Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3233203d3e203138313132.roa
File: 3230322e35372e32382e302f32322d3233203d3e203138313132.roa (raw, json)
Hash identifier: QA5CZjUSF9R6YQ2Ew4PhsSz/yQdVtFq4bgGMklxBGXU=
Subject key identifier: 8A:81:C6:E0:5C:D6:97:56:5D:04:37:E2:2F:DA:EC:30:F1:7D:9B:56
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 5AA63123E8533DD20D0EEA865E8B51806770FB6C
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3233203d3e203138313132.roa
Signing time: Tue 17 May 2022 05:30:19 +0000
ROA not before: Tue 17 May 2022 05:25:19 +0000
ROA not after: Tue 16 May 2023 05:30:19 +0000
asID: 18112
IP address blocks: 202.57.28.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:a6:31:23:e8:53:3d:d2:0d:0e:ea:86:5e:8b:51:80:67:70:fb:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 17 05:25:19 2022 GMT
Not After : May 16 05:30:19 2023 GMT
Subject: CN=8A81C6E05CD697565D0437E22FDAEC30F17D9B56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a2:ab:a4:01:b6:5f:d6:69:df:d0:a1:b6:54:
5b:52:a8:d5:3d:f8:20:ee:27:4c:ab:0e:f0:b8:40:
30:b2:87:74:26:bd:37:a4:86:d0:f6:96:79:a5:18:
dc:e5:c2:29:a2:9d:d3:0e:7a:1e:64:4f:1a:d5:3f:
af:10:97:cd:8a:b7:5c:02:ac:a0:c2:8b:71:f7:4a:
c3:c4:d9:ce:48:e2:fc:09:77:9b:02:cd:b8:8b:5c:
f1:29:30:bc:c9:60:cf:6e:eb:ac:8a:77:0e:9e:74:
be:b8:64:e3:e6:d5:a6:b4:92:64:0b:a4:82:d7:79:
fd:86:98:cf:71:06:f6:f6:19:ae:9d:68:86:ba:77:
bd:e0:31:a4:d6:54:2e:4b:98:23:17:a4:df:f8:4c:
36:c5:fb:93:68:e5:80:ee:81:80:2e:99:c0:5c:1d:
e9:15:02:22:b0:3a:46:74:c6:7c:78:cb:e1:cd:cd:
84:60:c6:d1:8e:0e:50:d3:cd:23:47:99:6c:c8:44:
9a:f0:c3:23:17:19:d9:08:a7:fe:75:02:72:f5:f5:
3f:29:92:a9:96:2e:43:54:f0:03:b0:a8:d1:39:a0:
3f:0a:9e:24:f4:aa:26:26:8f:6d:ce:db:9f:4c:8a:
24:2a:96:5e:9e:61:ad:64:a1:26:e4:5c:02:bf:73:
7c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:81:C6:E0:5C:D6:97:56:5D:04:37:E2:2F:DA:EC:30:F1:7D:9B:56
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3233203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.28.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:c7:d7:4f:80:2c:24:3f:09:1f:69:00:f0:d9:74:b4:ec:e5:
61:e1:b3:d7:f7:91:3c:bc:23:6e:31:1e:4a:d4:93:f9:a9:23:
51:b8:f6:c7:98:2e:ff:5a:87:03:94:93:0c:13:85:bf:47:8b:
28:8b:85:0c:b3:d7:ba:ab:81:5d:74:ec:9f:bb:11:4f:f7:be:
d1:90:11:a5:43:03:3a:99:94:f3:20:ac:7d:da:21:0f:c1:e9:
6e:b1:e8:80:7d:7d:39:c0:55:27:2d:b8:d0:a6:81:53:2b:ba:
33:4a:da:90:bf:aa:5d:0c:36:71:5d:7f:25:b2:c1:e5:4a:53:
2a:cb:91:c5:52:a6:f6:04:83:c1:90:f9:cf:8c:89:74:7a:10:
68:73:56:84:5c:7f:85:b3:4a:8e:95:43:7e:50:5f:3a:5a:1c:
e3:dd:a3:61:12:ab:9c:88:eb:b5:18:7f:17:ae:b1:60:97:cc:
2c:2a:fe:ec:38:1e:89:a1:49:d5:46:55:7b:8a:ca:18:d2:7a:
81:15:9c:f1:d6:5f:3b:71:69:8f:60:b2:f9:ed:6b:ba:c2:70:
0c:29:29:eb:37:86:62:6f:5c:e0:5e:3c:9b:ba:f5:5a:73:8f:
27:c0:30:88:ae:96:05:d3:aa:10:0e:88:49:eb:b3:f2:0e:a1:
1a:08:d5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org