Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134362e302f32332d3233203d3e20313530393836.roa
File: 3130332e3139332e3134362e302f32332d3233203d3e20313530393836.roa (raw, json)
Hash identifier: xbTyya8iCZ8LLKxXlZhU7HfAo77y+P42flYUoi5VCYE=
Subject key identifier: 5B:36:49:B5:2E:9D:09:68:04:E6:2E:D5:15:DC:2B:BB:44:8E:3B:03
Certificate issuer: /CN=67749A065BBCF1E57768F4207E1B2FE788604D47
Certificate serial: 5B2B411ADD1F825F67331BB10BD8D0B0A193AEFD
Authority key identifier: 67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134362e302f32332d3233203d3e20313530393836.roa
Signing time: Mon 26 Jun 2023 16:13:33 +0000
ROA not before: Mon 26 Jun 2023 16:08:33 +0000
ROA not after: Mon 24 Jun 2024 16:13:33 +0000
asID: 150986
IP address blocks: 103.193.146.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:2b:41:1a:dd:1f:82:5f:67:33:1b:b1:0b:d8:d0:b0:a1:93:ae:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67749A065BBCF1E57768F4207E1B2FE788604D47
Validity
Not Before: Jun 26 16:08:33 2023 GMT
Not After : Jun 24 16:13:33 2024 GMT
Subject: CN=5B3649B52E9D096804E62ED515DC2BBB448E3B03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2f:91:9d:71:96:c4:b4:0c:12:72:4e:8f:44:
68:7c:8d:c5:eb:14:5a:d7:06:23:c1:03:93:fc:85:
ec:51:4d:7a:1f:e2:09:ba:5a:f5:ef:c7:5a:56:d9:
49:b9:9c:82:3f:92:99:b1:c9:6d:76:f7:cc:e6:1d:
83:f2:bb:2e:86:bb:c4:9b:21:e3:92:fa:37:c9:19:
51:f5:6f:c3:1f:e6:cf:d9:64:ce:5c:2d:13:59:c0:
10:0d:af:99:37:4a:3d:e6:a8:28:b6:2b:96:9d:f4:
12:2b:91:f0:cb:d1:aa:f5:00:2a:91:50:9a:84:e8:
a6:90:10:1b:dc:a7:b4:79:f6:b4:39:f8:81:ec:be:
38:57:34:06:ad:b9:9f:ac:64:f2:62:bc:45:61:0d:
0f:dc:02:9d:f3:25:8a:12:c5:bc:21:3a:5a:65:d0:
f3:7e:4d:ad:52:74:24:79:48:1c:8f:43:d5:3c:c9:
73:36:c3:7d:29:1a:63:be:e6:22:82:e2:6c:d2:3d:
19:b7:8e:09:c2:7f:d6:6d:90:f1:1a:c6:9d:14:28:
08:3d:0f:74:1d:fa:fc:c4:e8:8b:14:5e:27:dc:ed:
50:b3:67:1e:25:a1:16:61:d0:46:71:5f:ee:4b:44:
b1:fc:ae:f0:76:d3:4a:99:fc:18:26:ba:de:fb:33:
bd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:36:49:B5:2E:9D:09:68:04:E6:2E:D5:15:DC:2B:BB:44:8E:3B:03
X509v3 Authority Key Identifier:
keyid:67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134362e302f32332d3233203d3e20313530393836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.193.146.0/23
Signature Algorithm: sha256WithRSAEncryption
ca:32:ee:06:02:10:d7:63:b1:ac:d5:b0:15:fa:ee:43:bc:69:
d4:a3:1c:33:72:8c:a3:a3:5b:3e:54:5a:a0:dc:a8:05:75:e5:
aa:65:bf:5a:a7:c4:bc:61:fb:26:2a:91:cb:70:8a:2f:3f:bf:
25:1a:51:13:42:e6:04:c4:0d:ae:0d:0b:1b:70:a3:a7:11:0b:
cf:41:ab:8e:9b:41:ff:de:b1:ac:89:08:01:04:1c:e1:3b:f7:
a4:87:68:24:a9:cd:1b:a7:f1:bb:08:78:21:c2:9a:38:66:4b:
7b:e0:2b:85:55:82:2e:60:29:fe:15:1a:9f:6e:ef:b7:34:33:
5e:51:6a:e0:a8:cb:8f:00:c5:0c:93:0b:3e:c0:db:3f:f8:de:
9f:66:01:a4:21:f5:18:3b:09:59:2b:be:e0:02:34:43:7c:a7:
48:71:6c:fa:a6:bd:ec:03:f1:df:03:57:1a:f2:20:f5:c2:c9:
68:12:5c:0f:76:2d:e8:ad:51:34:de:a5:57:af:5a:65:32:dc:
83:53:af:0b:3a:11:c0:ae:0a:96:3c:62:81:43:24:75:a8:b6:
e1:0c:b7:9d:31:5a:f4:f6:26:c0:e4:6b:f8:b1:1a:2b:38:ff:
32:b0:79:8c:78:e6:59:92:2b:40:c3:56:eb:5e:e8:a6:d5:41:
ad:fb:f7:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:22:46 2025 by rpki-client