Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38362e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e38362e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: UGOdg5hS9gTEjTr5ygiXumlV85hGcAjp6YIiIuWENds=
Subject key identifier: 81:E9:6D:79:17:1C:DC:BB:04:D5:12:01:94:64:9A:08:74:97:95:90
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 1189ABD6FECEE038F40E04817BFF645EA3540A31
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38362e302f32342d3234203d3e203338353237.roa
Signing time: Fri 17 Mar 2023 04:16:19 +0000
ROA not before: Fri 17 Mar 2023 04:11:19 +0000
ROA not after: Fri 15 Mar 2024 04:16:19 +0000
asID: 38527
IP address blocks: 27.124.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:89:ab:d6:fe:ce:e0:38:f4:0e:04:81:7b:ff:64:5e:a3:54:0a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 17 04:11:19 2023 GMT
Not After : Mar 15 04:16:19 2024 GMT
Subject: CN=81E96D79171CDCBB04D5120194649A0874979590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8a:64:95:b0:36:3d:4a:14:bd:b4:8a:a4:54:
05:93:a9:8f:ae:96:57:b0:9d:b7:f7:e4:42:35:2e:
0d:46:06:cf:57:56:c0:20:81:f7:ea:aa:99:22:ce:
46:04:11:1d:f6:12:60:45:63:14:2d:fd:f4:0d:72:
7f:b6:8d:50:b8:15:b8:08:de:ce:6a:2e:bc:a9:fa:
b0:de:1c:cc:e2:7b:b5:f8:ff:bf:bc:20:dd:6a:f7:
ee:a8:5f:b6:89:be:9d:a6:d6:6a:86:1e:cd:4a:48:
02:72:69:52:f4:98:3d:97:a9:af:5e:2a:67:28:2d:
e3:d5:90:1f:f8:ed:20:d3:d9:60:07:73:01:41:8b:
af:29:01:c8:c8:86:e5:cd:d4:2c:2d:24:4c:2e:a7:
45:bc:ae:51:d1:7b:ac:a8:c8:93:bb:59:a1:df:8c:
2a:70:35:f2:a3:1d:43:80:57:79:62:c9:41:f4:89:
c7:a7:a5:98:be:01:b2:fa:6c:4b:a3:cf:bc:b8:1d:
b3:8b:e1:f1:f3:8a:22:09:78:85:44:2d:06:02:58:
50:e8:70:93:d2:10:ef:f6:c5:f7:7a:b9:b8:4e:02:
5c:f3:a0:75:07:7d:1a:78:1d:e6:83:6b:9f:46:32:
64:e4:0b:17:ed:b5:2f:85:fc:6c:56:19:ba:68:84:
a1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E9:6D:79:17:1C:DC:BB:04:D5:12:01:94:64:9A:08:74:97:95:90
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38362e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.86.0/24
Signature Algorithm: sha256WithRSAEncryption
74:bd:a7:f3:a8:a5:ad:b2:fd:a8:3e:aa:22:97:18:4e:d1:d0:
c5:ee:ee:ae:44:62:fe:17:47:28:d7:67:b7:6c:f6:4d:6e:03:
7a:73:5b:40:dd:b5:ef:0c:2e:0c:d7:6a:85:e4:43:ca:94:62:
29:14:85:62:79:d2:62:ae:ac:35:9d:0e:73:6e:70:1b:2c:42:
33:50:ab:93:3e:86:6e:2f:dc:59:8a:b3:df:5f:e6:cd:4a:7d:
44:ac:25:e2:2c:21:99:2d:4a:c0:b4:6b:01:5e:31:ca:a5:49:
aa:8f:dd:bb:ba:1d:58:9f:d6:79:c2:90:59:1c:65:4e:a5:43:
74:80:9f:89:c9:af:c3:b9:f6:2c:4b:fe:20:a6:8b:3e:7b:63:
a9:e2:78:68:43:0b:b1:69:b5:26:af:c4:ea:6f:e5:2c:02:bd:
1d:06:40:a0:2c:ff:55:e7:a8:79:63:30:e6:5f:59:d8:cc:6e:
25:87:30:c6:62:b8:ba:8b:18:f2:10:6b:97:29:b6:09:4e:32:
a4:98:56:d4:17:47:3c:2b:91:1b:4d:05:36:28:57:e2:ec:d9:
cf:d2:e6:d0:cf:15:9f:0d:86:13:e7:ae:f4:32:a4:73:b5:9d:
cf:71:b5:16:52:da:7c:32:4e:13:d4:6c:4d:6b:26:f6:63:00:
bc:00:12:fb
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUEYmr1v7O4Dj0DgSBe/9kXqNUCjEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD
RjlBNjQ3MzAeFw0yMzAzMTcwNDExMTlaFw0yNDAzMTUwNDE2MTlaMDMxMTAvBgNV
BAMTKDgxRTk2RDc5MTcxQ0RDQkIwNEQ1MTIwMTk0NjQ5QTA4NzQ5Nzk1OTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFimSVsDY9ShS9tIqkVAWTqY+u
llewnbf35EI1Lg1GBs9XVsAggffqqpkizkYEER32EmBFYxQt/fQNcn+2jVC4FbgI
3s5qLryp+rDeHMzie7X4/7+8IN1q9+6oX7aJvp2m1mqGHs1KSAJyaVL0mD2Xqa9e
KmcoLePVkB/47SDT2WAHcwFBi68pAcjIhuXN1CwtJEwup0W8rlHRe6yoyJO7WaHf
jCpwNfKjHUOAV3liyUH0icenpZi+AbL6bEujz7y4HbOL4fHziiIJeIVELQYCWFDo
cJPSEO/2xfd6ubhOAlzzoHUHfRp4HeaDa59GMmTkCxfttS+F/GxWGbpohKHjAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUgelteRcc3LsE1RIBlGSaCHSXlZAwHwYDVR0j
BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG
QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB
NjQ3My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05
NzBmLWY2OTlkZmY5N2RlNS8wLzMyMzcyZTMxMzIzNDJlMzgzNjJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMzMzgzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbfFYwDQYJKoZIhvcN
AQELBQADggEBAHS9p/Oopa2y/ag+qiKXGE7R0MXu7q5EYv4XRyjXZ7ds9k1uA3pz
W0Ddte8MLgzXaoXkQ8qUYikUhWJ50mKurDWdDnNucBssQjNQq5M+hm4v3FmKs99f
5s1KfUSsJeIsIZktSsC0awFeMcqlSaqP3bu6HVif1nnCkFkcZU6lQ3SAn4nJr8O5
9ixL/iCmiz57Y6nieGhDC7FptSavxOpv5SwCvR0GQKAs/1XnqHljMOZfWdjMbiWH
MMZiuLqLGPIQa5cptglOMqSYVtQXRzwrkRtNBTYoV+Ls2c/S5tDPFZ8NhhPnrvQy
pHO1nc9xtRZS2nwyThPUbE1rJvZjALwAEvs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org