Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230372e302f32342d3234203d3e2034353233.roa
File: 3130332e3130392e3230372e302f32342d3234203d3e2034353233.roa (raw, json)
Hash identifier: QmfcLZEULWGsNxwc1FE4jWkHkADQyOnUODMMfiIeX+g=
Subject key identifier: C2:10:12:0A:5B:82:A5:BA:AF:78:A6:0B:34:D4:53:A7:66:B9:F7:9E
Certificate issuer: /CN=4A243A1EC4991C40D3A6148515E3C51981B425F7
Certificate serial: 4F73B06593CB86591B9758FE88F17E2E1FA3CD23
Authority key identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230372e302f32342d3234203d3e2034353233.roa
Signing time: Fri 31 Mar 2023 00:55:22 +0000
ROA not before: Fri 31 Mar 2023 00:50:22 +0000
ROA not after: Fri 29 Mar 2024 00:55:22 +0000
asID: 4523
IP address blocks: 103.109.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:73:b0:65:93:cb:86:59:1b:97:58:fe:88:f1:7e:2e:1f:a3:cd:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A243A1EC4991C40D3A6148515E3C51981B425F7
Validity
Not Before: Mar 31 00:50:22 2023 GMT
Not After : Mar 29 00:55:22 2024 GMT
Subject: CN=C210120A5B82A5BAAF78A60B34D453A766B9F79E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:c9:d7:d4:ed:55:e5:18:01:75:7c:2a:10:
8b:ab:45:21:52:ad:4a:89:22:99:0d:db:b0:9c:8c:
4f:2c:e4:e6:1a:f7:5f:50:a6:d5:f5:bc:5f:4c:a4:
1b:b0:8e:ed:14:b1:b4:a8:85:c3:de:98:b3:89:08:
b1:02:36:09:97:67:6d:45:94:fc:34:db:55:9c:cf:
e0:4b:63:7f:ba:9b:51:5f:57:96:21:cd:f9:49:e0:
d3:cb:1b:e4:c4:7a:84:d9:20:cb:9f:26:da:8b:0b:
ff:ca:77:19:53:11:e9:25:32:82:24:ed:37:f8:b7:
77:43:c3:a5:53:5d:65:c9:e6:17:3c:c3:fd:8b:f6:
57:56:3c:b2:ff:af:ba:a1:b1:d4:a6:de:f3:9b:b8:
54:cc:2f:e4:a2:d9:ad:1e:87:b9:af:ec:c8:16:60:
1a:d2:c3:16:3e:55:e1:66:24:97:df:22:e4:22:f7:
94:cf:46:e4:51:16:e9:5b:77:ec:03:97:77:2f:da:
65:13:e8:75:07:da:67:c1:73:84:8d:21:ac:77:14:
4d:fc:7e:1a:75:b5:41:5f:65:cd:63:39:20:fd:fe:
fd:d2:99:32:c3:3e:c0:f4:3b:47:80:f0:dc:9b:0d:
9c:2e:1d:be:5f:23:44:bf:9d:76:89:0c:b8:20:be:
42:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:10:12:0A:5B:82:A5:BA:AF:78:A6:0B:34:D4:53:A7:66:B9:F7:9E
X509v3 Authority Key Identifier:
keyid:4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230372e302f32342d3234203d3e2034353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.109.207.0/24
Signature Algorithm: sha256WithRSAEncryption
01:0e:9b:15:63:5b:1d:13:82:46:51:bd:a9:4f:44:e1:2c:47:
cc:50:76:dc:82:af:a4:d3:32:51:7e:d8:d5:aa:34:9d:e0:46:
