Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234322e302f32342d3234203d3e203535363832.roa
File: 3131342e3139382e3234322e302f32342d3234203d3e203535363832.roa (raw, json)
Hash identifier: DLIyKv7GeTJl5VSFKdmJx+EhjT7x/FiTMecB3KnKgOI=
Subject key identifier: 15:BA:FE:01:FF:8B:02:01:31:79:D9:45:01:DB:03:00:21:F2:CE:45
Certificate issuer: /CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Certificate serial: 6CF711DADD5DB98F9DFCB295EDC3DE015D6A0902
Authority key identifier: C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234322e302f32342d3234203d3e203535363832.roa
Signing time: Wed 13 Apr 2022 12:00:01 +0000
ROA not before: Wed 13 Apr 2022 11:55:01 +0000
ROA not after: Wed 12 Apr 2023 12:00:01 +0000
asID: 55682
IP address blocks: 114.198.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:f7:11:da:dd:5d:b9:8f:9d:fc:b2:95:ed:c3:de:01:5d:6a:09:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E
Validity
Not Before: Apr 13 11:55:01 2022 GMT
Not After : Apr 12 12:00:01 2023 GMT
Subject: CN=15BAFE01FF8B02013179D94501DB030021F2CE45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:17:d5:5d:35:30:d6:2a:87:31:d7:14:f7:c8:
df:46:44:a3:e2:e7:a8:52:6a:61:c6:81:4d:20:be:
fd:00:24:a7:4b:70:ac:dc:a3:22:3a:7b:51:d8:82:
9c:3f:0a:ad:8d:48:54:8f:77:c0:19:8a:0b:db:ea:
b6:d9:f6:37:9b:c1:29:2e:0e:d6:88:1d:32:b9:fc:
9b:c8:e4:7b:2c:e1:ba:4d:bb:b5:b3:6c:92:40:82:
63:1d:b2:43:96:dd:bd:f6:79:e9:b5:4f:c4:28:6d:
71:75:e0:3d:87:ee:4c:62:cc:7a:0f:52:1e:dc:84:
b6:e5:1a:8d:4d:91:35:9e:a2:e0:6f:99:9c:c2:9c:
c2:1b:44:6b:aa:86:62:5c:fc:3a:e9:bf:1c:52:d7:
36:08:5f:32:07:55:8e:80:eb:55:74:6a:62:29:1a:
a0:1a:b2:a1:26:34:eb:6c:3f:1f:7d:e2:50:f0:3c:
a4:55:94:7f:f1:c1:21:c9:01:2e:66:5a:d5:f9:9d:
dc:9f:e3:5d:ef:b3:c7:d1:0b:c0:3f:8b:ea:b7:d3:
46:44:8e:81:ee:ea:47:72:6f:89:23:41:07:dc:22:
69:6e:a2:0a:41:4f:4f:40:79:bf:67:36:d7:32:25:
78:73:00:2b:9f:8f:0e:78:a2:ef:30:05:0a:6d:f2:
41:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BA:FE:01:FF:8B:02:01:31:79:D9:45:01:DB:03:00:21:F2:CE:45
X509v3 Authority Key Identifier:
keyid:C3:0D:E7:1F:7C:AE:16:CA:2D:8D:AB:6D:01:CA:43:D7:2F:B4:FE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C30DE71F7CAE16CA2D8DAB6D01CA43D72FB4FE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03b59ce4-66a2-4f4d-b3d6-9299484ba56b/0/3131342e3139382e3234322e302f32342d3234203d3e203535363832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.198.242.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:53:23:6f:5a:78:d3:dc:81:85:ce:98:62:b4:b1:51:2d:5e:
