Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39312e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e39312e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: nJRunwQOTu1lGJPQ/QRlpEyUBrceL0/7DyQQQRdFiFI=
Subject key identifier: F1:5F:88:1D:60:CB:11:78:5F:F5:CD:C3:BD:A4:24:AA:A5:56:0D:2D
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 688F7D5F18B7B0DF3D552B14FCD36A36A8B3E8F5
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39312e302f32342d3234203d3e203338353237.roa
Signing time: Wed 15 Mar 2023 11:05:38 +0000
ROA not before: Wed 15 Mar 2023 11:00:38 +0000
ROA not after: Wed 13 Mar 2024 11:05:38 +0000
asID: 38527
IP address blocks: 27.124.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:8f:7d:5f:18:b7:b0:df:3d:55:2b:14:fc:d3:6a:36:a8:b3:e8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 11:00:38 2023 GMT
Not After : Mar 13 11:05:38 2024 GMT
Subject: CN=F15F881D60CB11785FF5CDC3BDA424AAA5560D2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:aa:89:df:89:75:11:b5:db:eb:90:55:fb:9f:
52:17:88:5d:df:e0:98:31:7e:8c:dd:42:21:53:62:
b3:a5:8e:d4:50:c1:63:a3:66:ae:75:ff:b3:50:dd:
e2:81:aa:e3:fd:b4:85:da:64:76:a5:af:a4:2d:78:
30:98:b1:77:0f:f9:34:a9:86:01:2f:3e:aa:4b:d9:
78:69:e6:15:c3:60:93:56:5e:7d:a4:bd:94:6d:a0:
fa:9e:1b:13:a2:1d:ef:29:16:97:37:c7:1c:2f:65:
b4:4f:ad:eb:4d:4c:93:8e:96:7b:cc:8f:ed:76:56:
ea:59:f3:f2:8d:68:e6:99:3a:13:31:a7:84:be:2e:
2b:76:92:3e:00:f8:52:50:f7:c4:0f:43:43:80:89:
24:09:d2:3e:00:f6:4a:cc:ba:5b:03:1c:2f:7d:36:
b5:7c:6c:6e:95:f2:86:5c:2c:ca:bc:22:b5:10:1b:
1d:5d:80:a7:e6:3e:ef:44:7d:78:76:8e:25:fd:72:
a8:a7:c8:4d:de:aa:4f:85:61:a5:b6:a4:fb:1c:c1:
c0:c8:6c:78:32:5f:23:6f:76:c7:cf:0b:36:e0:4c:
0b:2b:b2:06:77:10:3b:5f:f9:ee:b2:03:02:d3:e6:
47:2d:87:3c:7d:c9:48:ee:f2:fd:b4:15:c0:97:5e:
a9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:5F:88:1D:60:CB:11:78:5F:F5:CD:C3:BD:A4:24:AA:A5:56:0D:2D
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39312e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.91.0/24
Signature Algorithm: sha256WithRSAEncryption
78:b3:3f:89:89:03:8c:6d:e2:12:1b:6d:35:95:b8:db:d5:f1:
f6:64:e4:34:37:28:2a:13:af:88:3c:56:3c:9b:41:fe:c8:86:
d4:a2:20:e2:eb:f0:15:86:7d:c5:ea:f0:59:be:32:2b:77:0b:
04:54:9b:62:d4:61:0c:83:2f:4a:08:1c:e5:6e:cd:68:09:8d:
96:4f:1c:c1:1c:a5:05:11:ee:64:fc:c7:b7:ea:c1:b2:69:96:
07:fa:3c:cf:ec:19:29:6d:27:ac:b0:b8:7f:3e:6d:49:9c:f8:
64:20:fe:b8:5e:1e:d3:43:00:74:7b:1b:b7:56:6b:7f:90:86:
61:0f:a5:a4:03:be:bb:bc:25:80:89:57:0d:63:f9:1f:0e:7d:
92:ae:bf:da:e7:41:f6:52:63:2b:96:a7:18:dd:a9:fa:7f:54:
53:2e:5e:11:9a:94:59:96:00:c6:ed:50:25:86:fa:b5:c6:1c:
f7:c8:29:ff:ea:9d:a6:38:21:4e:c8:cc:02:50:40:5b:a9:f0:
de:74:8a:ca:e0:b3:f5:aa:5d:bf:f3:c7:20:00:b0:62:00:2b:
1d:57:c1:e0:9c:20:15:50:79:14:2b:91:41:1e:f6:8a:1a:13:
cb:d0:75:e2:c3:fd:37:4f:58:be:e5:0d:9e:d7:ae:ed:00:7c:
d2:a2:8c:ff
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUaI99Xxi3sN89VSsU/NNqNqiz6PUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD
RjlBNjQ3MzAeFw0yMzAzMTUxMTAwMzhaFw0yNDAzMTMxMTA1MzhaMDMxMTAvBgNV
BAMTKEYxNUY4ODFENjBDQjExNzg1RkY1Q0RDM0JEQTQyNEFBQTU1NjBEMkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqonfiXURtdvrkFX7n1IXiF3f
4JgxfozdQiFTYrOljtRQwWOjZq51/7NQ3eKBquP9tIXaZHalr6QteDCYsXcP+TSp
hgEvPqpL2Xhp5hXDYJNWXn2kvZRtoPqeGxOiHe8pFpc3xxwvZbRPretNTJOOlnvM
j+12VupZ8/KNaOaZOhMxp4S+Lit2kj4A+FJQ98QPQ0OAiSQJ0j4A9krMulsDHC99
NrV8bG6V8oZcLMq8IrUQGx1dgKfmPu9EfXh2jiX9cqinyE3eqk+FYaW2pPscwcDI
bHgyXyNvdsfPCzbgTAsrsgZ3EDtf+e6yAwLT5kcthzx9yUju8v20FcCXXqmRAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU8V+IHWDLEXhf9c3DvaQkqqVWDS0wHwYDVR0j
BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG
QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB
NjQ3My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05
NzBmLWY2OTlkZmY5N2RlNS8wLzMyMzcyZTMxMzIzNDJlMzkzMTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMzMzgzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbfFswDQYJKoZIhvcN
AQELBQADggEBAHizP4mJA4xt4hIbbTWVuNvV8fZk5DQ3KCoTr4g8VjybQf7IhtSi
IOLr8BWGfcXq8Fm+Mit3CwRUm2LUYQyDL0oIHOVuzWgJjZZPHMEcpQUR7mT8x7fq
wbJplgf6PM/sGSltJ6ywuH8+bUmc+GQg/rheHtNDAHR7G7dWa3+QhmEPpaQDvru8
JYCJVw1j+R8OfZKuv9rnQfZSYyuWpxjdqfp/VFMuXhGalFmWAMbtUCWG+rXGHPfI
Kf/qnaY4IU7IzAJQQFup8N50isrgs/WqXb/zxyAAsGIAKx1XweCcIBVQeRQrkUEe
9ooaE8vQdeLD/TdPWL7lDZ7Xru0AfNKijP8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org