Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39332e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e39332e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: HlebrO6zS42q7Jz9Owv43Sqni2tEzeyKZK78GJWPfng=
Subject key identifier: 64:98:D7:B1:27:2D:93:06:B7:91:6F:68:C6:5B:B0:86:CA:CB:64:69
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 5BEE47770236B6FF39230B9670BE3066D80EE807
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39332e302f32342d3234203d3e203338353237.roa
Signing time: Wed 15 Mar 2023 11:06:11 +0000
ROA not before: Wed 15 Mar 2023 11:01:11 +0000
ROA not after: Wed 13 Mar 2024 11:06:11 +0000
asID: 38527
IP address blocks: 27.124.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:ee:47:77:02:36:b6:ff:39:23:0b:96:70:be:30:66:d8:0e:e8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 11:01:11 2023 GMT
Not After : Mar 13 11:06:11 2024 GMT
Subject: CN=6498D7B1272D9306B7916F68C65BB086CACB6469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:6d:41:f2:02:71:e5:98:d2:bf:2a:f7:57:
68:56:11:aa:af:45:2d:df:d5:97:b1:d6:d9:d1:94:
39:94:a7:de:e7:d9:de:10:99:52:13:37:cc:0c:61:
73:84:b5:49:e8:dd:76:9c:8e:d7:f6:53:d5:7f:ef:
e4:c5:08:54:97:55:c3:88:8f:3c:07:c2:d7:03:7e:
e4:6c:61:1d:0c:b2:3e:6b:f6:1d:de:f8:ee:4b:29:
b9:16:67:36:d1:69:88:46:ef:78:0c:26:32:c1:c6:
78:b5:de:25:44:e8:91:29:04:d3:a6:ff:1d:a3:c3:
43:c9:62:dc:ec:e9:ee:eb:ab:19:54:64:20:7d:ac:
52:36:42:51:27:a8:ec:e7:e3:c5:72:cc:e1:9a:24:
05:3f:2d:e1:8e:52:0f:01:21:52:43:5c:b5:03:75:
9e:7b:87:9c:62:0f:bd:d9:fd:55:eb:52:15:ed:d7:
7c:eb:25:17:55:6b:f2:5b:8d:c8:35:fe:ca:94:12:
58:c3:df:4b:f6:a1:91:0d:65:4f:02:76:0e:26:f2:
92:e8:2a:01:99:35:bc:c5:f3:02:cd:a7:b8:59:b6:
78:e9:46:21:7c:40:0c:03:5a:c8:55:5a:b2:b5:ad:
4a:02:92:38:18:6a:4a:5a:a3:ec:18:6e:85:87:3d:
d6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:98:D7:B1:27:2D:93:06:B7:91:6F:68:C6:5B:B0:86:CA:CB:64:69
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39332e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.93.0/24
Signature Algorithm: sha256WithRSAEncryption
09:fe:11:10:62:2e:fc:75:9f:c6:c4:2c:1e:2f:47:49:d5:55:
95:d5:7b:2a:09:c1:df:4f:2c:23:35:c4:7c:5d:50:6c:cb:f9:
c4:79:d4:6a:f3:4c:1e:cb:30:f8:f5:cb:53:18:46:27:c9:8a:
b5:be:f8:43:0e:37:9c:64:81:02:36:13:9f:4d:d7:ce:cc:ba:
84:f1:c7:a8:40:a1:b7:cb:00:d7:38:83:67:0c:96:0b:e9:47:
80:19:3d:a4:ec:4a:b2:db:92:ab:bc:38:c0:7a:84:9f:c4:7a:
0a:2f:bf:a4:fa:94:8f:fc:17:9c:cd:7c:53:fb:a1:8c:3e:47:
79:8f:9e:b0:3c:f5:f5:00:26:67:c5:7d:b9:70:7a:37:2a:39:
f6:01:b2:11:ee:1a:47:f2:54:d4:04:e8:b9:f9:2f:cf:18:f3:
66:67:df:1b:e3:ab:75:a7:f0:1c:3c:8b:76:0d:1f:6e:99:6b:
8e:f4:f5:ad:e9:b9:5a:33:19:1a:e6:d4:0c:74:40:26:6d:47:
62:bc:4b:79:1e:ba:e9:6a:be:9b:99:d0:46:b4:e2:77:e3:fd:
c7:b7:ea:a9:a0:3a:cf:ad:67:04:8f:fe:d7:92:e0:40:04:41:
5f:97:cd:0f:f6:08:c0:72:c2:0f:b8:68:6b:db:fc:7e:7c:e7:
cd:2d:2f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org