Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32342d3234203d3e203535363832.roa
File: 3131342e3139382e3234302e302f32342d3234203d3e203535363832.roa (raw, json)
Hash identifier: OKYuxVuFIy/hG9Dajy1hFyOO8H32lpmI0D4E8Fzrqu0=
Subject key identifier: E2:56:D0:48:B8:96:4A:21:51:CB:E1:B9:D3:FC:63:0A:36:15:9D:55
Certificate issuer: /CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Certificate serial: 1D86FEC0B16DB69FD049DE109720BC6136A9228F
Authority key identifier: C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32342d3234203d3e203535363832.roa
Signing time: Wed 13 Apr 2022 12:00:01 +0000
ROA not before: Wed 13 Apr 2022 11:55:01 +0000
ROA not after: Wed 12 Apr 2023 12:00:01 +0000
asID: 55682
IP address blocks: 114.198.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:86:fe:c0:b1:6d:b6:9f:d0:49:de:10:97:20:bc:61:36:a9:22:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Validity
Not Before: Apr 13 11:55:01 2022 GMT
Not After : Apr 12 12:00:01 2023 GMT
Subject: CN=E256D048B8964A2151CBE1B9D3FC630A36159D55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a7:38:18:01:c3:30:0a:24:75:d8:18:2a:20:
52:97:59:55:6f:b6:5d:14:80:64:14:9d:25:c9:8d:
d6:2b:58:d1:c6:09:62:ce:87:e4:8e:38:be:b1:62:
36:f1:bf:af:79:12:c0:c2:75:e2:02:b6:a5:c2:04:
21:df:fc:e6:fb:47:e3:1e:85:72:46:5a:ad:ca:f2:
58:d0:04:42:fe:b1:de:e9:d9:c4:58:cc:89:13:ea:
e7:5f:38:f4:33:67:d8:6b:96:8f:c6:fc:8c:21:d1:
a0:10:0b:d0:f0:da:61:92:a8:ad:6b:a6:e2:50:ef:
c6:db:10:7d:21:bc:db:8c:a5:79:00:9b:24:5a:66:
63:4c:44:08:24:1b:23:d0:24:f2:4d:49:e0:2a:6b:
ba:43:40:84:de:9f:9a:92:29:fa:be:03:ed:6a:6f:
e3:3c:5f:28:6e:b6:2b:a7:33:7b:c5:37:5e:9c:74:
f6:a5:7a:44:79:97:95:17:76:3e:ea:bd:b4:74:d6:
c8:cf:b4:f8:11:b8:0a:fd:62:15:5f:45:f1:aa:85:
f6:2a:3b:bd:20:47:2d:8a:af:3e:a1:f5:bf:e3:a1:
3c:e2:e3:b7:6e:71:37:f9:b5:4c:df:83:be:6c:56:
35:0c:fe:cd:e2:99:d2:3d:4b:8c:3f:1d:6d:30:bc:
5d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:56:D0:48:B8:96:4A:21:51:CB:E1:B9:D3:FC:63:0A:36:15:9D:55
X509v3 Authority Key Identifier:
keyid:C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32342d3234203d3e203535363832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.198.240.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:0b:d5:85:95:ee:88:8f:43:7f:55:88:75:13:43:bc:99:54:
fa:90:4f:19:1b:4e:e7:5d:7c:a3:8e:04:34:c5:60:4d:18:9e:
0d:cc:7a:c9:51:da:60:40:09:ed:07:72:17:c2:e9:29:e7:6a:
f6:bd:07:57:e1:7f:29:67:4a:b3:8b:4d:22:c3:13:f3:24:18:
d4:f5:3f:78:85:f0:9c:70:5e:9b:0a:10:a5:a0:f1:87:e1:1e:
b0:2a:de:35:c2:21:7d:e8:fd:cc:70:5a:67:4f:29:f7:96:d0:
18:96:6d:70:66:b3:65:86:eb:f3:6f:2c:d0:ed:9a:93:c2:35:
e1:54:ce:02:c6:94:92:e8:3f:92:f2:b7:69:26:94:2a:2b:8c:
05:5c:de:13:38:b9:e8:e9:8e:58:4d:03:e6:43:ed:dc:78:7b:
10:0f:ea:5a:33:03:b7:4b:f8:14:76:90:d6:de:83:79:e1:65:
d3:de:a5:8f:1c:9e:b0:1a:2f:e7:2d:1b:af:62:50:c6:a1:a2:
0e:a6:de:88:a8:02:fd:17:9c:b5:06:46:aa:1f:8d:5c:40:58:
42:e1:a8:03:40:70:fb:47:5b:bd:a6:f5:d1:d5:b0:1f:e1:8a:
7f:70:37:8a:79:2a:22:80:4c:71:5f:93:7a:69:a3:dc:e9:35:
e4:bb:52:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:58 2023 by rpki-client on console-ams.rpki-client.org