Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33322e302f32332d3233203d3e20313530323238.roa
File: 3130332e31372e33322e302f32332d3233203d3e20313530323238.roa (raw, json)
Hash identifier: rX1IBv3zHQz31hhFnLe5cqjr0WhBu7LnOAsTw6VO9MU=
Subject key identifier: 9F:34:9C:60:43:1B:8C:6B:DA:40:2A:F6:0D:73:62:D9:5D:83:AD:FA
Certificate issuer: /CN=B2650BD2D997B6C198A4B362B7395AC364683312
Certificate serial: 7EF4BD23ECBE1A3298A095ACCC26B8C186FC039C
Authority key identifier: B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33322e302f32332d3233203d3e20313530323238.roa
Signing time: Thu 10 Nov 2022 09:31:52 +0000
ROA not before: Thu 10 Nov 2022 09:26:52 +0000
ROA not after: Thu 09 Nov 2023 09:31:52 +0000
asID: 150228
IP address blocks: 103.17.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:f4:bd:23:ec:be:1a:32:98:a0:95:ac:cc:26:b8:c1:86:fc:03:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2650BD2D997B6C198A4B362B7395AC364683312
Validity
Not Before: Nov 10 09:26:52 2022 GMT
Not After : Nov 9 09:31:52 2023 GMT
Subject: CN=9F349C60431B8C6BDA402AF60D7362D95D83ADFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:32:7d:d9:cb:42:7a:bf:ce:ab:73:73:4b:64:
d3:7c:90:3b:ab:23:f0:f0:54:c8:02:2b:8f:52:d9:
7c:25:d8:0d:29:ea:ca:cd:4f:e5:e7:db:37:3e:4d:
ae:4e:89:c3:da:1f:7b:e3:aa:72:bb:93:69:45:6f:
8b:4d:fe:b0:75:41:6b:16:8a:90:c2:47:1a:68:38:
93:12:0d:84:a1:6f:f2:ba:79:69:d7:8d:58:aa:e4:
a1:65:7c:0f:e5:6d:c2:d9:b3:83:27:37:39:80:f9:
0b:6b:c2:34:b5:e0:c9:d0:4e:73:b1:9f:fc:16:1b:
eb:11:94:e6:ca:2a:be:19:9f:0a:94:63:13:c3:9b:
50:8e:32:16:ed:09:b1:22:ef:41:88:26:72:b4:e0:
12:29:e1:e6:0e:72:43:2c:4e:a0:80:fe:fe:71:d2:
28:49:b9:3a:d6:fd:43:4e:9f:af:7c:7d:ec:22:4b:
b6:17:f4:a9:47:d7:b8:4b:d6:29:d0:61:4c:f6:07:
d9:2b:af:15:ce:ce:75:a3:d8:b9:80:b4:29:0d:20:
e4:89:85:e4:81:c6:38:3a:68:bf:24:0a:00:b1:b1:
98:24:33:32:e4:59:3f:71:7e:d9:02:07:88:d6:03:
ba:86:df:85:5c:29:b2:1c:70:da:5a:98:3e:2a:d4:
d4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:34:9C:60:43:1B:8C:6B:DA:40:2A:F6:0D:73:62:D9:5D:83:AD:FA
X509v3 Authority Key Identifier:
keyid:B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33322e302f32332d3233203d3e20313530323238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.32.0/23
Signature Algorithm: sha256WithRSAEncryption
36:76:31:d7:4a:d5:01:7b:cc:30:aa:79:da:6b:24:a9:23:78:
26:48:37:34:6d:80:eb:63:5a:ab:83:6d:4d:eb:76:3b:2e:46:
68:03:50:c7:6c:4c:3f:5f:bd:62:f9:0e:78:b5:8e:8a:fe:92:
db:85:94:74:87:00:42:5c:32:c4:55:5d:64:c4:3f:be:37:df:
0e:73:8e:27:1c:f7:44:46:45:1b:09:d1:68:5e:ad:ce:e0:31:
25:d9:c4:fd:d7:b8:15:16:86:c3:9a:86:8e:cf:a1:a6:62:d7:
05:e0:a0:18:c5:5a:67:4b:6d:23:34:91:c9:1b:be:b6:4a:1f:
88:84:ed:50:09:4e:01:ad:9b:97:f0:6e:32:07:21:e1:34:6c:
4b:06:3b:09:40:87:2d:a7:9c:73:e1:c6:5a:05:4c:f6:4c:78:
2c:a9:d8:ae:1b:4e:0e:a8:57:46:6c:d6:20:41:1c:2f:c4:c7:
5d:11:cd:47:f3:9b:d9:f9:ca:61:09:23:2c:7d:53:bf:a9:c1:
5e:02:38:7f:33:70:89:60:eb:28:96:d6:97:89:99:00:a5:f5:
f8:9d:47:78:34:40:ea:9e:5d:50:b1:76:76:ff:15:e6:5c:70:
aa:21:4d:75:f5:ff:7a:0c:97:b6:c5:9e:ef:64:14:79:c9:4f:
5e:f6:49:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net