Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3234203d3e203138313132.roa
File: 3230322e35372e31362e302f32302d3234203d3e203138313132.roa (raw, json)
Hash identifier: gTOFoScYIS5VipP2tyzVmYi61zeUspd60441BRvW1bI=
Subject key identifier: C6:4D:99:04:BB:AA:22:1E:B2:84:6A:D6:E3:F3:66:0B:CA:88:F6:C8
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 650621FCD0C3C987049CB3A88F9D55873DDD6B4E
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3234203d3e203138313132.roa
Signing time: Thu 12 May 2022 05:36:59 +0000
ROA not before: Thu 12 May 2022 05:31:59 +0000
ROA not after: Thu 11 May 2023 05:36:59 +0000
asID: 18112
IP address blocks: 202.57.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:06:21:fc:d0:c3:c9:87:04:9c:b3:a8:8f:9d:55:87:3d:dd:6b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 12 05:31:59 2022 GMT
Not After : May 11 05:36:59 2023 GMT
Subject: CN=C64D9904BBAA221EB2846AD6E3F3660BCA88F6C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ae:39:95:0a:ca:78:99:c8:c1:2f:df:0e:fe:
1d:dc:8e:85:52:1f:cc:5b:90:31:d7:b7:4f:07:af:
96:f2:c5:a9:96:18:9f:1d:13:4f:fa:e1:7a:cb:77:
00:51:1e:b8:35:1d:b5:0c:f1:9d:78:1c:77:8e:ce:
18:f2:43:ab:e1:7f:91:54:d6:3a:72:03:d1:af:17:
0a:ef:1a:ba:18:e8:2b:fa:bb:f0:67:77:74:9f:56:
ae:cf:82:6b:08:7d:bb:db:07:cd:28:7b:94:61:d8:
c3:6d:c8:ed:3f:28:9f:1f:cb:9c:cf:d6:0b:88:b9:
d7:5a:5e:66:fc:98:b2:a2:1f:63:14:a1:d0:33:d3:
0c:15:07:ff:a9:33:bf:5e:15:87:62:e5:b9:db:64:
a3:c4:22:27:14:57:9a:8b:69:56:b0:81:8d:d6:a9:
72:85:46:2a:52:87:d8:b5:49:86:3b:d6:e2:fc:02:
87:8c:8d:85:0c:35:b5:20:2f:90:67:bb:73:e4:41:
31:a3:42:62:12:7d:de:7b:65:ea:b7:e2:2c:de:e5:
9c:72:e1:97:70:b3:14:56:09:fd:2d:4f:c0:70:10:
d9:25:a5:d7:27:cb:04:5b:7b:14:30:c8:06:76:2c:
af:39:0e:e2:d0:11:13:81:5d:f5:d0:c2:e9:d1:cd:
91:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:4D:99:04:BB:AA:22:1E:B2:84:6A:D6:E3:F3:66:0B:CA:88:F6:C8
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32302d3234203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.16.0/20
Signature Algorithm: sha256WithRSAEncryption
85:f5:ad:2c:51:a2:06:b8:0c:e7:3f:8a:5a:86:c8:2b:75:cc:
c3:63:6c:ba:cc:53:2a:77:2e:8a:2e:f5:60:d8:75:6d:8a:31:
c7:4d:e2:02:07:a7:9f:e0:b7:9e:ca:2f:82:cd:bf:68:3e:19:
d3:54:83:72:7d:ec:63:d0:62:85:ff:ea:2f:63:76:75:d9:e7:
6f:96:8a:9b:7a:a7:71:80:32:a9:15:90:8f:bd:71:b7:f9:9f:
14:7f:5c:ef:32:f9:b2:20:b8:0d:a0:25:d4:43:33:81:cd:ab:
9b:ed:52:90:82:b7:97:ce:7f:c4:09:94:8d:a4:c3:87:86:7e:
03:60:34:86:c7:bd:29:f7:3d:9c:95:8d:29:3e:b8:5f:e7:70:
78:f5:f7:04:5b:d1:05:b0:0a:dc:fc:46:ce:5b:19:2e:eb:15:
55:12:3c:67:05:ae:86:4c:79:2e:d0:a5:d6:c2:e0:c1:86:4b:
fe:7d:f7:6a:a1:2f:3a:8a:9a:72:66:4f:70:19:ec:ef:cb:ef:
11:62:9e:44:4c:6a:7b:6f:ca:2e:28:6e:6b:1d:cb:9e:ff:78:
55:bd:ba:b7:2e:b0:bb:82:97:11:db:7d:cf:82:2c:17:99:1b:
07:90:48:77:8b:29:60:8c:96:ed:a6:6e:ef:31:0f:99:fa:39:
65:dd:86:78
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUZQYh/NDDyYcEnLOoj51Vhz3da04wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3
Qjg1OUJENTAeFw0yMjA1MTIwNTMxNTlaFw0yMzA1MTEwNTM2NTlaMDMxMTAvBgNV
BAMTKEM2NEQ5OTA0QkJBQTIyMUVCMjg0NkFENkUzRjM2NjBCQ0E4OEY2QzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6rjmVCsp4mcjBL98O/h3cjoVS
H8xbkDHXt08Hr5byxamWGJ8dE0/64XrLdwBRHrg1HbUM8Z14HHeOzhjyQ6vhf5FU
1jpyA9GvFwrvGroY6Cv6u/Bnd3SfVq7PgmsIfbvbB80oe5Rh2MNtyO0/KJ8fy5zP
1guIuddaXmb8mLKiH2MUodAz0wwVB/+pM79eFYdi5bnbZKPEIicUV5qLaVawgY3W
qXKFRipSh9i1SYY71uL8AoeMjYUMNbUgL5Bnu3PkQTGjQmISfd57Zeq34ize5Zxy
4ZdwsxRWCf0tT8BwENklpdcnywRbexQwyAZ2LK85DuLQEROBXfXQwunRzZF7AgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUxk2ZBLuqIh6yhGrW4/NmC8qI9sgwHwYDVR0j
BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw
ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1
OUJENS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h
ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzEzNjJlMzAyZjMyMzAy
ZDMyMzQyMDNkM2UyMDMxMzgzMTMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKORAwDQYJKoZIhvcN
AQELBQADggEBAIX1rSxRoga4DOc/ilqGyCt1zMNjbLrMUyp3Loou9WDYdW2KMcdN
4gIHp5/gt57KL4LNv2g+GdNUg3J97GPQYoX/6i9jdnXZ52+Wipt6p3GAMqkVkI+9
cbf5nxR/XO8y+bIguA2gJdRDM4HNq5vtUpCCt5fOf8QJlI2kw4eGfgNgNIbHvSn3
PZyVjSk+uF/ncHj19wRb0QWwCtz8Rs5bGS7rFVUSPGcFroZMeS7QpdbC4MGGS/59
92qhLzqKmnJmT3AZ7O/L7xFinkRMantvyi4obmsdy57/eFW9urcusLuClxHbfc+C
LBeZGweQSHeLKWCMlu2mbu8xD5n6OWXdhng=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org