Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3234203d3e20313431393535.roa
File: 3130332e3136362e3135382e302f32332d3234203d3e20313431393535.roa (raw, json)
Hash identifier: SqmL5QubNtbiaM/O/oWThyn9KidcT/OfMbgDCzirSY0=
Subject key identifier: 2A:2A:7D:C5:BE:54:8C:0C:8B:BC:5F:88:53:9C:18:58:28:43:42:71
Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB
Certificate serial: 56D6E017C72C1F6AEDBCB0068F8201E5F84AC06A
Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3234203d3e20313431393535.roa
Signing time: Fri 03 Mar 2023 04:47:03 +0000
ROA not before: Fri 03 Mar 2023 04:42:03 +0000
ROA not after: Fri 01 Mar 2024 04:47:03 +0000
asID: 141955
IP address blocks: 103.166.158.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:d6:e0:17:c7:2c:1f:6a:ed:bc:b0:06:8f:82:01:e5:f8:4a:c0:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB
Validity
Not Before: Mar 3 04:42:03 2023 GMT
Not After : Mar 1 04:47:03 2024 GMT
Subject: CN=2A2A7DC5BE548C0C8BBC5F88539C185828434271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9b:f9:96:0a:59:56:41:20:6c:e0:07:3a:f4:
a2:6d:6a:af:9e:b9:59:6f:d9:56:04:0a:b7:92:2e:
a5:28:f7:8f:29:d4:da:84:97:93:f4:7b:1e:47:df:
7a:b9:db:ff:2f:76:a6:72:96:35:b3:05:8a:e2:67:
51:77:12:56:9b:49:1d:5d:6d:bf:7d:f8:dd:b6:54:
b2:d2:07:fd:e9:bc:33:69:66:a2:f6:cf:5d:da:80:
46:53:40:26:78:f2:f4:c8:d8:60:96:f1:b0:d7:ea:
8b:b7:5e:95:06:05:66:69:dc:ce:37:79:03:e5:ab:
51:0c:fe:07:9b:a5:4e:fd:94:ff:a8:4f:c0:6b:96:
28:6b:78:24:e5:ac:a7:b1:1c:a2:27:d3:79:18:5f:
5d:26:f6:54:da:93:ba:05:5d:4e:c5:de:a6:6c:39:
5d:38:c9:b8:77:16:65:a1:99:35:cd:c3:54:e7:36:
be:d5:de:cd:d8:e9:c1:b7:8c:b5:9f:bc:d2:6e:c8:
45:6d:82:c8:00:db:e4:50:f3:dd:17:66:43:3c:46:
6e:72:17:fb:a3:01:0b:c2:cb:06:8f:4d:b5:d1:6b:
e1:d6:92:82:0f:52:c4:94:b8:ac:d2:f2:ce:1b:fe:
10:de:39:bd:e8:a1:dd:62:b4:5a:f8:35:d7:4f:b5:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2A:7D:C5:BE:54:8C:0C:8B:BC:5F:88:53:9C:18:58:28:43:42:71
X509v3 Authority Key Identifier:
keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3234203d3e20313431393535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.158.0/23
Signature Algorithm: sha256WithRSAEncryption
52:38:84:e8:93:a0:ed:cb:25:1e:6b:9b:58:20:67:92:53:3e:
65:2b:b1:a7:8f:cd:13:53:4c:e4:cf:2e:91:02:6f:81:db:58:
01:9e:52:89:36:c5:c9:bf:3f:2a:3a:ef:3b:88:1a:6b:25:cf:
12:a4:4a:99:42:c5:76:5d:46:fd:c2:1d:46:bf:d2:15:d3:13:
c4:de:58:1c:4f:5e:e4:36:bd:47:fc:59:5c:de:97:f1:41:7f:
de:25:54:a3:09:85:7c:58:f0:1c:3d:6d:b3:bb:da:b9:bb:8e:
62:fd:0f:3c:1b:3f:84:35:3b:3e:9c:e6:82:fe:77:15:3f:d3:
bb:36:ea:31:de:5f:1e:21:0d:99:b3:96:de:6a:bf:23:23:e5:
26:46:70:5c:46:ee:fc:ae:d0:e2:ec:9f:9f:88:d9:0a:1e:d1:
8d:b4:97:b9:ee:24:5c:f4:e1:e2:24:4e:b6:01:c0:02:6f:c5:
18:28:c0:d9:aa:af:f8:71:b1:98:4c:9e:9c:79:90:9a:6c:97:
21:02:6b:eb:66:d6:93:fe:89:3c:ed:8b:c2:b2:43:02:e5:de:
fd:df:10:21:60:72:dd:17:b7:f9:5a:d8:22:d5:ff:0d:3e:46:
b5:91:cc:06:44:62:76:cc:65:c1:82:5b:22:2c:df:40:14:0e:
63:86:d4:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org