Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/34352e3235312e342e302f32322d3234203d3e203338353131.roa
File: 34352e3235312e342e302f32322d3234203d3e203338353131.roa (raw, json)
Hash identifier: S/FZszY6pVIv57pOYLfYPkTnH8c33W4qJQEZueivGJQ=
Subject key identifier: 3C:A5:A7:2D:24:1A:87:C9:AD:CF:9E:1B:D9:D4:2F:25:74:30:CD:FD
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 0251E524A239760657CA1BEFC39289F5510BDEDD
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/34352e3235312e342e302f32322d3234203d3e203338353131.roa
Signing time: Sat 25 Sep 2021 23:00:01 +0000
ROA not before: Sat 25 Sep 2021 22:55:01 +0000
ROA not after: Sun 25 Sep 2022 23:00:01 +0000
asID: 38511
IP address blocks: 45.251.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:51:e5:24:a2:39:76:06:57:ca:1b:ef:c3:92:89:f5:51:0b:de:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Sep 25 22:55:01 2021 GMT
Not After : Sep 25 23:00:01 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:60:53:b1:16:7f:1c:f8:ca:06:e1:f0:ba:f2:
d7:1c:cd:df:95:b8:29:72:3d:f0:00:76:28:48:36:
99:71:63:90:78:59:85:90:0f:8a:83:16:15:19:e4:
57:57:66:9f:fd:ee:de:7d:e8:e9:2a:ff:1f:db:4b:
da:99:54:0e:f6:a8:8a:de:84:e0:af:39:eb:4e:46:
b1:ae:e7:18:06:72:72:91:9c:ff:7c:7e:17:aa:d2:
ee:26:06:19:16:bd:f3:28:2f:ca:d9:e1:f3:94:03:
3b:4c:a1:c2:8e:b4:fc:e6:fb:c1:15:a2:3f:f3:3b:
52:ff:0c:87:5b:63:f4:b3:ff:9e:11:bb:b5:3d:c5:
e6:bb:a5:54:2b:25:df:c6:5a:08:f8:d4:ea:30:d6:
60:48:cb:1a:59:23:dc:b0:7d:0a:92:a7:25:9f:36:
40:d5:b8:9e:c5:28:f1:84:40:ba:09:96:e7:22:e9:
45:dc:97:b9:71:eb:73:c3:be:83:bf:16:f6:ca:ad:
6e:ce:0e:de:50:24:03:cf:71:38:35:04:19:65:6c:
0c:60:17:86:73:5e:b2:e8:f5:ab:14:11:0b:95:b9:
83:fc:1b:58:c3:c8:72:93:12:77:c6:3b:4c:6b:81:
fa:36:7b:ad:62:08:26:44:6e:50:09:a6:5b:e7:2e:
67:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A5:A7:2D:24:1A:87:C9:AD:CF:9E:1B:D9:D4:2F:25:74:30:CD:FD
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/34352e3235312e342e302f32322d3234203d3e203338353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.251.4.0/22
Signature Algorithm: sha256WithRSAEncryption
37:16:8c:4a:30:b0:3d:83:e0:16:e5:5d:a1:a3:46:b8:02:14:
fc:02:5e:ae:4e:cf:00:f5:fb:b4:2f:f9:cd:4b:f8:34:45:4e:
72:f7:fa:6c:fa:ac:6d:b5:5d:39:a0:dc:ce:05:33:5e:1f:44:
70:66:f6:14:d2:50:d8:b1:75:d1:08:c9:12:3e:f9:31:f3:b2:
b0:0c:b6:1c:ec:4f:95:7f:ff:98:29:dd:59:7c:1c:57:c1:ca:
97:13:a5:df:32:8e:8c:a8:29:da:dc:79:b4:0f:37:19:21:43:
5b:6b:9a:e9:16:2a:07:b6:1c:8c:5b:e2:c8:b7:2b:4b:65:44:
a8:67:74:19:99:d5:2c:3f:ba:7a:88:cf:c1:ae:d3:27:7e:da:
36:ce:39:3a:ea:91:15:c7:92:3b:e6:f2:21:96:13:7f:82:ef:
26:e4:24:d7:df:25:cc:bb:09:d4:1d:8e:72:d4:8d:5d:f1:fb:
ca:6a:b0:70:44:31:31:1f:d4:b7:a0:2a:d2:1b:b6:12:0d:b2:
9e:84:1a:71:07:53:66:45:e2:e3:48:20:96:81:bf:05:38:a7:
76:61:2a:fc:50:a2:84:51:f6:d2:65:0b:52:2e:d1:76:8a:11:
95:87:3f:95:17:13:6b:d3:4a:c8:22:04:76:e7:44:3c:49:37:
01:4e:93:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:48 2023 by rpki-client on console-fra.rpki-client.org