Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39322e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e39322e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: PVcbLKfCvPYINynrZruzHoL8bD7bta2ckKV1lCRpqew=
Subject key identifier: 14:DD:A7:D9:A6:8A:A6:39:CD:FC:4D:19:AD:FB:27:F0:CC:A5:29:4B
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 6256C8A483B99B321B0CC4BA8A5EC8E80B1FEA02
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39322e302f32342d3234203d3e203338353237.roa
Signing time: Wed 15 Mar 2023 10:56:08 +0000
ROA not before: Wed 15 Mar 2023 10:51:08 +0000
ROA not after: Wed 13 Mar 2024 10:56:08 +0000
asID: 38527
IP address blocks: 27.124.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:56:c8:a4:83:b9:9b:32:1b:0c:c4:ba:8a:5e:c8:e8:0b:1f:ea:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 10:51:08 2023 GMT
Not After : Mar 13 10:56:08 2024 GMT
Subject: CN=14DDA7D9A68AA639CDFC4D19ADFB27F0CCA5294B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e9:b0:da:ea:d3:7d:f9:9a:42:36:b7:1b:42:
5c:ac:06:a9:11:c0:ff:91:91:ea:41:f1:f7:d7:45:
29:99:52:f5:3b:bd:3b:b8:e6:71:14:eb:31:d0:34:
85:ba:7f:c8:b9:fc:71:a2:ad:71:a9:1a:7a:39:73:
be:fc:75:6f:97:00:60:c4:91:c5:91:f3:e1:a1:fa:
d7:50:c2:fb:e7:60:97:46:66:19:ab:11:66:14:17:
54:73:81:55:0a:51:1b:90:ea:39:c7:91:21:80:f6:
38:60:36:9c:7b:94:b4:f5:f5:73:f2:0c:61:7c:46:
81:01:a2:b9:b5:15:5e:0d:2c:f7:4c:3e:0b:c9:c6:
ef:24:a2:ee:95:62:96:c6:25:89:38:cb:65:2e:f6:
12:bb:45:26:e5:4f:52:c2:e2:0d:78:0c:c5:38:93:
da:fe:28:a3:ec:f6:9b:f0:4a:af:85:85:ad:66:3d:
8f:df:7e:f7:13:55:55:7d:c1:e8:6d:54:54:97:77:
d4:6f:51:09:76:a7:1d:8b:e7:ca:5b:26:49:71:39:
d0:74:5a:49:b9:0f:67:38:c9:96:01:ad:a7:87:50:
e2:15:0c:f5:d3:d2:9e:db:ab:77:91:6a:69:79:9f:
d2:92:ed:64:78:7e:c2:72:80:aa:93:1c:96:69:02:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DD:A7:D9:A6:8A:A6:39:CD:FC:4D:19:AD:FB:27:F0:CC:A5:29:4B
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39322e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.92.0/24
Signature Algorithm: sha256WithRSAEncryption
70:da:7c:91:07:d1:15:e5:f8:2e:38:63:45:a1:29:f5:1c:e9:
a4:2d:bf:df:52:30:7a:df:64:e8:de:68:a9:2a:5e:6c:7b:63:
f8:ee:c5:d1:e2:7b:5e:e6:1b:9a:92:bc:e7:45:c8:83:21:12:
6e:82:3d:9a:d6:e9:c0:c8:c3:3d:98:9d:ee:f0:92:8b:58:d0:
dc:06:50:ce:4e:60:c2:fa:aa:ba:f2:86:90:cb:8a:2b:91:6c:
c9:ce:b0:31:e5:9a:56:c7:34:11:61:5e:22:26:85:e2:85:7f:
b6:21:09:ee:66:94:a8:38:e0:01:1a:18:c9:d6:00:5a:03:e8:
3b:e5:c2:fe:a5:7f:a6:7b:fd:de:91:af:d4:f7:89:fa:34:0e:
75:9a:66:2b:ba:e3:5d:bf:41:71:7a:43:50:31:63:6b:5e:35:
b7:14:8f:a6:73:a1:3a:24:f6:4f:73:50:f3:c8:e5:bc:9b:0f:
23:4b:ca:46:8d:cf:0e:aa:c0:ac:82:14:f7:f6:dd:e7:1e:fd:
91:82:3a:c2:30:a0:05:2a:e5:68:2b:91:33:7d:34:3b:b2:74:
e0:cd:f7:3d:fa:5f:de:87:22:51:e7:b2:dc:00:66:d5:b1:4e:
62:fe:84:b8:44:9f:a2:70:6f:1a:d1:60:71:be:e7:15:af:83:
fb:7f:d1:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org