:ab:41:3a:bc:14:fc:e8:35:20:f7:bf:2a:39:d0:5a:18:d5:
86:23:cf:24:e4:da:76:8f:32:27:2b:b9:33:2e:f0:ef:bf:e0:
32:01:37:8c:d4:4f:49:c5:d3:7d:71:79:f5:3e:10:9a:92:69:
ce:2e:01:08:48:0c:76:4e:18:ef:af:1d:68:2c:7a:3e:4d:5a:
1a:d9:b7:05:7b:fa:50:1a:38:37:62:1d:d6:ba:aa:be:40:4f:
8e:ea:3c:34:53:d8:fe:24:e9:d1:84:e4:4a:6b:9a:4c:65:e0:
85:90:b3:a1:00:e1:3e:88:1a:da:64:6b:72:6e:16:25:cd:b3:
56:cd:33:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org