Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e2034353233.roa
File: 3130332e3130392e3230362e302f32342d3234203d3e2034353233.roa (raw, json)
Hash identifier: DUn0VfoqegfUTed6INAbd1k2FgEPcSHDM7NQoiwPb0M=
Subject key identifier: 31:5F:DB:1E:2B:1B:E5:7F:77:88:BA:2A:57:37:F9:3B:BC:91:FD:B1
Certificate issuer: /CN=4A243A1EC4991C40D3A6148515E3C51981B425F7
Certificate serial: 4185406E909284218E38E741686055575847DBFD
Authority key identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e2034353233.roa
Signing time: Fri 31 Mar 2023 00:55:12 +0000
ROA not before: Fri 31 Mar 2023 00:50:12 +0000
ROA not after: Fri 29 Mar 2024 00:55:12 +0000
asID: 4523
IP address blocks: 103.109.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:85:40:6e:90:92:84:21:8e:38:e7:41:68:60:55:57:58:47:db:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A243A1EC4991C40D3A6148515E3C51981B425F7
Validity
Not Before: Mar 31 00:50:12 2023 GMT
Not After : Mar 29 00:55:12 2024 GMT
Subject: CN=315FDB1E2B1BE57F7788BA2A5737F93BBC91FDB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:70:06:0b:9a:b9:51:33:7b:b6:74:4a:16:1a:
5c:be:21:d7:74:a9:d4:1b:f2:02:1d:0e:fa:5f:5c:
c5:45:5f:65:fd:2d:fa:b4:35:c3:46:a1:fc:89:36:
02:20:85:0f:8c:7b:7e:fb:fd:c7:ab:c7:93:a3:65:
c2:92:ec:26:1d:a1:1b:54:73:6d:14:39:4a:07:51:
24:f5:5e:f8:5c:4d:9a:13:be:ac:5a:a0:7f:4d:5d:
50:bf:31:36:b6:00:ab:49:b0:57:2c:89:f4:b8:17:
ec:dc:4f:6f:46:fd:d0:1c:b5:48:4d:69:8f:9e:8d:
92:80:7f:f9:c3:24:f7:ed:96:dc:16:8f:4f:29:19:
df:7b:b9:78:f6:44:a9:f4:b7:ce:59:e6:9c:98:59:
9d:19:ee:4f:7f:43:cf:31:b4:35:50:af:03:d0:33:
fe:ac:87:c3:6f:fa:a8:07:7d:01:54:27:bb:54:db:
28:04:37:18:3a:d0:20:8f:c1:9d:d1:ee:f8:3b:d5:
b2:f0:eb:81:7f:9a:1d:9d:f7:d0:27:3a:32:e5:0c:
f7:bb:9b:8d:6b:f6:55:77:e1:ad:fd:f3:22:e9:fb:
c8:25:c2:88:d6:b0:cc:c1:c3:bb:56:b4:e8:f5:15:
6c:4b:f7:6d:24:da:81:0b:18:e8:bb:c4:5b:a2:00:
f1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:5F:DB:1E:2B:1B:E5:7F:77:88:BA:2A:57:37:F9:3B:BC:91:FD:B1
X509v3 Authority Key Identifier:
keyid:4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e2034353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.109.206.0/24
Signature Algorithm: sha256WithRSAEncryption
81:cf:dc:f6:a4:ab:d1:32:af:c8:f6:fd:39:2d:41:6b:6e:07:
a2:05:b5:32:b7:df:0a:5d:c6:40:e3:e2:fa:0d:9f:1f:a9:8e:
94:46:f4:46:92:31:0d:b7:57:7c:97:79:89:ea:ce:a6:36:cf:
95:c5:cb:86:b2:f5:aa:64:e6:28:32:c6:30:4c:95:ce:0e:a2:
ad:70:4d:b5:83:4b:a2:40:f3:24:b7:18:69:2d:83:eb:4f:aa:
fd:f8:81:74:06:02:8e:ba:4a:05:2d:ad:f4:03:6b:75:12:84:
28:1d:e0:5e:d9:ac:22:8b:c5:90:8a:ae:c8:63:05:cc:aa:87:
f1:d3:c7:1d:bf:44:0c:c6:88:b1:9f:42:5e:bf:53:b1:05:bc:
d3:8a:91:ed:5c:46:b6:61:a3:63:cd:19:15:ee:97:66:97:37:
b2:76:0f:80:f7:f2:c4:fa:0b:8a:99:ce:81:28:06:c2:c2:c8:
e0:2b:e0:27:ce:b0:30:a6:df:85:43:07:cc:aa:69:45:4e:9e:
18:2d:f2:73:23:8e:a2:2f:56:b4:82:c1:15:d4:1b:37:8d:bd:
32:ab:54:c5:f0:af:cc:f7:df:fa:9c:8b:5f:4d:46:30:04:43:
32:d5:f8:fe:c7:93:5a:b6:18:7b:fe:ad:ba:9e:7c:92:c4:77:
c6:44:6a:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org