Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38312e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e38312e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: nI4DCPXLrni1VZjJIU0k6BdERMWe4Dkt1Ib/c64+y8Y=
Subject key identifier: 2F:48:35:B2:11:99:B7:C7:A0:69:B4:78:28:7B:3B:3E:29:E8:DD:C7
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 7CD1D0A759343A02C58F22B9C18F6E55440CF92C
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38312e302f32342d3234203d3e203338353237.roa
Signing time: Wed 15 Mar 2023 10:39:59 +0000
ROA not before: Wed 15 Mar 2023 10:34:59 +0000
ROA not after: Wed 13 Mar 2024 10:39:59 +0000
asID: 38527
IP address blocks: 27.124.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:d1:d0:a7:59:34:3a:02:c5:8f:22:b9:c1:8f:6e:55:44:0c:f9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 10:34:59 2023 GMT
Not After : Mar 13 10:39:59 2024 GMT
Subject: CN=2F4835B21199B7C7A069B478287B3B3E29E8DDC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:ef:d3:89:d5:12:ca:3c:62:4b:7f:d6:b6:
7c:31:c5:72:29:69:16:0f:3b:54:61:8e:1b:aa:f6:
e4:56:d3:b2:d3:24:1a:cc:2f:16:90:6b:cc:a0:cb:
f6:d9:eb:fa:c7:69:0b:61:70:c8:53:1d:66:17:59:
11:52:fc:dc:91:c3:6c:0b:e8:25:e3:e8:79:b7:a0:
f4:e1:f4:8f:b3:61:dc:e8:0e:ad:61:c4:eb:88:c8:
8e:23:73:e0:13:41:a8:98:3f:1e:ac:fc:9a:05:bf:
19:05:7c:3e:53:f8:11:26:2c:23:a0:2e:20:45:9b:
1e:3b:6b:34:98:2c:0d:ea:ae:8b:46:83:ac:6a:7a:
d3:67:15:5e:fd:e2:27:1f:a0:9b:9e:65:a3:c2:a9:
c3:cf:73:b2:9d:5a:c2:4a:e7:7c:b0:de:0c:5d:00:
c9:5b:2e:fa:7b:26:be:11:32:ec:3d:d2:de:9b:11:
5d:5e:cb:03:68:c5:7f:2f:1b:ad:91:60:35:3e:05:
64:61:68:71:43:4f:b7:cd:86:5a:70:8b:7e:3f:a1:
3c:e6:fb:96:b2:00:d3:e7:d9:f9:b9:d3:82:ac:29:
55:2d:4c:51:38:bc:6d:f6:b4:d0:4b:88:85:77:a2:
1b:f7:c5:9c:57:c2:43:61:22:55:77:e3:c2:9a:8e:
95:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:48:35:B2:11:99:B7:C7:A0:69:B4:78:28:7B:3B:3E:29:E8:DD:C7
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38312e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.81.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:f7:ef:b0:1e:1e:b8:dd:bb:ec:1c:88:56:74:2b:23:70:c4:
97:c1:e4:29:4b:96:5a:cb:6c:45:40:87:e7:ab:35:d8:ed:39:
c4:88:78:e1:ff:38:5a:50:51:77:8c:2a:98:ab:3b:05:34:bf:
73:98:89:65:b8:e3:5a:bc:e7:c5:65:2d:6d:46:ee:c0:85:7a:
e2:aa:b4:f6:3c:1e:ac:94:e6:49:94:b8:d5:b1:fb:37:45:41:
35:8f:52:cf:a7:91:cb:95:7e:a6:ff:ab:68:45:4c:83:7f:21:
03:68:94:9b:72:bd:20:3a:18:10:78:cb:bb:97:3e:7b:61:99:
86:79:17:50:fc:27:b8:74:11:12:43:8a:14:f9:ce:e3:07:b2:
b6:aa:37:90:9b:fd:15:b1:38:88:32:5d:05:a2:43:24:ad:06:
ad:c3:e5:7c:44:41:ac:c8:ef:7e:65:be:37:fc:b6:b9:38:92:
5a:ee:f9:12:6a:4e:a9:d6:e2:a4:38:59:68:d1:75:18:6c:01:
93:f5:f6:8f:53:5c:22:21:09:93:12:e4:40:d7:cc:71:dd:36:
38:22:6f:91:c1:7f:c0:d5:84:92:10:46:08:70:c4:fc:84:e3:
02:8e:53:86:b8:54:31:0a:b1:b1:b9:3f:c2:32:1e:57:c4:c6:
f0:f3:55:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org