Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e203138313132.roa
File: 3230322e35372e32342e302f32332d3233203d3e203138313132.roa (raw, json)
Hash identifier: U7OOmz1M5vxLwIALfYAUtWJaRhIkOboOslPXY/xlbZk=
Subject key identifier: 71:98:B2:B3:CB:C6:5B:83:FF:C1:48:4F:CA:AE:46:54:58:BD:76:03
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 44119E77F1FB46F36E5947AEE7B80791B9A85B07
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e203138313132.roa
Signing time: Tue 17 May 2022 05:20:04 +0000
ROA not before: Tue 17 May 2022 05:15:04 +0000
ROA not after: Tue 16 May 2023 05:20:04 +0000
asID: 18112
IP address blocks: 202.57.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:11:9e:77:f1:fb:46:f3:6e:59:47:ae:e7:b8:07:91:b9:a8:5b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 17 05:15:04 2022 GMT
Not After : May 16 05:20:04 2023 GMT
Subject: CN=7198B2B3CBC65B83FFC1484FCAAE465458BD7603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9f:ce:2d:39:1c:90:61:11:d9:38:3a:cd:08:
11:4b:ad:58:c2:02:da:4a:5a:e3:04:30:d9:d7:bb:
66:42:8e:90:09:d7:d2:2b:c3:78:49:e4:1e:ed:21:
cd:88:ae:87:10:7e:95:8a:0a:ea:a7:d7:53:f2:63:
0a:cf:f5:49:eb:db:ac:91:9a:9a:0e:54:8a:a2:11:
63:49:3d:fa:5e:a8:48:77:69:3c:25:4b:43:e1:59:
46:3d:9e:0d:62:a1:ee:f6:11:45:53:ec:c1:10:b6:
d8:79:ef:86:da:f7:0f:6d:26:c9:fc:ba:9c:ff:ec:
8a:dd:3a:33:0a:89:87:ad:83:77:70:53:1e:32:4e:
ce:a8:1d:8c:87:5f:38:e9:02:22:2c:2b:e0:60:65:
9b:38:19:48:3d:1d:8d:46:e3:3b:8d:42:52:4b:70:
04:f1:86:cc:82:fe:b8:7d:ec:4e:57:38:59:2d:f7:
4d:6b:12:b4:8a:2e:0e:98:2e:bb:59:12:ef:5f:4e:
f9:64:15:a5:06:6c:20:7a:4d:2a:d6:31:dc:3e:00:
6c:15:54:e3:14:64:80:df:dd:42:8c:6f:04:5a:53:
7b:4c:8c:51:cd:9e:1e:5c:8b:29:e4:2a:4e:33:8d:
51:db:ee:06:bc:da:41:dc:35:12:0b:d0:33:93:e7:
d2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:98:B2:B3:CB:C6:5B:83:FF:C1:48:4F:CA:AE:46:54:58:BD:76:03
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3233203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.24.0/23
Signature Algorithm: sha256WithRSAEncryption
32:66:04:08:e8:86:ff:3f:fd:2b:63:7f:64:34:9d:f0:99:ea:
34:c9:24:4b:80:56:a4:8c:ba:36:7c:6a:f6:4d:1d:f6:19:32:
05:c6:8f:fa:59:1f:48:ed:ac:8e:07:ae:9d:79:8c:f1:2d:07:
d3:15:f3:c3:f5:dd:80:3b:f8:b9:16:34:c1:06:9a:c0:ad:eb:
6d:1f:ee:7a:6d:bd:14:58:0a:1e:96:0f:7f:2d:9b:41:ea:6a:
23:4d:24:f5:df:8d:aa:4d:e4:78:04:a4:04:8e:9a:ff:d4:4c:
90:40:d6:de:41:d9:a6:d1:89:3b:4d:a2:94:85:13:41:62:03:
4f:19:6e:d1:d9:c8:9e:49:29:a2:76:90:cf:62:a7:d9:86:82:
57:32:25:cf:ce:70:af:db:39:45:8b:82:14:67:88:de:db:e1:
c6:af:24:ef:44:aa:3f:c7:89:84:ea:44:7b:8a:e8:f9:03:66:
b6:b5:60:4b:4e:1a:9f:65:67:b6:84:8d:47:b8:35:d6:6a:05:
ee:04:14:28:cd:44:e0:91:32:22:df:07:f1:cc:a6:66:a0:33:
ef:da:51:9a:29:0e:8a:47:9d:5d:04:01:18:08:be:7b:2d:a5:
2d:3f:24:d4:63:01:50:f6:20:c6:fe:7a:40:10:06:e1:53:c3:
af:80:6b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org