Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32312d3234203d3e20313338303734.roa
File: 3230322e34332e3234382e302f32312d3234203d3e20313338303734.roa (raw, json)
Hash identifier: htJ/pxbjix//3HpRzapfliSYiAA5f+Y6uiXXiwrqqfU=
Subject key identifier: 59:56:E8:3A:CB:85:8B:B0:08:1A:40:8C:6E:3C:FC:C2:B4:B6:41:CF
Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Certificate serial: 1E2FFD1FD6E5D47A501B9DC98D1EBDCA08586CDF
Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32312d3234203d3e20313338303734.roa
Signing time: Mon 31 Jul 2023 00:09:41 +0000
ROA not before: Mon 31 Jul 2023 00:04:41 +0000
ROA not after: Mon 29 Jul 2024 00:09:41 +0000
asID: 138074
IP address blocks: 202.43.248.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:2f:fd:1f:d6:e5:d4:7a:50:1b:9d:c9:8d:1e:bd:ca:08:58:6c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Validity
Not Before: Jul 31 00:04:41 2023 GMT
Not After : Jul 29 00:09:41 2024 GMT
Subject: CN=5956E83ACB858BB0081A408C6E3CFCC2B4B641CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:da:78:fb:53:d0:a1:36:fe:52:a6:ed:45:55:
1e:95:81:c4:d5:85:1e:22:36:26:56:47:5b:0f:f2:
f6:a1:14:5b:ac:ca:72:e5:4f:1d:4a:14:c9:1d:b3:
f1:77:33:b2:83:c0:c2:5e:81:f5:5a:c5:4f:b4:fb:
c1:ee:4d:ee:18:c8:32:31:25:bd:79:fe:30:4a:18:
b5:2e:fb:8c:66:57:32:03:1f:93:13:b7:8b:04:e6:
6b:c9:8f:4a:81:2b:6b:66:10:c4:04:6c:6b:82:3d:
43:28:1b:a2:2d:49:07:ed:77:1e:b1:b5:48:67:0a:
ce:92:25:cc:7f:f7:8c:ff:5d:1d:a0:5f:59:62:cc:
f7:f4:d9:13:93:4e:82:7f:94:53:8b:7e:90:67:55:
25:43:79:83:61:59:32:98:68:fb:19:db:3a:e1:68:
08:46:40:46:28:de:cd:04:99:a9:0b:f5:4f:cb:94:
e8:3f:e4:5b:25:0d:a1:40:c7:08:d3:2b:5f:a4:ca:
29:9f:29:6d:68:e4:b0:74:cc:9b:c1:c3:a2:0f:c6:
44:76:81:97:d1:db:3b:36:1b:72:99:d4:73:a3:72:
3c:33:7b:c5:f8:14:1b:2a:4c:3d:71:3d:76:98:57:
15:76:14:41:d8:97:a5:d0:12:1c:8d:4b:9f:85:8a:
df:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:56:E8:3A:CB:85:8B:B0:08:1A:40:8C:6E:3C:FC:C2:B4:B6:41:CF
X509v3 Authority Key Identifier:
keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32312d3234203d3e20313338303734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.43.248.0/21
Signature Algorithm: sha256WithRSAEncryption
16:38:30:53:bf:22:6c:71:ab:a6:08:c5:d9:0b:dc:c1:9b:43:
d0:df:b7:56:f1:2a:f2:ee:fe:38:0c:fc:57:09:b5:9f:2d:1e:
c7:05:c0:03:39:1e:53:7d:7d:e9:21:da:c9:28:69:c6:17:83:
19:4c:f0:04:4c:19:8e:65:37:97:e8:47:24:7c:ec:3c:56:65:
d7:d7:73:7c:9c:a8:ad:28:b1:4d:46:3f:e7:7d:d2:78:6e:17:
ce:5e:7c:29:9c:03:d2:cf:36:86:f2:03:7f:f8:ae:d7:a1:8a:
6b:87:30:61:db:31:4f:5b:67:4e:1d:d1:34:c1:98:4b:c2:32:
1f:8a:b9:4c:92:f4:0d:61:06:e1:3c:82:49:c7:87:2c:31:b8:
7b:a5:45:16:57:14:57:6e:a9:13:c2:4a:03:c7:47:e8:83:6f:
02:0f:a8:e7:34:58:23:1c:4a:f7:a3:d9:58:7a:84:bd:c8:1e:
51:91:7a:33:04:b8:17:c1:71:42:e2:c9:88:f0:b3:25:a0:65:
64:0f:04:67:92:52:81:24:47:2d:2e:f7:89:fb:5d:85:d3:ac:
3e:97:01:99:5a:f5:ac:fa:86:d1:29:92:0c:5a:f6:d0:7b:51:
4f:dd:1a:e5:04:5f:bb:26:db:53:d5:2f:9a:92:84:55:c4:eb:
c1:e2:ee:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:27:47 2025 by rpki-client