Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3232203d3e203138313132.roa
File: 3230322e35372e32382e302f32322d3232203d3e203138313132.roa (raw, json)
Hash identifier: 2qUYVShiVgmftyXTN3ZO3Qzn6rYMsZnkYTEiX8PVI/4=
Subject key identifier: 44:23:16:6F:2B:67:30:B9:A5:6B:BC:04:AB:02:02:63:B0:39:54:0A
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 4D2DFFF0295842D84AF48EF5626D2695BBD5EA40
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3232203d3e203138313132.roa
Signing time: Tue 17 May 2022 05:29:41 +0000
ROA not before: Tue 17 May 2022 05:24:41 +0000
ROA not after: Tue 16 May 2023 05:29:41 +0000
asID: 18112
IP address blocks: 202.57.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2d:ff:f0:29:58:42:d8:4a:f4:8e:f5:62:6d:26:95:bb:d5:ea:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 17 05:24:41 2022 GMT
Not After : May 16 05:29:41 2023 GMT
Subject: CN=4423166F2B6730B9A56BBC04AB020263B039540A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:02:47:c5:5e:95:97:8f:91:8e:60:0f:8e:
ab:83:65:b5:b2:62:7a:a6:66:99:f6:3e:39:89:99:
79:e7:0f:2d:e4:23:b6:85:54:5f:8a:57:1e:85:9a:
85:ba:f8:6b:78:ac:0c:c6:1b:dc:01:78:52:69:e7:
14:0a:80:32:18:ee:f9:a2:21:75:50:db:c2:92:14:
16:18:87:39:21:de:7e:0b:4e:7f:5a:47:b6:1e:ac:
92:1b:af:b4:62:f9:5f:cb:f6:d1:cc:ed:56:d0:03:
d1:e5:e8:5a:84:a2:86:24:a5:50:83:f5:61:d5:ab:
be:d7:62:b3:26:21:c7:b3:b1:8e:4f:8a:86:67:93:
66:83:5e:f1:f5:aa:12:c9:26:3c:61:ef:0f:8d:24:
a1:59:b4:d3:01:1c:1d:81:07:cc:55:49:93:39:7d:
9e:27:0d:56:35:6c:bf:a9:6c:1e:22:08:76:17:b9:
b6:08:f6:ac:c4:f6:14:6d:93:45:97:06:1f:5a:63:
10:8d:56:95:c5:0e:fb:be:30:25:5b:56:a9:e9:72:
74:8e:b4:0b:2f:13:ba:14:86:70:30:98:5e:ef:b6:
32:c4:a7:61:c9:b9:2e:b9:0f:f8:3a:dd:c9:54:a8:
84:fe:9f:32:40:53:4f:39:a3:9c:ed:4b:83:9b:26:
36:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:23:16:6F:2B:67:30:B9:A5:6B:BC:04:AB:02:02:63:B0:39:54:0A
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3232203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.28.0/22
Signature Algorithm: sha256WithRSAEncryption
09:72:21:d2:58:7e:d1:91:eb:6e:5f:d9:0d:f3:82:03:e9:2f:
24:29:7b:d9:8c:67:2f:ee:47:f2:40:38:fe:45:9b:40:99:6b:
8c:ac:5b:47:eb:13:36:4c:25:58:f5:2e:6b:c8:cf:6b:03:3a:
cd:1c:73:f9:87:ae:ad:e2:85:f0:39:68:5f:06:f9:3c:7e:46:
95:dc:64:64:9b:d5:68:30:15:65:f0:90:15:b6:c7:b5:93:f6:
48:d5:3d:e5:1e:5d:70:cd:81:38:74:68:23:7b:c9:0c:e5:5d:
74:3d:ba:c2:e4:be:18:a1:4b:3d:c5:10:ce:d3:e2:8d:ac:a0:
94:b8:de:c3:05:7a:be:b0:a2:06:08:4b:ea:9b:db:d3:41:40:
ec:08:14:86:21:60:18:f4:04:1e:86:e4:d3:19:0e:a1:6a:f6:
5d:b2:54:d3:81:c6:87:23:9e:8f:4b:07:c3:1d:91:aa:4d:1e:
0e:3a:d3:ff:c2:24:5c:26:ee:f9:7d:0c:68:69:82:63:be:e2:
6e:c0:dc:fe:3a:29:15:0f:28:30:a5:38:c7:aa:fe:db:a7:f4:
04:f3:12:b3:1d:3b:68:15:1d:75:01:77:61:86:e0:64:d2:21:
5c:11:3f:03:ee:b8:69:94:2a:58:c1:d7:c2:df:bc:80:b4:99:
4c:ff:e0:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org