Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/dd5008a0-0ac3-498e-8cbf-f3112b91bdf4/0/3130332e32302e35302e302f32342d3234203d3e20313530323138.roa
File: 3130332e32302e35302e302f32342d3234203d3e20313530323138.roa (raw, json)
Hash identifier: 4NhtUVYIXywIrYI6oQGNfxj45B7zga4OZhgJcXMM7kg=
Subject key identifier: 7F:73:AF:BC:06:F4:02:F1:6A:CB:71:A5:C1:01:C6:24:13:08:46:2F
Certificate issuer: /CN=760EC4C41122D8FD3B28CD4BB92AC6C462B70460
Certificate serial: 37A9D04C61055667A84EAE425562A0925F4C66BD
Authority key identifier: 76:0E:C4:C4:11:22:D8:FD:3B:28:CD:4B:B9:2A:C6:C4:62:B7:04:60
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/760EC4C41122D8FD3B28CD4BB92AC6C462B70460.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/dd5008a0-0ac3-498e-8cbf-f3112b91bdf4/0/3130332e32302e35302e302f32342d3234203d3e20313530323138.roa
Signing time: Mon 21 Nov 2022 05:11:46 +0000
ROA not before: Mon 21 Nov 2022 05:06:46 +0000
ROA not after: Mon 20 Nov 2023 05:11:46 +0000
asID: 150218
IP address blocks: 103.20.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:a9:d0:4c:61:05:56:67:a8:4e:ae:42:55:62:a0:92:5f:4c:66:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EC4C41122D8FD3B28CD4BB92AC6C462B70460
Validity
Not Before: Nov 21 05:06:46 2022 GMT
Not After : Nov 20 05:11:46 2023 GMT
Subject: CN=7F73AFBC06F402F16ACB71A5C101C6241308462F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:55:b7:ed:3a:82:d2:c9:d0:7a:dc:5d:f3:b7:
86:9e:35:38:53:b6:fb:ad:38:07:bb:2a:37:58:b4:
80:8a:da:23:2a:b6:7b:55:ea:6c:e1:4f:9b:3d:1e:
a2:8c:99:e5:2b:d2:4a:28:b3:8b:41:32:b0:34:be:
b8:c2:06:1b:69:74:a8:0f:a0:ad:0d:ed:25:39:49:
a1:63:88:fc:c9:fc:2a:b1:97:05:9a:d5:ef:03:cd:
b6:fe:9d:c2:54:d4:75:17:5b:99:d6:ba:a1:1a:52:
32:45:b2:b8:02:c0:e5:5a:bc:aa:b7:1d:49:63:90:
b7:38:6c:1f:e5:7d:3e:17:1a:ed:f5:85:c9:a8:13:
53:83:4a:97:16:80:66:93:67:93:6d:7b:52:08:0f:
e8:bd:d5:47:df:f9:02:0f:ea:56:e8:38:49:0d:8e:
00:20:e9:bc:f2:22:29:52:23:f0:a7:b4:b6:44:a2:
da:cd:85:e1:15:25:ae:c1:d0:91:c5:63:16:3c:dc:
25:cb:ff:ed:e1:a2:9e:76:6d:9a:af:c5:d5:c0:b4:
88:ad:a5:88:62:63:d1:39:fe:90:e3:ed:91:b0:0d:
5f:a0:49:81:fd:3b:98:65:36:68:4f:7b:6c:5a:e6:
65:9c:11:1e:3d:b9:d2:4b:7f:8d:87:58:f1:b2:5d:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:73:AF:BC:06:F4:02:F1:6A:CB:71:A5:C1:01:C6:24:13:08:46:2F
X509v3 Authority Key Identifier:
keyid:76:0E:C4:C4:11:22:D8:FD:3B:28:CD:4B:B9:2A:C6:C4:62:B7:04:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/dd5008a0-0ac3-498e-8cbf-f3112b91bdf4/0/760EC4C41122D8FD3B28CD4BB92AC6C462B70460.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/760EC4C41122D8FD3B28CD4BB92AC6C462B70460.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd5008a0-0ac3-498e-8cbf-f3112b91bdf4/0/3130332e32302e35302e302f32342d3234203d3e20313530323138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.50.0/24
Signature Algorithm: sha256WithRSAEncryption
96:86:95:e8:84:d5:ad:29:01:7d:21:3a:36:50:53:a3:94:9e:
eb:c8:cb:01:ed:96:6e:ea:b0:2c:13:7a:eb:50:20:17:fa:fe:
62:3d:17:b9:8b:51:23:22:3a:39:91:62:df:84:44:87:80:78:
8b:c9:0a:f7:05:c8:64:67:c7:01:ac:3f:df:9a:97:49:fd:35:
20:29:03:e2:e0:96:8d:1b:1a:25:7c:f2:bf:42:da:c2:c3:38:
a2:92:2d:0c:ba:bc:27:92:d4:ad:28:78:45:37:e1:46:05:a9:
22:0c:41:ce:96:de:12:6e:f9:f6:05:c3:16:91:17:2a:34:26:
41:dc:8a:11:35:13:ba:96:a0:52:08:a2:ff:29:b4:dd:f9:c5:
c1:91:86:a0:84:f3:6f:11:ed:0c:be:6d:4c:fd:cf:be:6f:8d:
8c:3d:fb:9b:8d:00:1b:26:0e:ea:cc:23:2a:d9:50:4a:b8:36:
f0:6e:68:62:7e:73:d1:a5:49:82:c4:31:0a:5e:46:b6:28:d1:
9e:b1:a2:07:24:27:d9:f6:a0:be:43:b3:1b:2c:c3:fc:82:d1:
ea:f2:0f:e9:dd:48:62:67:6d:88:9f:2c:97:45:e4:6c:14:2f:
db:78:2c:44:9b:ad:83:bd:95:ee:97:8f:83:89:f1:5c:e4:31:
5a:05:f8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org