Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/3130332e38352e35362e302f32332d3233203d3e20313530353530.roa
File: 3130332e38352e35362e302f32332d3233203d3e20313530353530.roa (raw, json)
Hash identifier: YzavkEGRvOO/Ym/dYo7OEZDOQE6/0vCOQQsQ/T/dkSA=
Subject key identifier: 8A:E9:46:3A:F8:9D:6B:1F:97:DD:40:A4:B7:E1:29:3F:01:26:25:06
Certificate issuer: /CN=60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A
Certificate serial: 56AA426120EA7577A3AAB821BA826B1E90B47E93
Authority key identifier: 60:BD:54:CF:D6:7B:2F:FF:B1:3B:54:7D:9F:06:CE:DF:8E:B1:19:6A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/3130332e38352e35362e302f32332d3233203d3e20313530353530.roa
Signing time: Fri 03 Mar 2023 13:14:00 +0000
ROA not before: Fri 03 Mar 2023 13:09:00 +0000
ROA not after: Fri 01 Mar 2024 13:14:00 +0000
asID: 150550
IP address blocks: 103.85.56.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:aa:42:61:20:ea:75:77:a3:aa:b8:21:ba:82:6b:1e:90:b4:7e:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A
Validity
Not Before: Mar 3 13:09:00 2023 GMT
Not After : Mar 1 13:14:00 2024 GMT
Subject: CN=8AE9463AF89D6B1F97DD40A4B7E1293F01262506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:f1:66:11:d2:80:7b:0b:87:3d:f2:cc:38:
ae:10:cc:cb:8f:f5:b1:4e:ca:f0:bc:6b:b5:c9:f0:
b0:ca:ef:6d:d0:38:71:79:77:3b:0a:db:df:9e:63:
44:de:ed:3e:8d:f2:ee:b7:62:d2:84:59:fd:eb:e3:
48:f1:f9:05:0b:df:86:90:bd:65:05:ea:15:34:95:
22:03:f8:2e:c3:6c:f2:5a:97:ac:d4:df:5e:4f:db:
c0:f2:09:55:1a:ba:87:df:d9:fc:44:2a:65:f6:a9:
8d:e1:3c:0c:0c:1e:8f:43:c4:f3:9f:83:be:e7:d1:
9b:5e:92:29:46:1e:60:48:30:be:39:8d:13:93:d0:
3f:08:97:da:52:6d:17:15:4e:9e:c2:08:d1:16:61:
f1:c4:82:41:b7:7a:52:61:a5:21:54:41:89:c2:20:
ce:cc:59:33:3d:ba:60:f6:8f:02:58:8b:96:16:26:
0e:5e:c4:2b:a2:20:91:fe:19:e5:74:0f:b3:0f:41:
5b:f4:3a:5d:c2:3b:c1:8b:d2:f9:a5:89:11:52:49:
5f:5b:d9:75:57:23:3c:5c:87:68:e8:b9:15:f4:1f:
97:a8:34:f7:10:f5:cf:c9:52:02:a4:81:7d:02:74:
22:db:66:5f:42:1e:ef:db:a6:c5:6c:3b:bf:ae:89:
ac:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E9:46:3A:F8:9D:6B:1F:97:DD:40:A4:B7:E1:29:3F:01:26:25:06
X509v3 Authority Key Identifier:
keyid:60:BD:54:CF:D6:7B:2F:FF:B1:3B:54:7D:9F:06:CE:DF:8E:B1:19:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/3130332e38352e35362e302f32332d3233203d3e20313530353530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.85.56.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:73:f6:13:b2:5b:f5:ca:23:3b:c4:28:a8:54:1f:9c:81:68:
