Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3234203d3e203138313132.roa
File: 3230322e35372e32342e302f32332d3234203d3e203138313132.roa (raw, json)
Hash identifier: nOjqvwe1rEdx6O2lotU6UpuPsWKMSeTKJS5JDpD6SiU=
Subject key identifier: B4:3E:F5:C8:45:0F:FF:28:BD:2C:25:94:46:07:8F:02:77:99:1A:A3
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 69D924B111230AB46472A90C6B78A4612F5B49DB
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3234203d3e203138313132.roa
Signing time: Tue 17 May 2022 05:24:23 +0000
ROA not before: Tue 17 May 2022 05:19:23 +0000
ROA not after: Tue 16 May 2023 05:24:23 +0000
asID: 18112
IP address blocks: 202.57.24.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:d9:24:b1:11:23:0a:b4:64:72:a9:0c:6b:78:a4:61:2f:5b:49:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 17 05:19:23 2022 GMT
Not After : May 16 05:24:23 2023 GMT
Subject: CN=B43EF5C8450FFF28BD2C259446078F0277991AA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:31:9d:65:c6:96:5a:29:3a:30:a5:66:61:
df:1c:7c:d9:d3:71:4b:03:f3:54:cf:1a:33:17:34:
99:1f:1c:cd:c1:67:f7:d4:51:6c:2f:bb:b3:06:4c:
56:81:25:8c:f5:e0:03:42:99:5e:75:73:ea:60:13:
c1:6a:4a:38:f7:a3:4f:7a:88:0f:74:a3:bd:f6:83:
a0:89:01:cf:d7:dc:b7:60:8b:57:94:bf:f2:be:0a:
c9:50:31:02:7e:02:ef:5e:2f:9a:3d:11:4c:d9:4d:
26:f8:bc:ae:d6:c0:8d:8e:c9:3c:d5:7e:40:bb:eb:
35:a3:f4:a2:53:81:1b:30:26:e8:dd:52:5e:a9:7e:
ab:66:c1:3e:f9:30:8c:d6:0d:eb:59:0b:14:26:ec:
2f:10:ee:cc:57:73:2b:59:fc:9b:9e:7b:2b:ee:1e:
eb:40:19:c3:19:e2:86:00:fc:ea:91:4c:53:e5:a1:
59:b9:31:e7:4e:bc:7b:7c:b3:cb:18:da:cc:74:7b:
05:cf:9e:c4:3b:96:3f:2c:ea:e5:8f:ac:3a:2c:45:
37:64:0b:1e:aa:0f:ae:49:9c:64:9b:b7:e9:3c:46:
a0:25:69:2e:89:b2:0c:6f:ce:9d:57:71:ca:6b:f6:
0f:12:38:d8:3e:1d:32:5e:0e:ba:1e:5b:cd:b2:a3:
45:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3E:F5:C8:45:0F:FF:28:BD:2C:25:94:46:07:8F:02:77:99:1A:A3
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32332d3234203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.24.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:02:fc:15:eb:a7:04:91:1f:19:cb:53:3f:07:35:07:e8:34:
70:69:ee:51:83:a1:14:78:12:bc:31:17:9c:6c:88:e0:82:37:
30:32:5a:33:d4:1a:97:f5:22:7a:4a:11:68:17:6f:7c:c9:8b:
55:2f:5d:5c:c5:88:c8:31:e1:bc:a3:31:8f:86:44:5f:75:22:
3b:47:aa:6a:ea:af:1d:9c:f6:e4:57:db:35:05:8e:2f:48:94:
17:5d:07:61:78:c4:b7:74:38:fa:6c:49:a8:bb:0c:55:27:18:
2d:c5:91:35:b4:83:eb:68:23:c9:e2:5e:80:e9:68:9a:60:a3:
ad:63:18:fa:5f:b0:5e:3a:b2:b9:78:36:f0:ff:66:46:23:dd:
c0:10:c4:08:cf:67:d2:94:70:3e:09:fa:2f:0e:bd:2a:45:dc:
0e:78:df:4a:a1:e2:e7:19:f1:38:2b:4f:75:0b:65:e4:26:21:
5b:dd:37:92:24:2c:97:34:b1:27:9a:2b:36:37:be:ba:13:69:
3c:b0:9f:10:bb:cb:36:48:ab:c0:fa:47:94:41:f9:ae:0b:36:
c2:94:2e:a9:eb:f2:ce:e8:90:fd:b4:0a:ac:d9:5e:0c:3c:3a:
e2:40:65:00:f7:1b:5e:d1:2f:96:c3:5b:43:34:46:40:f9:4c:
2c:4d:f2:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org