Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3230203d3e203138313132.roa
File: 3230322e35372e31362e302f32302d3230203d3e203138313132.roa (raw, json)
Hash identifier: LRU2frg3zXctpc4H0mgax+2Sz17LvBk4G7X5Ht2lR8w=
Subject key identifier: C8:54:EA:27:06:93:45:7A:E3:2B:D4:38:9F:27:F3:5E:47:00:2E:F1
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 18E04D8E34A0E56BBE4F76C31CFF0D6497CC90C6
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3230203d3e203138313132.roa
Signing time: Thu 12 May 2022 05:10:34 +0000
ROA not before: Thu 12 May 2022 05:05:34 +0000
ROA not after: Thu 11 May 2023 05:10:34 +0000
asID: 18112
IP address blocks: 202.57.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:e0:4d:8e:34:a0:e5:6b:be:4f:76:c3:1c:ff:0d:64:97:cc:90:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 12 05:05:34 2022 GMT
Not After : May 11 05:10:34 2023 GMT
Subject: CN=C854EA270693457AE32BD4389F27F35E47002EF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:26:f2:13:23:ca:0a:b6:c9:c7:86:ef:5c:
77:eb:5f:2a:c2:d8:2f:b9:b6:8e:ef:d2:76:58:42:
5b:58:c1:31:65:e7:a6:39:f8:4e:05:00:45:2e:31:
07:9d:aa:fd:2b:91:92:fd:2d:5d:5d:ec:1b:af:b4:
db:95:d0:97:62:2b:5d:60:1c:d7:a6:25:a8:b2:3c:
b9:6d:43:9e:28:8b:73:1c:06:e7:9d:61:d2:00:13:
43:14:02:75:1d:03:f3:3d:82:87:a7:7f:e7:21:29:
73:41:43:0c:7d:ba:b6:1b:cb:4c:d8:b0:93:75:86:
e9:c6:5a:01:fe:71:f0:a5:a4:34:4e:7b:c9:8e:5e:
5a:da:15:18:cb:17:84:25:a4:6c:74:e3:d7:9a:b4:
e1:4f:3c:66:c2:ca:20:f8:9e:46:20:98:fe:ab:2b:
7f:09:53:6e:94:24:9b:21:ad:9e:19:75:c8:c0:1f:
5f:05:9e:8d:20:06:80:50:d8:7a:d1:e5:15:9f:4e:
f0:58:7b:35:ea:6d:93:55:12:c3:97:b1:05:d0:f8:
db:0f:c6:5a:fb:ef:c4:47:f5:44:41:6b:42:59:f5:
af:e8:cd:04:4a:c1:d8:f5:48:de:42:80:e1:92:e1:
5b:4b:13:db:52:48:fd:8a:f9:a4:ed:7c:d6:55:12:
d4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:54:EA:27:06:93:45:7A:E3:2B:D4:38:9F:27:F3:5E:47:00:2E:F1
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3230203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.16.0/20
Signature Algorithm: sha256WithRSAEncryption
91:f2:c0:02:0e:b5:ee:48:a3:3f:87:25:0f:5f:c2:28:19:0a:
49:97:76:e1:82:77:ee:3e:f3:b8:b2:cf:a6:30:c2:53:a6:78:
7f:76:8b:99:b1:b7:fc:75:2d:60:81:3f:64:70:67:8f:02:23:
72:a0:b6:4b:38:18:f1:76:aa:ab:d8:cf:ef:08:05:70:51:f7:
7c:ba:74:61:15:31:53:1c:82:27:c1:b3:c6:70:54:0e:dd:e9:
41:0e:5a:57:5c:e4:da:1e:6d:bf:ea:7e:43:35:ae:18:9a:3f:
b0:0f:b5:18:54:13:d0:e6:5d:9f:13:52:86:c0:08:80:46:8d:
4d:32:0b:8d:d8:30:42:52:75:e0:0c:ff:ea:6c:8d:17:7d:c3:
ee:b6:d9:33:4a:ba:c9:61:36:20:b6:31:26:da:6c:e1:34:7f:
83:23:02:ef:04:a9:de:56:77:99:b7:3d:31:f9:b0:e2:d3:ed:
6f:b5:ce:f8:82:6d:3a:8e:fe:8e:06:e0:2a:8b:ee:38:ab:b0:
ab:70:87:be:95:48:1b:c7:d4:1e:5d:f2:c1:77:3d:eb:84:7c:
aa:b1:a1:38:44:26:de:b2:8b:fd:01:fc:54:87:31:d9:af:ee:
64:9c:e8:36:f0:be:ac:88:87:98:15:70:c9:05:9c:a1:1a:e2:
56:f9:41:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org