Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3232203d3e203138313132.roa
File: 3230322e35372e31362e302f32302d3232203d3e203138313132.roa (raw, json)
Hash identifier: ccwiJ392eI3XLy7Avpn6+zC1lcmgcdjYvw/zQcCrpeI=
Subject key identifier: D1:51:B9:AA:0D:10:FC:5D:8C:3E:76:25:C3:27:35:B6:2B:07:86:CD
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 03C8B1A3B6522631456DCF8E2657E5B7D65A338F
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3232203d3e203138313132.roa
Signing time: Thu 12 May 2022 05:36:32 +0000
ROA not before: Thu 12 May 2022 05:31:32 +0000
ROA not after: Thu 11 May 2023 05:36:32 +0000
asID: 18112
IP address blocks: 202.57.16.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:c8:b1:a3:b6:52:26:31:45:6d:cf:8e:26:57:e5:b7:d6:5a:33:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 12 05:31:32 2022 GMT
Not After : May 11 05:36:32 2023 GMT
Subject: CN=D151B9AA0D10FC5D8C3E7625C32735B62B0786CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:55:be:5b:c5:dc:56:63:4e:72:e1:fd:87:57:
ef:c7:c1:d0:7c:fc:e8:bd:9d:dd:63:9c:d5:14:49:
fd:15:65:31:20:33:d3:1f:db:f9:cf:75:3c:b6:31:
63:d4:47:09:ef:56:77:8e:19:8b:d8:9e:87:af:5a:
60:d7:09:cc:67:9b:d6:ea:6d:52:3b:45:88:82:1e:
0e:2a:09:ae:51:3d:eb:58:c9:9a:35:e4:6b:c3:d1:
db:79:7b:a4:07:5a:0c:fc:36:e9:6b:b5:0f:42:87:
e3:ec:f9:9d:20:fc:6c:3a:83:62:ec:13:7f:6a:ca:
39:24:d2:64:2e:00:06:47:1d:3f:1e:86:70:56:7e:
61:ff:63:a2:24:48:2e:4f:74:f0:d5:eb:d0:d0:4c:
b5:e0:39:ee:d1:b4:39:46:ba:51:8f:ee:39:44:19:
5b:66:46:f3:76:bd:6c:20:8a:b6:5b:0c:9e:15:57:
6c:6c:a8:4a:b6:52:59:44:e5:d5:d3:3b:78:93:88:
03:43:b7:ec:d5:4d:d4:c9:76:32:f4:06:2b:e1:af:
05:3a:5d:7d:81:93:1b:2f:24:d2:6a:99:6e:a7:97:
a1:fc:86:7c:3e:a2:c2:fe:48:81:dc:b9:e1:db:1d:
6a:b1:d7:34:09:d7:5e:35:6c:f1:ec:11:03:75:2c:
04:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:51:B9:AA:0D:10:FC:5D:8C:3E:76:25:C3:27:35:B6:2B:07:86:CD
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3232203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.16.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:c4:3d:f1:75:de:18:40:1c:14:fb:55:c1:7d:e5:b7:f2:5f:
c1:53:01:f6:76:8d:e2:58:ce:7e:ef:21:8e:60:c7:65:0c:4a:
ff:10:b6:42:ad:70:da:74:db:7b:df:3a:60:25:0a:0b:61:08:
60:fd:54:1c:16:b8:e2:62:b6:04:a2:15:c4:8f:49:8d:66:ed:
68:67:b7:95:43:5c:d1:02:fa:d5:47:a1:a7:90:eb:4a:94:2c:
d6:d0:be:de:b0:46:0f:98:cc:47:77:2c:cb:8f:8e:04:7d:29:
f5:40:69:9a:b1:f7:a6:dd:d8:94:f6:0c:fb:5c:bd:91:29:8e:
db:b6:38:7f:41:7b:c4:98:19:35:ef:8f:76:88:22:84:1a:c2:
fa:55:d3:e5:8f:89:2a:2d:d8:fe:4c:e2:94:0d:0b:2d:6f:b2:
b7:5b:5a:81:07:05:09:78:5e:0f:aa:ac:6f:2d:23:82:8d:0c:
6b:23:32:10:1e:53:62:9e:e3:a2:8f:1a:2e:82:21:9a:19:70:
49:e2:15:ba:48:ec:c5:9d:cd:01:62:24:1f:f9:07:25:56:fd:
f8:f3:28:fe:ee:e6:f8:01:27:a9:4d:b7:f3:64:30:db:dd:cb:
be:45:90:97:c8:39:92:76:0a:36:06:95:ea:ea:ec:f1:38:6b:
28:ff:7e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org