Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e2039343232.roa
File: 3130332e3138342e31362e302f32342d3234203d3e2039343232.roa (raw, json)
Hash identifier: kDv/K46ptshalDs/oDqWOfVUeTp/tTew+rOCveXv2TQ=
Subject key identifier: AF:13:E0:DE:F2:75:6B:F7:88:78:7F:A4:63:FE:72:C7:C4:12:3A:19
Certificate issuer: /CN=C37B0700A782E6CCEE7D187B10AAF240353AB253
Certificate serial: 6A4564C0B22769785A964E0E08BCF786F934FCB5
Authority key identifier: C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e2039343232.roa
Signing time: Wed 23 Mar 2022 13:39:48 +0000
ROA not before: Wed 23 Mar 2022 13:34:48 +0000
ROA not after: Wed 22 Mar 2023 13:39:48 +0000
asID: 9422
IP address blocks: 103.184.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:45:64:c0:b2:27:69:78:5a:96:4e:0e:08:bc:f7:86:f9:34:fc:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C37B0700A782E6CCEE7D187B10AAF240353AB253
Validity
Not Before: Mar 23 13:34:48 2022 GMT
Not After : Mar 22 13:39:48 2023 GMT
Subject: CN=AF13E0DEF2756BF788787FA463FE72C7C4123A19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:af:b9:e0:9f:8d:af:ff:66:f8:45:50:26:86:
7f:b4:2e:86:3c:cb:12:f7:96:29:af:1d:77:b5:28:
29:79:68:c0:a9:23:2a:d9:48:2e:e0:16:33:89:a9:
ef:4b:a5:10:32:14:9c:56:29:3b:55:3f:7d:ae:8b:
85:0e:cc:0c:91:d7:d7:54:a4:0c:27:f7:13:69:46:
35:25:b1:5b:00:a1:88:bb:2a:96:36:ba:d3:28:45:
a0:76:f4:ba:59:96:55:51:db:f7:40:96:0c:b1:7c:
b6:7e:b8:8d:c0:b3:99:dc:bb:33:30:eb:cf:fd:e2:
b5:6a:7a:a5:06:c4:bb:ea:26:ae:a1:d4:c0:80:57:
72:75:b7:cd:ad:af:6c:0e:97:56:4a:8f:8d:0c:ba:
8e:14:94:c3:84:8e:a7:e5:5a:a2:c8:5c:ed:b1:bf:
cf:73:ac:21:66:52:92:75:c1:a2:57:3b:70:9b:e0:
4c:ef:eb:6a:77:73:54:c6:50:3f:d7:ba:79:0e:23:
50:0d:34:05:23:b9:92:dc:7f:22:7e:82:ff:e5:95:
a8:a0:31:7d:5a:ff:be:c6:b0:94:44:3f:3e:fb:85:
4a:90:65:09:70:08:c2:90:72:37:f0:b1:52:f7:3a:
e9:fa:8f:8e:34:2d:5a:a8:f6:32:9f:da:47:f4:ae:
af:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:13:E0:DE:F2:75:6B:F7:88:78:7F:A4:63:FE:72:C7:C4:12:3A:19
X509v3 Authority Key Identifier:
keyid:C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e2039343232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.16.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ba:7e:c9:d9:69:ca:1b:5d:51:b9:60:87:1d:fb:01:4f:e3:
06:7b:43:44:83:2d:2d:ee:21:d9:80:18:8e:23:26:54:76:26:
2f:fa:fa:a6:bc:c1:8a:2a:0c:64:d0:56:27:0a:2c:02:fc:b7:
35:d9:42:eb:4d:6c:cf:0e:57:70:18:5d:1d:23:88:2b:05:b9:
21:50:5a:ef:a7:06:0b:5e:f0:9b:a6:7f:20:d7:9c:6d:a2:c5:
7c:5c:f2:3a:5e:5a:dc:7c:b0:67:c6:01:98:14:d5:14:ac:f1:
e1:46:8d:ca:78:a9:4f:b7:57:99:b5:15:4a:ce:30:be:a6:41:
00:b9:e8:d4:04:91:99:cb:52:db:44:8d:93:73:13:96:03:7f:
d3:1a:bd:aa:d8:b1:69:49:e4:75:d6:48:c0:59:4f:8e:62:d7:
ec:04:d2:a4:80:b3:01:36:4e:5d:fb:24:b9:c0:1b:14:b7:10:
96:6f:54:42:40:ba:73:05:4e:a1:2b:bb:ae:ef:5c:fb:94:4c:
2d:0a:11:07:27:cc:ab:e3:c9:5e:41:db:25:67:fd:c5:78:92:
60:2d:27:ff:83:2c:a6:d7:44:f6:9e:36:aa:15:74:2a:fd:b4:
00:40:d7:a8:40:b5:23:f9:aa:32:4b:77:99:db:34:f1:d4:4d:
ee:b6:8c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:35:29 2025 by rpki-client