Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3233203d3e203138313132.roa
File: 3230322e35372e31362e302f32302d3233203d3e203138313132.roa (raw, json)
Hash identifier: gOmru1FGg+qCiQdVgpMyk6JCrbvbDXjjeEHFmktJE1w=
Subject key identifier: 22:A2:D7:AB:32:29:CF:29:72:64:6E:66:A4:67:6D:63:43:7D:02:51
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 0545FE57D41A317D42290670353E71040400431A
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3233203d3e203138313132.roa
Signing time: Thu 12 May 2022 05:36:46 +0000
ROA not before: Thu 12 May 2022 05:31:46 +0000
ROA not after: Thu 11 May 2023 05:36:46 +0000
asID: 18112
IP address blocks: 202.57.16.0/20 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:45:fe:57:d4:1a:31:7d:42:29:06:70:35:3e:71:04:04:00:43:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 12 05:31:46 2022 GMT
Not After : May 11 05:36:46 2023 GMT
Subject: CN=22A2D7AB3229CF2972646E66A4676D63437D0251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:27:73:93:65:bc:62:fb:3b:b1:84:5b:29:8e:
b6:2a:2c:18:b2:56:86:7a:6c:e8:ad:72:39:83:a1:
ae:a9:91:ec:e0:bd:cb:34:5b:85:e4:cb:10:00:d5:
6c:b4:8c:bf:b6:09:1b:a1:8b:35:3b:77:20:46:f0:
6c:60:37:7c:3f:26:f9:fe:48:35:b9:01:1c:70:f9:
58:4b:be:59:97:86:b4:b6:c9:d4:5f:f1:9e:71:36:
64:46:87:91:99:00:ca:3b:45:33:8e:ea:2f:b6:bb:
1f:5d:2b:2a:4d:92:75:52:b4:97:9d:8e:c6:a0:9e:
6c:0a:95:34:c1:8f:26:14:a7:03:40:89:fe:0d:8b:
7a:d8:fa:4c:ea:7c:5e:a3:d1:9d:b9:92:42:ca:0c:
23:17:75:2c:d9:c1:af:f5:f7:f3:de:e3:9b:04:89:
3a:f7:3c:95:3e:a0:55:cd:dd:19:de:a8:3b:68:9f:
d8:ef:c7:6d:cd:50:a0:6b:09:3e:1e:f2:89:74:ef:
0a:db:ed:01:71:21:4c:e1:61:38:55:9f:d9:79:be:
ab:0c:a1:2f:3f:e3:45:d4:d3:f4:cd:3b:81:21:3f:
03:2d:d9:53:69:3c:28:1f:43:7b:ec:f9:44:55:2c:
5e:7c:94:f5:30:2a:8e:c3:b5:cd:8f:91:71:25:7d:
32:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A2:D7:AB:32:29:CF:29:72:64:6E:66:A4:67:6D:63:43:7D:02:51
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3233203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.16.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:95:c7:92:21:fa:ae:94:fd:4c:02:6d:02:f1:af:ae:50:1d:
9f:79:fd:3e:a1:08:0a:ed:7a:09:83:5e:34:bd:18:9b:84:2a:
33:96:2e:0f:6a:aa:d2:2e:58:55:7b:15:0c:22:bd:0a:ae:a2:
83:81:50:91:11:ae:db:00:83:b1:b6:32:56:bc:b9:20:8a:1e:
bc:25:46:07:42:11:48:94:72:83:db:c8:f2:ac:87:18:c2:21:
54:ab:fe:31:3e:97:ff:cf:3a:21:17:f9:34:ee:22:2b:de:55:
88:a8:22:e0:59:a4:42:02:b7:ac:a3:66:ec:3f:89:47:07:36:
07:41:26:fc:7f:76:22:4d:9e:3c:89:93:fa:8d:35:ef:83:eb:
5b:a8:54:7f:4b:c0:56:c7:0c:5d:a2:39:9e:3c:d0:32:ae:f2:
68:dc:29:22:d9:b2:b1:29:33:3e:25:6a:a7:ad:32:cb:af:9c:
b0:06:2e:30:c0:e0:d3:73:4e:9a:e0:bc:1d:16:79:f3:a6:e3:
9a:5d:c0:42:87:9c:b2:68:29:24:ec:84:05:9d:8d:2c:09:c0:
ce:96:53:79:0d:a5:c4:0f:57:48:eb:1b:13:5f:8b:3d:27:e2:
52:bf:44:50:d7:ee:b3:01:46:ce:bd:fa:ca:86:64:4e:14:b0:
b2:40:ab:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org