Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36372e302f32342d3234203d3e20313338303634.roa
File: 3130332e3132322e36372e302f32342d3234203d3e20313338303634.roa (raw, json)
Hash identifier: 6dVw8+DHwkhRFkvO+IWL5VScy5wZqO0GtBD3rePboJE=
Subject key identifier: 07:86:43:99:6A:1A:1B:84:55:E0:1A:9F:E7:BA:97:05:56:E8:A7:3B
Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75
Certificate serial: 2CFA3D797BA15F05A1E56EDD2704071850F321B2
Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36372e302f32342d3234203d3e20313338303634.roa
Signing time: Wed 31 May 2023 21:52:17 +0000
ROA not before: Wed 31 May 2023 21:47:17 +0000
ROA not after: Wed 29 May 2024 21:52:17 +0000
asID: 138064
IP address blocks: 103.122.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:fa:3d:79:7b:a1:5f:05:a1:e5:6e:dd:27:04:07:18:50:f3:21:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75
Validity
Not Before: May 31 21:47:17 2023 GMT
Not After : May 29 21:52:17 2024 GMT
Subject: CN=078643996A1A1B8455E01A9FE7BA970556E8A73B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b2:29:1e:ee:0f:8e:9a:d8:87:3a:6b:59:e8:
15:5e:03:cc:10:ef:81:7c:76:12:29:b1:f6:a8:c5:
aa:76:a0:3e:db:c5:27:14:82:61:c5:74:c3:6b:9c:
39:95:aa:25:73:00:67:cd:20:60:05:9e:f9:92:65:
c1:ca:05:d2:1f:f8:4c:8d:f8:de:e8:30:c9:12:58:
e5:29:b3:c8:ed:f7:7f:c6:0d:08:a4:7f:e2:cd:e4:
c8:20:52:cb:0e:e4:5c:7d:1e:d2:a3:11:1f:5e:b1:
7a:3e:af:a6:db:59:af:98:ad:1f:eb:31:0b:97:a9:
46:64:b2:32:d6:36:d6:b7:69:17:b9:70:ae:81:96:
e2:10:79:ab:21:01:33:82:79:49:3e:7e:de:1e:e5:
33:8e:f0:03:21:36:9e:1a:2b:1d:3c:85:6f:bc:25:
fc:b3:21:90:c1:17:ab:9a:d4:48:15:8e:d5:1d:4e:
46:33:3e:e7:20:07:46:c2:1c:2a:55:4a:d6:9c:8d:
09:16:34:bc:8c:5c:89:21:1c:86:74:87:1d:a9:2f:
84:52:70:0d:ed:c8:0c:10:b7:a5:fe:2e:e1:e1:c3:
ae:88:5d:ba:c5:c5:e6:43:bf:77:19:96:25:b4:e3:
5c:77:4a:72:09:7f:29:be:0b:e1:b1:a1:15:39:42:
d9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:86:43:99:6A:1A:1B:84:55:E0:1A:9F:E7:BA:97:05:56:E8:A7:3B
X509v3 Authority Key Identifier:
keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36372e302f32342d3234203d3e20313338303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.122.67.0/24
Signature Algorithm: sha256WithRSAEncryption
09:43:58:f8:00:aa:24:5b:5a:ce:de:61:d4:0b:f2:65:6e:11:
72:03:d4:1e:ef:ae:10:1c:4c:54:b1:5b:4e:fb:03:f3:38:0f:
18:a2:ed:b0:67:f0:74:12:a2:f1:b4:7a:8c:cb:62:bb:7e:ab:
ef:e4:26:46:82:46:ae:d4:e6:d6:6d:48:d3:73:37:9e:a9:2b:
25:f6:44:88:fa:f9:fc:59:dd:d0:59:e6:77:58:81:8c:fa:76:
e0:13:a3:1b:25:48:cc:ca:d6:36:e7:17:8e:ef:7f:3e:d7:c7:
2c:4f:97:a9:92:34:ed:6b:e3:d2:2a:de:3a:dc:f8:f1:33:00:
22:2c:52:b1:42:e6:d0:e5:15:d6:08:dd:61:ed:f4:5a:7f:23:
21:a5:22:7e:71:f1:04:e1:c4:d8:09:db:0f:f9:4b:1b:8e:2f:
a7:5d:52:7a:db:96:ee:40:4e:52:07:d7:d4:83:ee:48:ba:89:
3a:6a:5b:29:15:84:c4:ca:54:95:94:ac:2f:aa:02:cf:ba:72:
9f:67:c9:5a:f3:e8:d3:66:d2:f7:d3:98:fe:b8:83:3a:7c:68:
fe:61:0d:81:0c:1e:97:6b:3e:19:95:f1:1e:18:a3:c3:53:42:
61:6f:f6:39:ec:d5:6b:6f:43:88:21:32:0b:92:15:38:aa:24:
58:b7:be:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 05:48:30 2025 by rpki-client