Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/3130332e3138392e3133382e302f32332d3233203d3e20313439373532.roa
File: 3130332e3138392e3133382e302f32332d3233203d3e20313439373532.roa (raw, json)
Hash identifier: xegX6uiGbngzmmVk/CQB5kJtWEcvL2pyTAWEvhVUrtI=
Subject key identifier: AA:92:28:8A:16:40:AC:BF:A3:69:FD:65:B3:83:A7:B3:23:79:8D:92
Certificate issuer: /CN=27575AEBC443417C31FDF4A1DDFE016557A835F4
Certificate serial: 50DF4657FD4F9992D29D86D5D1F5C7099D9914F3
Authority key identifier: 27:57:5A:EB:C4:43:41:7C:31:FD:F4:A1:DD:FE:01:65:57:A8:35:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27575AEBC443417C31FDF4A1DDFE016557A835F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/3130332e3138392e3133382e302f32332d3233203d3e20313439373532.roa
Signing time: Fri 09 Dec 2022 06:20:29 +0000
ROA not before: Fri 09 Dec 2022 06:15:29 +0000
ROA not after: Fri 08 Dec 2023 06:20:29 +0000
asID: 149752
IP address blocks: 103.189.138.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:df:46:57:fd:4f:99:92:d2:9d:86:d5:d1:f5:c7:09:9d:99:14:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27575AEBC443417C31FDF4A1DDFE016557A835F4
Validity
Not Before: Dec 9 06:15:29 2022 GMT
Not After : Dec 8 06:20:29 2023 GMT
Subject: CN=AA92288A1640ACBFA369FD65B383A7B323798D92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6d:ab:12:66:85:a6:2e:31:07:71:63:f9:f1:
c4:9a:8e:38:ed:c0:bb:93:24:ab:29:c7:fe:b2:e6:
f8:42:3f:23:93:b8:16:0e:b6:14:ad:d3:6e:ce:8b:
fa:99:e1:50:a2:0c:9d:91:a5:60:55:2a:b4:c8:15:
03:ef:79:a5:57:3e:15:88:63:59:aa:aa:54:63:c2:
8d:66:5b:3e:91:66:64:18:87:50:e2:64:22:ea:d2:
e7:76:0e:ce:c3:7c:af:91:41:a3:56:a0:45:f5:a5:
e7:39:eb:2d:b4:c5:36:27:26:4f:0c:d3:4b:3e:9a:
00:ac:bb:61:a2:3d:15:71:a0:9c:46:d4:72:b1:fe:
a8:dc:4a:1d:96:95:38:2c:0c:7c:71:0a:e8:6f:5a:
d9:15:7f:69:d5:f6:63:d2:8f:6d:2b:a4:6d:a0:35:
64:2e:7e:bb:73:0d:97:cd:6e:87:7f:86:3c:2c:f5:
ce:56:d5:75:cf:8e:03:64:52:8b:3f:d2:42:9c:83:
e3:3e:d2:31:12:70:6c:98:aa:15:23:a0:72:11:ff:
9d:23:a3:58:66:f5:93:f4:4a:01:96:85:28:ee:f5:
dd:80:6e:4f:c8:a2:65:d4:16:63:68:18:53:48:98:
9c:a7:43:7c:22:dd:cd:e4:28:13:3f:45:55:d9:8f:
66:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:92:28:8A:16:40:AC:BF:A3:69:FD:65:B3:83:A7:B3:23:79:8D:92
X509v3 Authority Key Identifier:
keyid:27:57:5A:EB:C4:43:41:7C:31:FD:F4:A1:DD:FE:01:65:57:A8:35:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/27575AEBC443417C31FDF4A1DDFE016557A835F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27575AEBC443417C31FDF4A1DDFE016557A835F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/3130332e3138392e3133382e302f32332d3233203d3e20313439373532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.138.0/23
Signature Algorithm: sha256WithRSAEncryption
56:6d:61:49:58:15:37:bd:4d:54:d6:d3:2f:80:2b:67:40:1e:
10:57:aa:ce:9a:03:ae:18:70:f6:12:d2:64:33:36:1b:c4:1e:
c9:d2:30:ce:ba:2a:25:24:33:57:3c:15:59:d7:bc:af:3b:7b:
ba:2c:4d:a3:b3:e7:20:8d:a2:3b:64:cb:04:87:20:14:96:fb:
1d:b4:8b:94:f1:c0:09:2d:57:69:38:c7:8b:aa:f5:dd:78:01:
7d:dc:84:a1:d4:a6:9d:ea:ae:d2:6d:e3:2f:a9:b3:80:d4:e9:
58:e8:8a:f0:74:e4:f4:25:34:61:1a:5c:c8:60:e2:e2:92:5d:
9e:4e:03:88:da:f5:31:42:cb:86:ba:38:53:33:24:e3:5c:7b:
be:11:96:aa:0e:b9:18:f0:50:9c:3f:ed:d0:33:c8:d9:83:5b:
c6:dc:6f:93:38:ee:94:03:84:1a:73:2e:9f:a4:fc:3e:5f:7e:
5a:00:48:f5:37:58:90:33:2c:5f:81:46:f3:b3:6d:1d:2d:60:
09:53:e3:62:6a:b6:e7:4f:b5:ce:53:47:c9:8e:f1:eb:4e:90:
f7:d9:37:3e:91:b9:ac:79:66:59:14:17:07:a9:8b:19:1d:16:
75:d8:43:ad:2f:88:1d:e5:52:e0:88:d6:98:b1:38:59:4e:b0:
0d:4c:55:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org