Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa
File: 3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa (raw, json)
Hash identifier: mDDY3PFymhWz6rdVgkXg6JR02ZAETg1dKF/4ujZfY8Q=
Subject key identifier: 3B:CC:DB:10:07:07:23:54:BD:F4:FC:9A:21:1C:7D:ED:84:8E:28:0A
Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452
Certificate serial: 6E7E5BC0258F67BEF788B58E2EF9F43EFAB5A1E7
Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa
Signing time: Mon 22 Aug 2022 09:52:19 +0000
ROA not before: Mon 22 Aug 2022 09:47:19 +0000
ROA not after: Mon 21 Aug 2023 09:52:19 +0000
asID: 142365
IP address blocks: 103.170.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:7e:5b:c0:25:8f:67:be:f7:88:b5:8e:2e:f9:f4:3e:fa:b5:a1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452
Validity
Not Before: Aug 22 09:47:19 2022 GMT
Not After : Aug 21 09:52:19 2023 GMT
Subject: CN=3BCCDB1007072354BDF4FC9A211C7DED848E280A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:78:80:ee:3c:eb:18:4b:4b:d8:38:06:e4:85:
ce:9e:d9:d5:a9:9c:b3:ab:39:ea:3f:a8:9a:32:1c:
29:79:23:ee:af:89:3a:17:88:ba:38:3f:d0:2c:70:
0e:50:b2:ed:bc:46:86:89:5d:6a:9f:f9:b9:ea:07:
e1:d9:ac:4d:dd:d5:31:f7:8a:48:cb:6f:7f:db:bf:
68:10:05:19:70:53:80:da:a6:72:92:b1:a0:9a:0e:
34:00:cb:0a:10:8a:bb:4c:f0:e6:89:95:da:bb:17:
a9:80:74:7b:9d:a9:59:32:d4:05:25:92:60:84:90:
bd:d4:ca:f4:b1:18:04:74:da:3b:c2:9c:f9:ea:9c:
9f:76:80:44:28:c3:9d:4e:0f:16:2a:46:b4:9e:76:
13:20:e6:08:8c:ab:0e:37:ac:08:e0:4c:7c:8b:8b:
1e:86:0f:01:98:6d:e7:ce:6f:97:4c:21:d7:4b:93:
a9:69:d2:72:a2:d4:ce:d9:ec:9a:de:19:2a:ef:cd:
17:55:37:96:51:6d:a9:1a:2b:9f:f7:8a:de:c1:05:
4d:d9:95:75:4d:7f:0d:90:3e:14:22:94:9c:94:2f:
6d:5c:2e:5a:d8:42:d9:09:f1:d0:3b:05:56:af:ca:
d8:de:af:69:62:35:86:a2:4a:60:5c:b4:4e:b8:e5:
57:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CC:DB:10:07:07:23:54:BD:F4:FC:9A:21:1C:7D:ED:84:8E:28:0A
X509v3 Authority Key Identifier:
keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.186.0/23
Signature Algorithm: sha256WithRSAEncryption
82:d0:04:d4:e8:b8:3e:e9:03:75:16:92:f3:81:2b:0b:78:2f:
85:ad:6a:ea:a2:1a:b2:1a:bf:28:19:5f:8a:1e:1d:4f:3c:cb:
e7:97:83:9e:d5:b3:3a:45:f7:f3:0d:fd:01:50:3c:3d:d7:e5:
07:6a:64:13:eb:a6:b2:e6:a2:8a:48:ad:19:65:1e:6a:a8:ee:
d0:a8:b0:1b:53:9b:37:97:ab:6a:e7:9e:67:b1:d6:d7:c9:b1:
1d:e1:c7:e8:72:1d:b6:28:3e:a8:a4:f3:07:25:af:af:6c:2f:
97:22:f9:c0:60:0c:31:c2:b9:15:f0:ca:23:58:3c:39:59:af:
7d:61:0b:d0:c4:78:c0:95:10:41:32:45:ad:56:e5:f7:01:5c:
ec:9f:42:42:4d:54:30:01:55:8d:f3:96:e7:d9:98:c5:fc:23:
6a:f7:fd:c2:10:99:77:80:c5:36:eb:12:d0:1d:df:3e:0c:a9:
74:05:61:fa:9d:ba:d3:d6:72:9e:c8:a5:5e:36:cf:e2:7a:56:
2d:85:4e:88:65:cf:77:b1:4a:ad:0a:13:ea:18:db:b7:04:e3:
4d:17:62:56:a3:a6:7d:4c:ba:fc:ed:47:57:ca:37:d6:38:8c:
e0:23:5b:a9:00:8e:4d:bf:f9:74:65:7f:cd:3c:61:bf:b7:ba:
09:d8:2a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org