Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3231203d3e203138313132.roa
File: 3230322e35372e31362e302f32302d3231203d3e203138313132.roa (raw, json)
Hash identifier: BbSBv61pkxcWc01jwgQq33ehFfG7e9CaSRuUq7aXRqo=
Subject key identifier: FE:2B:3C:69:AC:C9:96:71:D3:B5:3B:9C:07:23:D9:7A:CA:9D:6D:6B
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 3AB25E58541E3227B3CB03B9DD344564E6DEA5DC
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3231203d3e203138313132.roa
Signing time: Thu 12 May 2022 05:36:20 +0000
ROA not before: Thu 12 May 2022 05:31:20 +0000
ROA not after: Thu 11 May 2023 05:36:20 +0000
asID: 18112
IP address blocks: 202.57.16.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:b2:5e:58:54:1e:32:27:b3:cb:03:b9:dd:34:45:64:e6:de:a5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 12 05:31:20 2022 GMT
Not After : May 11 05:36:20 2023 GMT
Subject: CN=FE2B3C69ACC99671D3B53B9C0723D97ACA9D6D6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f5:c9:0d:28:6c:f3:4d:0d:da:1d:7d:51:f6:
a6:dd:c6:a1:8a:4c:f9:70:d9:8e:81:3a:db:3d:8e:
28:a5:60:76:25:c2:3f:49:e6:93:fc:f6:f3:67:c2:
bb:9c:e4:5b:d3:45:3a:90:d3:d5:44:98:ba:00:e1:
a9:42:5e:80:d1:c8:ad:3b:e4:11:d5:ec:1a:f1:54:
ee:ba:e7:94:c1:a3:40:ed:ee:82:66:06:63:5d:54:
cb:79:d8:b4:71:5e:c9:af:20:16:25:f1:a4:99:8b:
b9:19:a0:29:bb:fc:07:2a:ae:d3:1e:94:d7:bd:75:
fc:60:9f:52:81:a7:30:45:1d:89:03:20:38:03:59:
f5:4d:52:39:54:1c:c4:e5:dc:e3:23:49:52:b7:73:
7f:cb:d9:a7:f8:f7:f9:52:0f:62:2e:e1:38:aa:1e:
15:20:ea:94:de:5d:73:7e:2f:2f:90:0f:c8:21:2f:
c0:c1:6f:77:18:06:b4:22:73:3d:ec:4a:86:12:8c:
90:f4:bf:1d:d7:67:b9:d5:f0:1a:26:dd:23:61:bf:
e2:4c:cc:aa:87:d2:fb:f3:e8:ea:04:6e:62:21:eb:
d7:26:d2:3c:81:5f:76:ce:fd:82:02:1d:e9:4d:8b:
96:99:2e:ac:1a:88:9d:cc:c8:7a:88:a1:b6:cb:48:
33:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2B:3C:69:AC:C9:96:71:D3:B5:3B:9C:07:23:D9:7A:CA:9D:6D:6B
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3231203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.16.0/20
Signature Algorithm: sha256WithRSAEncryption
04:97:60:55:2b:ea:9e:26:97:cb:b2:bf:61:58:ce:bb:92:32:
4d:23:6f:df:3a:7e:2b:13:f7:c7:e5:3f:ea:96:f3:68:49:a0:
51:9f:e0:6d:0f:3c:73:01:ea:64:d1:50:89:8b:98:2a:54:4f:
6f:9a:d4:10:0e:b1:68:2f:1e:2f:f2:c6:bd:8a:a1:43:0c:4b:
22:12:07:c2:a5:96:eb:ac:17:2a:b6:ca:72:c7:bf:a6:c3:98:
e5:cf:e2:8e:4b:64:c7:fb:72:1a:df:19:1b:43:15:f5:dd:b1:
55:89:63:c0:b2:0b:e5:48:dc:8f:d7:bd:6a:c5:55:e9:5b:c6:
84:3e:94:d7:72:ba:f7:f7:4a:fa:9a:5a:ba:8e:06:7e:92:6e:
2e:ba:24:26:0f:08:12:af:d4:cc:8d:01:ab:2d:87:3a:15:e0:
2f:15:94:cd:6c:dd:68:45:de:a7:a4:3f:14:08:80:e9:3d:bc:
82:32:7b:dc:ea:b5:50:ce:38:12:52:40:16:00:4b:1a:4e:7f:
e1:a7:31:43:54:cf:86:61:12:7b:36:f3:cb:c9:99:a9:1d:bb:
26:91:8f:76:0f:ad:bd:cc:f9:d7:50:80:cc:3d:8b:da:83:f9:
a6:80:a0:df:4f:c0:54:d8:d9:ac:12:ca:17:cf:eb:b4:ec:d4:
02:28:9b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org