Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32322d3234203d3e20313331373338.roa
File: 3130332e32312e39322e302f32322d3234203d3e20313331373338.roa (raw, json)
Hash identifier: dLI/5jMX+LPZv1f/syfETkrcjmTeA8ZJtBUk+LApE0Y=
Subject key identifier: 90:1C:AC:63:2D:CF:74:C5:B4:19:50:6A:08:20:A9:3F:75:0D:CB:A3
Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5
Certificate serial: 3C38BF04B601B5A7A1B11A5575E02338248AECE9
Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32322d3234203d3e20313331373338.roa
Signing time: Mon 25 Apr 2022 06:19:36 +0000
ROA not before: Mon 25 Apr 2022 06:14:36 +0000
ROA not after: Mon 24 Apr 2023 06:19:36 +0000
asID: 131738
IP address blocks: 103.21.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:38:bf:04:b6:01:b5:a7:a1:b1:1a:55:75:e0:23:38:24:8a:ec:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5
Validity
Not Before: Apr 25 06:14:36 2022 GMT
Not After : Apr 24 06:19:36 2023 GMT
Subject: CN=901CAC632DCF74C5B419506A0820A93F750DCBA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bb:ee:d9:0a:8c:6c:7d:88:76:14:41:f9:12:
76:1a:64:23:87:50:d7:41:c0:ac:86:ca:7d:d5:57:
34:8b:50:d4:37:f8:be:ee:ef:01:f8:86:29:fe:67:
f6:dc:c6:52:aa:93:93:9a:97:95:0a:bb:4b:8c:0c:
28:48:9c:ba:08:63:c1:94:60:5c:96:f6:92:11:d6:
1d:d4:b2:a0:5f:90:b6:d3:8c:07:db:0f:e8:b8:29:
ad:ac:23:fb:26:03:e5:cf:b4:be:e5:f2:a7:53:07:
26:ec:f1:55:4c:94:84:a8:45:94:0a:38:b4:e1:d8:
8f:61:d4:20:42:90:2c:a2:ac:c4:54:9a:46:6d:e4:
88:1a:e3:99:e8:cd:f1:b0:79:4e:c2:11:a6:1b:8e:
9b:87:d4:8e:51:e5:59:bd:4a:86:38:d4:d2:9b:71:
3e:87:37:ea:22:81:1e:9b:7c:9e:e5:52:b4:2e:3d:
08:1e:3b:7c:2a:a5:2b:3f:38:eb:9f:f4:47:e6:2c:
5f:e1:26:f5:6a:41:37:8d:1d:b6:b7:c5:28:79:cd:
f7:cd:e5:93:43:74:bd:fb:44:44:4e:53:8a:77:81:
15:fd:12:3b:1f:7b:3a:1d:3c:71:9e:4f:ec:f5:72:
46:ba:1d:d7:25:d0:4a:ea:46:9a:d1:24:26:d3:d1:
16:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:1C:AC:63:2D:CF:74:C5:B4:19:50:6A:08:20:A9:3F:75:0D:CB:A3
X509v3 Authority Key Identifier:
keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32322d3234203d3e20313331373338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.21.92.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:a7:be:f4:d8:b0:14:d6:75:49:fe:10:25:e5:d3:05:96:37:
1d:36:de:af:30:68:64:e5:ad:70:30:5b:2d:b3:7a:67:4c:3c:
ae:f3:5f:03:28:da:f9:90:8f:a5:3c:fd:e9:de:dd:49:30:3e:
cd:eb:d7:de:b9:3a:92:1e:3a:55:03:cb:46:7a:71:c0:80:58:
4f:1b:46:d4:e9:57:58:6e:b1:3f:2d:b2:77:ea:5c:37:8c:f0:
64:9a:82:60:cd:cb:19:88:44:63:a3:0b:15:c9:52:c5:c9:27:
7a:70:1d:5f:ba:f6:d0:03:8b:8f:6c:da:00:66:e6:c6:a7:8b:
2a:3f:65:cc:59:51:22:ec:8c:35:f2:70:23:c6:97:a8:db:4d:
76:4c:bf:d7:ef:67:30:4e:b4:f6:e3:e2:55:0d:1b:a2:69:92:
0b:72:4f:5a:98:62:b7:2a:43:2d:25:7f:e3:da:2d:81:98:4a:
36:02:d9:ed:42:2c:5e:64:87:a3:0c:f1:c9:0d:a5:3d:7d:4d:
ac:02:65:c5:b8:07:57:34:8b:e9:15:d7:2d:94:c7:b7:cf:d2:
5c:71:62:3c:3b:18:9e:08:28:d7:00:9c:c8:fb:a7:fc:17:c7:
2d:6d:cc:75:b8:58:fb:9b:f1:ee:4d:52:18:a7:35:1b:5c:b5:
c0:c7:4d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org