02:27:b8:a1:a9:97:b1:ea:60:73:70:47:38:42:22:eb:d1:3e:
01:a1:2c:bf:b0:29:2d:3d:25:71:27:ec:ae:bf:7e:02:f1:df:
96:de:5b:be:e3:e2:62:04:3a:77:04:78:f6:68:59:40:32:50:
cd:7e:ca:63:11:05:63:ae:f0:dd:1c:5a:6a:66:67:72:13:ff:
bd:4a:e6:d9:58:4c:72:16:51:52:d9:e1:2d:23:38:bf:33:62:
04:53:22:67:ce:ce:b3:bc:9d:42:52:fb:47:4f:90:d2:f4:61:
35:e4:44:c2:94:8c:9a:40:3f:be:23:c9:47:02:3e:31:cf:41:
6d:93:6a:58:c3:22:66:9a:e9:42:2c:93:3b:60:47:8a:1f:03:
42:88:a2:78:6b:e4:c3:f9:86:9b:d9:37:cd:3f:53:3f:a8:14:
76:ff:0a:b7:03:bc:43:98:f3:83:c7:e6:0a:bd:88:d7:6c:2f:
a1:b0:61:f2:b2:2f:84:e1:89:9c:9e:e0:14:c1:43:79:94:86:
b4:3e:7e:5a:2b:38:8b:27:6a:98:b0:02:2c:2d:e2:95:0e:09:
84:9a:dd:5a:e3:7a:82:e4:ea:96:aa:e3:ca:a1:7f:b5:8c:8e:
fb:99:66:a7
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUVqpCYSDqdXejqrghuoJrHpC0fpMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjBCRDU0Q0ZENjdCMkZGRkIxM0I1NDdEOUYwNkNFREY4
RUIxMTk2QTAeFw0yMzAzMDMxMzA5MDBaFw0yNDAzMDExMzE0MDBaMDMxMTAvBgNV
BAMTKDhBRTk0NjNBRjg5RDZCMUY5N0RENDBBNEI3RTEyOTNGMDEyNjI1MDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/f/FmEdKAewuHPfLMOK4QzMuP
9bFOyvC8a7XJ8LDK723QOHF5dzsK29+eY0Te7T6N8u63YtKEWf3r40jx+QUL34aQ
vWUF6hU0lSID+C7DbPJal6zU315P28DyCVUauoff2fxEKmX2qY3hPAwMHo9DxPOf
g77n0ZtekilGHmBIML45jROT0D8Il9pSbRcVTp7CCNEWYfHEgkG3elJhpSFUQYnC
IM7MWTM9umD2jwJYi5YWJg5exCuiIJH+GeV0D7MPQVv0Ol3CO8GL0vmliRFSSV9b
2XVXIzxch2jouRX0H5eoNPcQ9c/JUgKkgX0CdCLbZl9CHu/bpsVsO7+uiawPAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUiulGOvidax+X3UCkt+EpPwEmJQYwHwYDVR0j
BBgwFoAUYL1Uz9Z7L/+xO1R9nwbO346xGWowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
YTU3NjEzYi04YjA0LTRjNDUtYmVkZi00YWIwNjFkNGRjZjkvMC82MEJENTRDRkQ2
N0IyRkZGQjEzQjU0N0Q5RjA2Q0VERjhFQjExOTZBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjBCRDU0Q0ZENjdCMkZGRkIxM0I1NDdEOUYwNkNFREY4RUIx
MTk2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNTc2MTNiLThiMDQtNGM0NS1i
ZWRmLTRhYjA2MWQ0ZGNmOS8wLzMxMzAzMzJlMzgzNTJlMzUzNjJlMzAyZjMyMzMy
ZDMyMzMyMDNkM2UyMDMxMzUzMDM1MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdVODANBgkqhkiG
9w0BAQsFAAOCAQEAbHP2E7Jb9cojO8QoqFQfnIFoAie4oamXsepgc3BHOEIi69E+
AaEsv7ApLT0lcSfsrr9+AvHflt5bvuPiYgQ6dwR49mhZQDJQzX7KYxEFY67w3Rxa
amZnchP/vUrm2VhMchZRUtnhLSM4vzNiBFMiZ87Os7ydQlL7R0+Q0vRhNeREwpSM
mkA/viPJRwI+Mc9BbZNqWMMiZprpQiyTO2BHih8DQoiieGvkw/mGm9k3zT9TP6gU
dv8KtwO8Q5jzg8fmCr2I12wvobBh8rIvhOGJnJ7gFMFDeZSGtD5+Wis4iydqmLAC
LC3ilQ4JhJrdWuN6guTqlqrjyqF/tYyO+5lmpw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org