Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39352e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e39352e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: DJq8b83Unh2LlrEngtqOq7fDqIzk0c2VRVfTGSkHJdA=
Subject key identifier: 20:69:4E:10:66:30:1A:C1:44:A8:A2:88:DE:81:A1:62:04:2D:7B:1D
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 215136B42691022048196BD5B5E65CF0FD70F5C5
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39352e302f32342d3234203d3e203338353237.roa
Signing time: Wed 15 Mar 2023 11:02:48 +0000
ROA not before: Wed 15 Mar 2023 10:57:48 +0000
ROA not after: Wed 13 Mar 2024 11:02:48 +0000
asID: 38527
IP address blocks: 27.124.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:51:36:b4:26:91:02:20:48:19:6b:d5:b5:e6:5c:f0:fd:70:f5:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 10:57:48 2023 GMT
Not After : Mar 13 11:02:48 2024 GMT
Subject: CN=20694E1066301AC144A8A288DE81A162042D7B1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:54:10:7c:2d:02:f4:7b:36:c6:41:a8:f5:84:
5e:b5:6b:4c:b2:27:ae:6b:76:3e:65:49:df:ba:51:
81:25:ce:f1:ce:ec:1d:63:33:31:94:45:bf:ec:2a:
96:85:ef:7c:d4:a0:fc:2d:3c:72:18:e2:07:f3:47:
65:e1:93:ea:f0:b0:70:5e:7f:95:fb:42:6f:c0:f5:
56:2e:13:28:db:96:12:e6:d8:dc:5f:6c:f0:69:a8:
7e:d7:25:59:f1:26:e9:92:72:b5:20:77:8c:47:29:
70:58:8d:9c:2c:0d:5d:60:c5:99:ae:5d:3b:a4:21:
45:53:2e:ba:ba:4a:df:43:b3:26:6c:af:b3:95:5c:
bf:59:8f:a1:6c:a8:03:23:fb:d6:fb:82:e4:5a:d5:
5c:d4:79:26:01:2b:01:86:c1:9a:d6:9c:d7:37:cb:
5b:df:42:e5:cf:70:85:f6:98:eb:7d:72:e9:c9:82:
5a:1b:f2:06:52:c0:ea:2a:a1:4a:96:93:7b:70:a8:
89:1a:cc:17:a2:f7:e9:ff:12:a5:61:dd:78:9d:3e:
89:b6:a4:4f:55:0d:21:b9:f8:74:45:e7:79:b5:67:
39:15:f2:44:79:c0:69:02:b4:69:4d:35:83:4c:cf:
ec:b3:a7:20:0d:3c:84:39:e2:5a:24:5a:2e:e1:12:
cd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:69:4E:10:66:30:1A:C1:44:A8:A2:88:DE:81:A1:62:04:2D:7B:1D
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e39352e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.95.0/24
Signature Algorithm: sha256WithRSAEncryption
42:89:1a:3b:bc:22:35:09:c5:0f:a2:7c:a8:74:26:ff:74:89:
d4:82:6a:5e:33:f8:25:03:74:d6:a7:19:ab:d8:b2:8e:8c:44:
59:23:31:c1:76:d2:63:32:b4:fa:ac:bc:91:1c:83:00:07:dd:
8c:a1:72:17:2b:10:64:22:0e:cc:db:63:8e:67:61:a0:2a:90:
cf:ab:c1:0a:1f:3e:fb:7e:00:e1:ee:13:bf:0a:45:ae:18:22:
2a:4d:d9:8b:d9:4a:d4:e4:2f:65:9f:74:80:b8:06:1e:04:23:
70:51:20:0a:a2:af:8d:53:0e:2d:9c:fb:6c:c7:f7:40:aa:fc:
d5:6c:38:df:86:5a:17:1a:fe:b3:95:51:f1:e4:b8:5b:f8:ff:
6c:64:32:1d:80:be:f0:04:06:db:a6:89:a8:24:0f:ae:89:cd:
ee:01:5d:28:cf:95:a7:a5:f0:ce:19:31:aa:2f:6d:14:21:0a:
47:33:32:18:52:33:28:e7:2f:52:6c:4e:6a:24:4d:c4:17:66:
d6:0b:9e:db:29:45:75:ba:91:51:14:cb:94:68:f1:64:c5:ae:
2f:38:a8:fc:e5:7a:ac:b3:b7:9a:f0:5d:ab:0b:7c:e3:d2:6e:
36:03:bc:67:44:d2:7e:9b:90:2b:5c:2b:d5:6f:7c:91:ee:c5:
04:75:72:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org