Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135382e302f32332d3233203d3e2031333838383836.roa
File: 3130332e37332e3135382e302f32332d3233203d3e2031333838383836.roa (raw, json)
Hash identifier: nymUfN3kcuRnJturO4yMud9taW9JoFoF610SdyUBe40=
Subject key identifier: E6:E8:9D:8E:37:14:8E:D6:81:B3:A1:FD:C1:06:0D:A7:FB:FE:B5:67
Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248
Certificate serial: 311195F84F102B79BE45D0D04938AA26530FEFC7
Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135382e302f32332d3233203d3e2031333838383836.roa
Signing time: Sat 28 Jan 2023 01:12:41 +0000
ROA not before: Sat 28 Jan 2023 01:07:41 +0000
ROA not after: Sat 27 Jan 2024 01:12:41 +0000
asID: 1388886
IP address blocks: 103.73.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:11:95:f8:4f:10:2b:79:be:45:d0:d0:49:38:aa:26:53:0f:ef:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248
Validity
Not Before: Jan 28 01:07:41 2023 GMT
Not After : Jan 27 01:12:41 2024 GMT
Subject: CN=E6E89D8E37148ED681B3A1FDC1060DA7FBFEB567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ad:c4:58:b2:97:b3:c4:ce:63:8e:43:78:1e:
8b:97:ae:ce:8b:11:26:2e:b2:f4:69:e7:80:7e:65:
b0:bc:82:da:a9:5e:38:ef:c8:31:bd:3e:ff:28:56:
d6:1a:76:37:3f:94:f3:d6:02:00:96:d8:77:15:e1:
94:b0:41:fd:fc:95:63:78:ef:fd:2f:a4:83:67:34:
28:cc:a0:17:6d:75:67:ff:f5:28:e0:80:75:0c:ba:
f0:e2:dd:06:74:38:4a:86:4e:0d:2f:f4:bf:a8:34:
b5:16:2b:d1:58:72:9a:2a:0a:74:51:17:51:6d:30:
c4:b3:e9:1b:ef:2a:93:8b:0b:22:81:f0:a9:0c:4f:
5f:55:91:84:64:f3:83:14:92:34:30:55:5c:85:b7:
13:ae:cc:55:8d:4d:25:cc:29:0a:25:36:db:0d:36:
ff:c6:f4:88:ce:ce:ff:d7:a4:de:8d:9f:cd:8f:54:
44:87:ef:65:d5:1c:36:09:96:0c:1e:bb:9a:8f:55:
2b:6b:dc:8a:a1:ca:93:98:b5:e1:e7:ab:bd:19:4f:
f2:c5:86:17:fd:8e:56:51:06:a2:42:70:4e:fb:ff:
fd:90:45:dc:ac:ea:13:bb:ff:e7:c4:31:12:78:9e:
db:bc:0d:76:03:94:09:8d:f6:a6:7c:9b:dd:6d:7e:
50:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E8:9D:8E:37:14:8E:D6:81:B3:A1:FD:C1:06:0D:A7:FB:FE:B5:67
X509v3 Authority Key Identifier:
keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135382e302f32332d3233203d3e2031333838383836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.73.158.0/23
Signature Algorithm: sha256WithRSAEncryption
92:6d:cf:1c:56:07:2c:49:d6:9f:e1:93:24:7f:99:58:69:88:
05:4a:ca:fe:4f:3c:3c:ef:ec:e3:55:bb:72:28:b4:0f:4b:eb:
f8:e8:86:a6:cb:41:7c:a4:1a:03:73:5b:24:16:e1:39:ce:ab:
b1:34:6a:c1:ef:15:a8:e4:d2:d8:9d:a5:36:6d:ca:14:05:1c:
ff:46:b9:c6:cf:7b:11:8a:a0:9a:7f:0b:25:ce:39:68:20:3a:
1a:2d:d0:d7:13:dc:13:89:4d:e3:67:75:ed:8f:96:e5:db:62:
75:92:98:c3:0a:0c:c5:eb:66:60:20:69:b9:6e:3c:af:1d:1f:
21:74:5c:1e:68:11:ba:7d:65:b7:ad:19:e6:11:d2:62:2b:8b:
50:de:e3:4e:84:e0:a1:86:d2:6c:93:80:d6:f3:e2:d5:3b:b7:
8e:e3:8a:c3:c4:66:02:e1:05:a3:7e:03:ff:81:69:24:cc:f5:
10:94:9b:82:ed:c4:fe:a0:74:97:b8:be:8c:df:0b:ca:c3:66:
5f:dd:65:6e:13:f5:b2:bb:68:be:44:89:b5:3e:ba:a8:2d:0a:
84:ed:1a:d0:e4:2a:7e:60:47:8a:35:0e:14:b1:ac:c7:c7:27:
e6:4e:88:05:6c:fd:12:92:62:a5:9e:8c:f4:c1:9e:c2:33:af:
c7:a7:3b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:02:35 2025 by rpki-client