57:03:0e:83:ec:bc:51:fd:7a:7c:06:86:57:1f:b6:30:42:f1:
c7:92:8b:48:e1:c8:a1:40:b9:ca:d3:b8:73:48:a0:7f:c4:7c:
c6:d6:7f:c9:25:67:b4:a6:c4:af:94:44:18:fe:20:03:a6:fd:
4a:13:d0:df:90:0d:68:4d:c8:c4:92:04:e5:75:bf:d3:4f:24:
0e:77:99:ca:6b:db:d9:d5:f3:fa:ba:33:c4:05:38:62:97:62:
17:7b:b9:2a:8f:1a:45:1a:d8:a7:c5:26:00:72:de:dc:be:be:
c4:4b:29:a1:46:5f:3b:81:ca:8a:26:c6:a3:48:4f:77:cd:65:
dd:2e:42:80:85:f4:d2:c7:5a:32:49:a0:03:b2:8b:c1:e3:d1:
2c:bc:1d:32:ba:82:08:3f:51:6b:9b:74:8d:16:10:26:46:db:
0c:ba:af:7b:5f:c3:93:2c:94:ec:d7:c0:35:5c:3f:d4:d3:01:
15:f8:ff:32:08:34:4e:e4:45:fc:50:8a:ab:c4:d2:fb:3c:3b:
b6:8f:cc:e3:7f:52:ca:31:78:c7:14:ba:54:b4:02:47:f0:1e:
ba:65:70:e6
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUT3OwZZPLhlkbl1j+iPF+Lh+jzSMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4
MUI0MjVGNzAeFw0yMzAzMzEwMDUwMjJaFw0yNDAzMjkwMDU1MjJaMDMxMTAvBgNV
BAMTKEMyMTAxMjBBNUI4MkE1QkFBRjc4QTYwQjM0RDQ1M0E3NjZCOUY3OUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC//snX1O1V5RgBdXwqEIurRSFS
rUqJIpkN27CcjE8s5OYa919QptX1vF9MpBuwju0UsbSohcPemLOJCLECNgmXZ21F
lPw021Wcz+BLY3+6m1FfV5YhzflJ4NPLG+TEeoTZIMufJtqLC//KdxlTEeklMoIk
7Tf4t3dDw6VTXWXJ5hc8w/2L9ldWPLL/r7qhsdSm3vObuFTML+Si2a0eh7mv7MgW
YBrSwxY+VeFmJJffIuQi95TPRuRRFulbd+wDl3cv2mUT6HUH2mfBc4SNIax3FE38
fhp1tUFfZc1jOSD9/v3SmTLDPsD0O0eA8NybDZwuHb5fI0S/nXaJDLggvkI7AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUwhASCluCpbqveKYLNNRTp2a5954wHwYDVR0j
BBgwFoAUSiQ6HsSZHEDTphSFFePFGYG0JfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
Yzg4OTJlYi1kZGMwLTRjYjYtOTU3Yy1iNjUzZjI4YmJmMzkvMC80QTI0M0ExRUM0
OTkxQzQwRDNBNjE0ODUxNUUzQzUxOTgxQjQyNUY3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4MUI0
MjVGNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjODg5MmViLWRkYzAtNGNiNi05
NTdjLWI2NTNmMjhiYmYzOS8wLzMxMzAzMzJlMzEzMDM5MmUzMjMwMzcyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdtzzANBgkqhkiG
9w0BAQsFAAOCAQEAAQ6bFWNbHROCRlG9qU9E4SxHzFB23IKvpNMyUX7Y1ao0neBG
VwMOg+y8Uf16fAaGVx+2MELxx5KLSOHIoUC5ytO4c0igf8R8xtZ/ySVntKbEr5RE
GP4gA6b9ShPQ35ANaE3IxJIE5XW/008kDneZymvb2dXz+rozxAU4YpdiF3u5Ko8a
RRrYp8UmAHLe3L6+xEspoUZfO4HKiibGo0hPd81l3S5CgIX00sdaMkmgA7KLwePR
LLwdMrqCCD9Ra5t0jRYQJkbbDLqve1/DkyyU7NfANVw/1NMBFfj/Mgg0TuRF/FCK
q8TS+zw7to/M439SyjF4xxS6VLQCR/AeumVw5g==
-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:28 2025 by rpki-client