Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32332d3233203d3e203535363832.roa
File: 3131342e3139382e3234302e302f32332d3233203d3e203535363832.roa (raw, json)
Hash identifier: kAYA1Dv58rs6hpUgoz5pfAgl0T4kmV33HSwlSoNNVGU=
Subject key identifier: DE:10:8D:5D:4B:13:66:B6:FA:C7:B5:B7:A6:26:2B:AA:DF:49:9B:8B
Certificate issuer: /CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Certificate serial: 193094498B799DC7DFE7A5B0380718D0A4F6854F
Authority key identifier: C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32332d3233203d3e203535363832.roa
Signing time: Wed 13 Apr 2022 12:00:00 +0000
ROA not before: Wed 13 Apr 2022 11:55:00 +0000
ROA not after: Wed 12 Apr 2023 12:00:00 +0000
asID: 55682
IP address blocks: 114.198.240.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:30:94:49:8b:79:9d:c7:df:e7:a5:b0:38:07:18:d0:a4:f6:85:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Validity
Not Before: Apr 13 11:55:00 2022 GMT
Not After : Apr 12 12:00:00 2023 GMT
Subject: CN=DE108D5D4B1366B6FAC7B5B7A6262BAADF499B8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9b:30:af:3a:30:5e:a4:3c:59:c6:a1:9e:ef:
12:eb:bb:05:d7:6e:21:86:f9:7e:ba:4a:18:08:d2:
8a:a5:b1:82:ea:8e:52:23:67:b8:0b:b5:61:46:3f:
8e:46:d3:8d:94:06:95:77:9b:ee:a1:ca:d9:40:1a:
4d:84:3c:42:9a:3d:bd:eb:48:85:17:41:33:3e:35:
d6:8a:9c:94:a0:f5:c7:69:f5:ff:bb:df:c6:77:11:
59:a9:b6:6a:37:3d:32:9c:c7:25:22:f8:48:dc:5c:
08:64:73:3d:19:ea:95:36:1b:c2:cb:a6:fd:2d:84:
c8:c7:9b:7d:6e:1e:6f:f6:d3:8a:15:a8:31:ae:26:
75:b8:fc:73:8a:fa:86:bd:15:76:22:a6:f6:b8:08:
ed:9f:46:55:68:4a:65:47:fc:27:47:82:c5:e9:02:
76:c1:76:78:21:dc:77:9b:af:a4:d3:75:63:1f:11:
f6:0c:cc:08:88:40:00:3d:3d:0f:1e:16:54:a4:6b:
09:7d:18:0e:c2:27:e6:b8:e7:71:90:98:7b:4d:5c:
a2:11:5a:b5:a0:41:38:51:b1:f4:8b:71:20:76:52:
42:75:e4:73:63:01:ae:3e:71:b0:80:97:c7:14:1d:
75:1d:ac:55:03:10:8e:9a:da:0d:c0:61:2d:2f:23:
66:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:10:8D:5D:4B:13:66:B6:FA:C7:B5:B7:A6:26:2B:AA:DF:49:9B:8B
X509v3 Authority Key Identifier:
keyid:C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234302e302f32332d3233203d3e203535363832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.198.240.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:fd:05:ff:a4:07:81:a3:a1:65:6c:57:19:bb:0d:c0:b2:51:
82:f4:cf:fe:b1:82:45:6a:00:66:67:25:fb:85:8b:17:3d:6c:
32:f9:10:7c:b6:13:c2:db:bd:39:8e:78:96:fc:0d:88:03:2f:
d9:af:5d:50:f1:2f:73:57:26:f3:4e:01:ee:fc:10:b4:78:74:
d6:df:63:e6:d1:3f:c2:8f:88:96:cf:68:2a:79:c6:1c:e8:f9:
81:b4:06:db:de:39:54:2b:4d:63:b3:20:55:49:7b:da:3d:4c:
25:a6:8b:92:67:19:ba:95:2f:91:a6:4b:9a:5a:e4:1a:46:a1:
e7:b6:d1:99:fc:19:7b:a0:20:1a:44:4a:2b:13:3a:7a:3c:81:
89:74:93:84:50:9f:8b:05:dd:b9:89:24:6d:ee:52:0c:7f:29:
da:e1:8e:6c:de:d5:9c:ed:d5:d5:4d:e2:50:ce:e4:8e:63:9d:
e7:25:96:fc:93:eb:74:f3:88:9c:29:28:3d:1a:33:f4:69:61:
de:d4:7a:32:ce:0d:82:1b:81:2e:44:6e:18:55:b7:1c:4d:ff:
c1:5e:c2:dd:aa:ce:74:d3:c4:31:9b:b3:9a:5b:aa:81:70:d9:
f9:f0:e1:c9:cb:1c:50:3c:ff:1e:db:d2:a4:4a:47:af:7f:53:
03:d6:43:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:58 2023 by rpki-client on console-ams.rpki-client.org