Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3132322e302f32342d3234203d3e203234323033.roa
File: 3230332e37382e3132322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: hQa2ozSiak7XKu4gjw+uOyi8MHGYf8Y2RQuVcI10ABQ=
Subject key identifier: 21:4C:AF:54:49:FF:70:D2:43:06:B5:73:73:1E:DA:96:0F:CC:B6:82
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 7D27C97C5686756A2B1634382DC5128A1838BBB0
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3132322e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:02 +0000
ROA not before: Thu 07 Apr 2022 07:55:02 +0000
ROA not after: Thu 06 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 203.78.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:27:c9:7c:56:86:75:6a:2b:16:34:38:2d:c5:12:8a:18:38:bb:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:02 2022 GMT
Not After : Apr 6 08:00:02 2023 GMT
Subject: CN=214CAF5449FF70D24306B573731EDA960FCCB682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9c:c6:63:f4:ee:57:9e:2a:6a:2f:c2:89:ab:
7c:73:eb:4f:f2:cf:2c:a8:8a:c5:72:51:cf:a3:a3:
77:74:4c:eb:af:7d:c0:38:db:49:9b:51:fb:d5:95:
ba:93:d5:83:eb:ec:4b:99:2f:fe:fb:6a:29:44:a5:
fe:65:ff:95:b1:9c:7c:36:d4:8a:1f:e9:12:02:b1:
5b:82:c3:5f:50:05:09:a3:13:02:e1:8e:39:b0:41:
34:1a:99:6b:66:f0:b8:36:14:d8:87:dc:4c:90:4b:
50:e0:9f:81:fb:6f:ba:d1:aa:9d:ee:70:35:4e:3b:
69:cc:4b:89:38:b9:ac:fb:92:3a:3f:10:a8:ea:97:
4d:ed:8f:e0:b5:6e:a2:45:bb:42:06:e3:38:e5:45:
d0:03:ec:21:18:e1:50:2b:a9:95:99:0e:c5:3e:65:
e7:86:f0:23:f1:4a:66:74:51:6e:e0:5b:f1:6c:ea:
69:8a:69:26:35:6e:c5:e1:ed:e7:76:87:ba:28:5e:
4b:d5:ad:97:85:f3:a0:16:c1:c5:41:38:53:d4:9c:
4c:84:cf:dc:1d:92:4f:79:f6:db:62:2d:d3:8b:47:
90:c9:4a:f2:be:cc:4d:5d:78:4d:4d:fe:51:28:da:
82:a5:76:b5:32:43:72:db:32:ae:27:93:28:7a:5a:
69:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4C:AF:54:49:FF:70:D2:43:06:B5:73:73:1E:DA:96:0F:CC:B6:82
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3132322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.78.122.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a3:49:f8:1a:90:5b:9f:f1:1c:ed:aa:1f:89:72:1b:86:3d:
86:8e:0f:8e:8f:9c:11:a0:61:2d:71:f3:34:46:a4:e7:fa:38:
21:7f:11:32:c7:bb:a2:71:94:82:31:15:20:e2:21:c4:f8:80:
e0:43:f4:48:b9:91:41:3c:df:81:35:56:13:37:a0:03:14:6c:
97:4e:52:79:4b:96:a4:3c:ec:e6:c2:41:15:16:b0:ab:1f:cf:
25:28:62:c8:3c:56:30:14:cb:fb:18:11:d7:62:11:c4:cb:f0:
ed:91:36:c9:0d:a2:f6:47:1e:7a:de:72:82:e9:5d:be:67:d5:
77:df:f8:01:4f:82:4f:35:fc:43:d4:23:9f:cd:23:80:b8:8e:
96:df:13:a9:84:0b:f3:5a:4e:f6:ae:cc:5f:25:d6:34:fa:dd:
06:b0:78:7e:34:83:d2:7d:36:e9:05:2c:58:34:c7:ad:88:a4:
ba:c8:32:c9:98:80:47:7f:33:09:4f:a9:d5:7d:d3:c8:b9:f8:
2c:49:1b:f8:24:16:28:ef:87:0c:01:b2:35:6b:4d:34:54:54:
44:fb:b5:2b:5a:5a:22:8a:1e:7f:eb:80:e0:6d:67:15:54:63:
77:16:50:36:01:35:14:64:2c:f9:c1:9c:8a:04:41:af:d3:34:
99:8a:8c:09
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUfSfJfFaGdWorFjQ4LcUSihg4u7AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcwNzU1MDJaFw0yMzA0MDYwODAwMDJaMDMxMTAvBgNV
BAMTKDIxNENBRjU0NDlGRjcwRDI0MzA2QjU3MzczMUVEQTk2MEZDQ0I2ODIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9nMZj9O5XnipqL8KJq3xz60/y
zyyoisVyUc+jo3d0TOuvfcA420mbUfvVlbqT1YPr7EuZL/77ailEpf5l/5WxnHw2
1Iof6RICsVuCw19QBQmjEwLhjjmwQTQamWtm8Lg2FNiH3EyQS1Dgn4H7b7rRqp3u
cDVOO2nMS4k4uaz7kjo/EKjql03tj+C1bqJFu0IG4zjlRdAD7CEY4VArqZWZDsU+
ZeeG8CPxSmZ0UW7gW/Fs6mmKaSY1bsXh7ed2h7ooXkvVrZeF86AWwcVBOFPUnEyE
z9wdkk959ttiLdOLR5DJSvK+zE1deE1N/lEo2oKldrUyQ3LbMq4nkyh6WmkRAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUIUyvVEn/cNJDBrVzcx7alg/MtoIwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMyMzAzMzJlMzczODJlMzEzMjMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtOejANBgkqhkiG
9w0BAQsFAAOCAQEALaNJ+BqQW5/xHO2qH4lyG4Y9ho4Pjo+cEaBhLXHzNEak5/o4
IX8RMse7onGUgjEVIOIhxPiA4EP0SLmRQTzfgTVWEzegAxRsl05SeUuWpDzs5sJB
FRawqx/PJShiyDxWMBTL+xgR12IRxMvw7ZE2yQ2i9kceet5yguldvmfVd9/4AU+C
TzX8Q9Qjn80jgLiOlt8TqYQL81pO9q7MXyXWNPrdBrB4fjSD0n026QUsWDTHrYik
usgyyZiAR38zCU+p1X3TyLn4LEkb+CQWKO+HDAGyNWtNNFRURPu1K1paIooef+uA
4G1nFVRjdxZQNgE1FGQs+cGcigRBr9M0mYqMCQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:36:08 2025 by rpki-client