be:7f:e0:a0:cc:39:80:26:24:fb:7d:52:09:65:0d:ac:22:c8:
a7:33:9a:64:d0:f9:0e:6c:cb:ec:9b:15:1c:84:bd:05:0a:1f:
73:55:fe:4d:41:78:70:40:34:4a:86:99:cf:4b:11:67:ac:4b:
ac:6f:74:c4:ba:e9:26:41:52:05:c6:cf:50:e0:b2:ef:2a:da:
00:48:79:33:7d:23:bd:d7:1e:a0:ca:ad:84:94:9b:92:3b:8f:
be:6d:7d:c6:a8:81:83:68:f5:af:3d:fa:b7:19:78:34:32:81:
31:6c:b1:52:05:c9:7b:d9:78:b1:57:3c:40:18:57:17:bc:80:
be:cd:54:70:43:d3:51:69:fa:ff:6d:23:8c:e1:d7:90:4e:e9:
16:d7:96:7f:cc:cd:9d:f7:7c:6d:de:49:fe:2c:e9:ae:cc:91:
ed:c4:d9:83:6d:13:78:7b:65:d2:d5:02:3f:38:f3:4b:c6:c9:
cf:e6:d0:80:13:e3:75:b7:39:b5:fc:cb:e7:24:2f:2f:8e:3e:
ff:94:af:9a:26:84:23:44:b2:c6:fb:60:d6:75:60:ae:d0:2d:
05:27:23:e1:da:54:2b:7b:fc:dd:d8:51:5a:1e:51:11:85:74:
a1:69:8b:42
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUbPcR2t1duY+d/LKV7cPeAV1qCQIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzMwREU3MUY3Q0FFMTZDQTJEOERBQjZEMDFDQTQzRDcy
RkI0RkU2RTAeFw0yMjA0MTMxMTU1MDFaFw0yMzA0MTIxMjAwMDFaMDMxMTAvBgNV
BAMTKDE1QkFGRTAxRkY4QjAyMDEzMTc5RDk0NTAxREIwMzAwMjFGMkNFNDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1F9VdNTDWKocx1xT3yN9GRKPi
56hSamHGgU0gvv0AJKdLcKzcoyI6e1HYgpw/Cq2NSFSPd8AZigvb6rbZ9jebwSku
DtaIHTK5/JvI5Hss4bpNu7WzbJJAgmMdskOW3b32eem1T8QobXF14D2H7kxizHoP
Uh7chLblGo1NkTWeouBvmZzCnMIbRGuqhmJc/DrpvxxS1zYIXzIHVY6A61V0amIp
GqAasqEmNOtsPx994lDwPKRVlH/xwSHJAS5mWtX5ndyf413vs8fRC8A/i+q300ZE
joHu6kdyb4kjQQfcImluogpBT09Aeb9nNtcyJXhzACufjw54ou8wBQpt8kEtAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUFbr+Af+LAgExedlFAdsDACHyzkUwHwYDVR0j
BBgwFoAUww3nH3yuFsotjattAcpD1y+0/m4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
M2I1OWNlNC02NmEyLTRmNGQtYjNkNi05Mjk5NDg0YmE1NmIvMC9DMzBERTcxRjdD
QUUxNkNBMkQ4REFCNkQwMUNBNDNENzJGQjRGRTZFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzMwREU3MUY3Q0FFMTZDQTJEOERBQjZEMDFDQTQzRDcyRkI0
RkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzYjU5Y2U0LTY2YTItNGY0ZC1i
M2Q2LTkyOTk0ODRiYTU2Yi8wLzMxMzEzNDJlMzEzOTM4MmUzMjM0MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcsbyMA0GCSqG
SIb3DQEBCwUAA4IBAQBbUyNvWnjT3IGFzphitLFRLV6+f+CgzDmAJiT7fVIJZQ2s
IsinM5pk0PkObMvsmxUchL0FCh9zVf5NQXhwQDRKhpnPSxFnrEusb3TEuukmQVIF
xs9Q4LLvKtoASHkzfSO91x6gyq2ElJuSO4++bX3GqIGDaPWvPfq3GXg0MoExbLFS
Bcl72XixVzxAGFcXvIC+zVRwQ9NRafr/bSOM4deQTukW15Z/zM2d93xt3kn+LOmu
zJHtxNmDbRN4e2XS1QI/OPNLxsnP5tCAE+N1tzm1/MvnJC8vjj7/lK+aJoQjRLLG
+2DWdWCu0C0FJyPh2lQre/zd2FFaHlERhXShaYtC
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:58 2023 by rpki-client on console-ams.rpki-client.org