Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32322d3232203d3e203535363832.roa
File: 3131342e3139382e3234302e302f32322d3232203d3e203535363832.roa (raw, json)
Hash identifier: Zi13kHAyeZulow7iHAGTnvstw+EEGDzSvjjozUz2uDA=
Subject key identifier: 99:0D:DD:E4:DB:4E:89:EF:80:F9:27:CE:2E:66:D2:30:DB:9B:F1:2B
Certificate issuer: /CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Certificate serial: 3CFCA005713B7FB16D49CF8F423DE7420C99A06D
Authority key identifier: C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32322d3232203d3e203535363832.roa
Signing time: Wed 13 Apr 2022 12:00:00 +0000
ROA not before: Wed 13 Apr 2022 11:55:00 +0000
ROA not after: Wed 12 Apr 2023 12:00:00 +0000
asID: 55682
IP address blocks: 114.198.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:fc:a0:05:71:3b:7f:b1:6d:49:cf:8f:42:3d:e7:42:0c:99:a0:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Validity
Not Before: Apr 13 11:55:00 2022 GMT
Not After : Apr 12 12:00:00 2023 GMT
Subject: CN=990DDDE4DB4E89EF80F927CE2E66D230DB9BF12B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f7:32:4c:0d:1a:77:4a:bc:5b:0e:2b:df:b3:
8d:6a:8d:60:c7:c3:67:dc:1e:31:75:a2:b1:fd:b7:
ba:3a:42:b4:eb:5e:88:5e:21:30:c8:e4:b6:74:3c:
1d:2f:e8:b8:96:42:f0:d7:d4:0d:e6:8b:c5:dc:3e:
c1:fe:c2:d3:d9:9c:a3:3b:5c:0e:be:e4:c2:5f:08:
e2:c0:9b:1f:19:29:e6:63:6b:c2:8d:7e:54:a3:07:
57:d5:7b:b6:0c:5e:8c:4b:13:5e:90:6f:39:49:54:
96:d9:b8:da:cc:44:ff:7f:8d:68:92:6f:22:cf:6b:
64:f1:0b:02:f6:99:40:77:b6:b7:da:ad:a2:ab:6c:
fe:7b:32:b2:dc:7d:7e:3e:be:d6:24:b2:0e:e6:f2:
c2:42:2e:6d:31:05:b6:17:5d:d9:b0:03:07:14:6d:
32:48:a2:f9:60:76:9d:89:db:65:5b:55:a1:91:5d:
10:a8:4d:61:f3:40:f2:df:db:05:7e:f2:06:e5:ca:
c4:3d:c4:f6:49:cc:7b:66:60:cf:a4:f5:97:9a:fb:
e0:32:41:d0:0c:97:e1:c5:c9:14:a0:86:b7:69:fb:
dd:2a:20:e5:86:26:58:b3:91:cc:52:89:c3:2d:a3:
8e:23:90:eb:bf:01:db:f6:90:e7:e1:e2:b7:05:8f:
4e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0D:DD:E4:DB:4E:89:EF:80:F9:27:CE:2E:66:D2:30:DB:9B:F1:2B
X509v3 Authority Key Identifier:
keyid:C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32322d3232203d3e203535363832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.198.240.0/22
Signature Algorithm: sha256WithRSAEncryption
62:d8:54:bf:61:8f:d1:a4:c0:a0:9d:ba:d8:dd:f9:1c:95:80:
13:a6:d5:40:ff:96:e8:62:33:04:a1:e3:f1:3f:97:05:a4:21:
4c:18:68:3e:cf:0f:0d:9c:44:0d:72:85:fa:dd:e3:ad:25:02:
ea:da:7a:82:d2:21:9c:58:b3:18:21:40:ee:ac:dd:d3:fd:d6:
cc:26:38:d4:1d:ae:7c:ec:83:19:24:7c:bb:b0:6c:2f:49:3f:
06:56:34:26:ef:fb:94:24:4f:8f:23:ce:39:ab:e7:ff:77:c5:
ca:64:31:10:60:0f:78:eb:3b:aa:fb:52:8c:bd:14:3d:02:4a:
88:9b:b5:52:4d:11:1f:c6:b3:c2:d3:e6:db:9d:f0:99:a0:a9:
69:3f:b8:79:f2:8c:01:0e:6f:d2:ce:63:47:74:13:db:c9:15:
18:9f:9c:63:07:df:1f:d9:5d:d6:31:db:5d:17:97:b4:33:90:
77:84:93:88:64:70:9f:80:d4:89:55:05:52:d8:23:d8:c2:c2:
54:ca:f2:fd:fe:7f:ff:21:88:73:fa:09:c5:2b:63:a8:05:fa:
4c:42:a1:19:03:56:0b:8f:b3:64:f5:09:ce:19:85:d5:34:e4:
e6:d5:53:2d:64:67:60:80:81:e3:65:69:18:e9:51:d2:f6:9e:
e3:ec:61:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:14 2025 by rpki-client