Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3234203d3e203138313132.roa
File: 3230322e35372e32382e302f32322d3234203d3e203138313132.roa (raw, json)
Hash identifier: NIS22gJaDq45dBYh/1LUTx0tY8dGpZVAeP2zBl2AFb8=
Subject key identifier: 44:2A:5C:95:1C:03:5B:6A:F4:52:A5:1A:44:88:1B:A1:91:E9:B2:92
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 7D7A883B3C3CDC211B2AB516AC3BADA214F1C1F6
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3234203d3e203138313132.roa
Signing time: Tue 17 May 2022 05:24:52 +0000
ROA not before: Tue 17 May 2022 05:19:52 +0000
ROA not after: Tue 16 May 2023 05:24:52 +0000
asID: 18112
IP address blocks: 202.57.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:7a:88:3b:3c:3c:dc:21:1b:2a:b5:16:ac:3b:ad:a2:14:f1:c1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: May 17 05:19:52 2022 GMT
Not After : May 16 05:24:52 2023 GMT
Subject: CN=442A5C951C035B6AF452A51A44881BA191E9B292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1a:9a:21:c8:c2:7a:c1:0f:0d:8a:b8:25:85:
ab:5d:e9:86:8d:54:78:60:fd:5c:4b:b7:eb:3e:41:
90:51:5b:db:f7:80:a7:df:7f:02:38:2e:d1:24:1a:
ef:18:1a:13:fa:a7:38:30:f4:d1:9e:ab:80:61:fc:
b6:3d:bd:8d:d9:c2:bf:17:8b:87:2f:05:21:d9:d3:
b8:30:a6:20:72:f3:fb:9d:2d:f9:21:58:65:c9:25:
f6:9f:07:0d:8b:86:fc:7a:53:1e:4a:65:20:85:5b:
f3:ff:6e:5c:64:bc:91:67:38:ab:fa:4f:72:37:da:
4b:5c:29:05:02:47:e1:20:0a:43:64:43:03:7c:7c:
d1:14:0d:f9:e0:c5:3e:e0:94:93:8c:bc:7c:5f:fd:
92:29:8a:6e:42:8a:42:68:bf:eb:c4:7f:be:dc:69:
84:12:e0:e7:92:d1:4a:5f:31:93:33:fb:0c:41:8b:
16:af:d5:9d:62:02:a1:b0:12:a0:27:d3:f7:f8:24:
13:b4:20:2e:e8:fd:18:27:9f:4c:b2:a6:2f:5b:a1:
5c:2d:c7:9d:b6:f8:91:06:de:45:3d:2f:fc:7d:fd:
bb:4a:06:d1:42:d7:ed:ee:fd:20:09:12:95:86:38:
84:38:ee:8d:58:90:62:18:8b:2d:ab:5b:28:a7:e4:
62:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:2A:5C:95:1C:03:5B:6A:F4:52:A5:1A:44:88:1B:A1:91:E9:B2:92
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32382e302f32322d3234203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.28.0/22
Signature Algorithm: sha256WithRSAEncryption
af:c6:5f:21:21:11:39:31:ed:91:c3:0c:81:90:7b:0d:79:74:
44:22:92:f9:d7:bf:6f:57:a6:1e:62:76:45:f5:3a:2e:8a:d0:
a8:8d:a5:fe:e0:05:6f:9d:82:92:c9:1f:14:59:ca:b5:cd:8d:
89:f5:be:2d:0f:33:c1:64:50:08:33:4d:a0:93:1b:40:97:9b:
24:4a:d4:bd:67:64:f6:a4:2f:8f:25:16:be:77:86:95:53:c1:
19:df:a9:a9:b5:09:6e:ed:77:49:93:fc:99:c6:23:ae:5b:a4:
5e:88:8d:32:a1:a5:95:f8:60:1f:09:f3:95:f7:a5:83:cd:e8:
0d:84:27:9d:34:7f:d2:07:64:fa:75:33:67:39:2b:7f:56:27:
92:f7:b5:9c:1b:6d:9f:e0:c3:bb:05:c5:f7:75:b1:db:a2:4e:
1b:7f:cc:ab:2b:c5:c9:e3:07:9f:da:84:58:ab:21:fb:8f:a2:
90:bb:d1:7d:7e:23:92:e8:bd:5e:22:26:6e:f3:5f:b9:1f:c3:
42:d8:d8:b2:c6:44:7b:13:af:c3:7b:63:e3:ce:46:cf:33:0a:
81:80:18:ee:96:6f:85:dd:e9:95:bc:75:32:9b:67:35:47:03:
51:08:3b:24:cb:3d:4e:d2:28:ba:31:4f:33:a9:90:5c:e1:16:
14:33:09:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 23:54:18 2025 by rpki-client