Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32322d3232203d3e203535363936.roa
File: 3230322e35302e3230302e302f32322d3232203d3e203535363936.roa (raw, json)
Hash identifier: AlJszQA4gz4YH+XFgACi9DhNSl4LUMJgBYuOGu3S1Qc=
Subject key identifier: 1D:29:3D:21:6F:FB:0A:CF:35:34:84:39:69:1F:3E:A9:F4:C3:E8:84
Certificate issuer: /CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B
Certificate serial: 7BF51A799845B1AC0750CC02BF7DD4B3241BF365
Authority key identifier: B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32322d3232203d3e203535363936.roa
Signing time: Wed 22 Feb 2023 03:52:20 +0000
ROA not before: Wed 22 Feb 2023 03:47:20 +0000
ROA not after: Wed 21 Feb 2024 03:52:20 +0000
asID: 55696
IP address blocks: 202.50.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:f5:1a:79:98:45:b1:ac:07:50:cc:02:bf:7d:d4:b3:24:1b:f3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B
Validity
Not Before: Feb 22 03:47:20 2023 GMT
Not After : Feb 21 03:52:20 2024 GMT
Subject: CN=1D293D216FFB0ACF35348439691F3EA9F4C3E884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:02:35:08:73:bb:f6:b8:b8:d5:bb:9b:07:fc:
af:45:a4:1e:95:33:89:ad:2b:a8:b4:22:f1:26:49:
2f:67:58:24:5f:1b:66:a6:c7:92:48:ff:2c:50:8a:
89:8c:41:8a:6e:38:d0:76:a4:35:95:55:77:36:ad:
4f:b3:61:28:b9:25:d2:1d:e8:1a:03:55:5c:f8:7c:
f5:bb:6c:c3:8d:32:08:3b:9f:b5:6d:c6:e9:66:b4:
93:2b:df:bb:32:dd:21:68:19:4a:13:e0:1f:49:90:
6d:21:5f:6e:73:b1:78:32:0b:2f:10:b3:49:46:55:
b4:5f:d5:c6:50:64:80:72:c3:d8:bc:94:94:50:6c:
5f:bd:75:4a:81:32:c5:43:a4:7c:d5:f6:40:99:9f:
20:28:72:40:d8:5c:a3:2b:27:78:a3:cf:1e:35:3a:
0d:ae:66:00:52:8d:f9:6b:8e:dc:39:da:b4:0d:f0:
fa:f1:1e:c2:db:a9:7f:23:4a:62:b6:fa:dc:00:cd:
04:fb:6a:c4:98:e7:12:a1:d2:4d:49:7c:ff:d2:c8:
c6:5f:0f:7c:78:bf:60:af:4b:b8:e1:fa:53:23:81:
b6:1a:d9:20:8c:02:5c:d9:7a:cc:fb:e6:1a:5d:20:
92:39:e4:c2:67:1f:b2:ad:b1:c8:a8:4d:19:87:9a:
9a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:29:3D:21:6F:FB:0A:CF:35:34:84:39:69:1F:3E:A9:F4:C3:E8:84
X509v3 Authority Key Identifier:
keyid:B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32322d3232203d3e203535363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.50.200.0/22
Signature Algorithm: sha256WithRSAEncryption
30:bb:d5:d4:e0:c0:37:9a:20:ce:75:a3:22:3c:b8:f6:d5:cb:
60:92:05:0b:5a:35:c0:c2:b1:b0:6c:ff:2d:9d:eb:10:a8:cd:
de:9d:83:ba:2a:49:8c:fc:a5:93:72:07:17:e9:59:e5:35:c3:
62:bc:04:c9:23:49:16:69:8d:56:3c:98:15:35:71:73:88:24:
c3:4e:5a:bc:e1:d4:3f:ee:4d:04:79:84:f5:ae:07:a5:ab:cb:
c6:38:8f:d7:72:d9:83:d3:69:5f:e9:d7:8b:1c:1a:e4:91:05:
6c:29:dd:49:5d:1e:49:49:b5:e0:c3:93:41:07:d1:cf:18:0e:
8b:8d:3f:fb:a0:14:66:0b:93:f1:7b:b0:11:88:7f:00:55:7e:
d4:cc:08:1d:be:37:c1:05:ae:6b:79:0d:4f:7a:45:21:f3:67:
79:c7:ba:a6:c2:c6:73:dc:18:8b:95:98:fc:43:fd:76:ff:d0:
6a:1b:7d:ab:11:b2:4b:b5:52:78:ba:63:7a:af:39:ca:bc:11:
9b:8d:43:96:46:14:e6:f9:32:6f:e5:7a:4f:09:92:1e:9c:44:
39:db:0d:2c:0d:0f:f9:dd:e1:0d:01:79:c6:0e:03:e2:e3:6b:
9a:41:47:55:25:e1:da:ca:30:c8:02:1c:b5:e9:fa:86:88:3e:
0f:58:6c:03
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUe/UaeZhFsawHUMwCv33UsyQb82UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1
RUVBQUI1QjAeFw0yMzAyMjIwMzQ3MjBaFw0yNDAyMjEwMzUyMjBaMDMxMTAvBgNV
BAMTKDFEMjkzRDIxNkZGQjBBQ0YzNTM0ODQzOTY5MUYzRUE5RjRDM0U4ODQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjAjUIc7v2uLjVu5sH/K9FpB6V
M4mtK6i0IvEmSS9nWCRfG2amx5JI/yxQiomMQYpuONB2pDWVVXc2rU+zYSi5JdId
6BoDVVz4fPW7bMONMgg7n7VtxulmtJMr37sy3SFoGUoT4B9JkG0hX25zsXgyCy8Q
s0lGVbRf1cZQZIByw9i8lJRQbF+9dUqBMsVDpHzV9kCZnyAockDYXKMrJ3ijzx41
Og2uZgBSjflrjtw52rQN8PrxHsLbqX8jSmK2+twAzQT7asSY5xKh0k1JfP/SyMZf
D3x4v2CvS7jh+lMjgbYa2SCMAlzZesz75hpdIJI55MJnH7KtscioTRmHmprDAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUHSk9IW/7Cs81NIQ5aR8+qfTD6IQwHwYDVR0j
BBgwFoAUs/HapncJoGVh3J6sWochA17qq1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
Mjg4MGRlZS03YWEyLTRiZTQtYmYzNS1jZGJkMTFkNzk1MDcvMC9CM0YxREFBNjc3
MDlBMDY1NjFEQzlFQUM1QTg3MjEwMzVFRUFBQjVCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1RUVB
QUI1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyODgwZGVlLTdhYTItNGJlNC1i
ZjM1LWNkYmQxMWQ3OTUwNy8wLzMyMzAzMjJlMzUzMDJlMzIzMDMwMmUzMDJmMzIz
MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsoyyDANBgkqhkiG
9w0BAQsFAAOCAQEAMLvV1ODAN5ogznWjIjy49tXLYJIFC1o1wMKxsGz/LZ3rEKjN
3p2DuipJjPylk3IHF+lZ5TXDYrwEySNJFmmNVjyYFTVxc4gkw05avOHUP+5NBHmE
9a4HpavLxjiP13LZg9NpX+nXixwa5JEFbCndSV0eSUm14MOTQQfRzxgOi40/+6AU
ZguT8XuwEYh/AFV+1MwIHb43wQWua3kNT3pFIfNnece6psLGc9wYi5WY/EP9dv/Q
aht9qxGyS7VSeLpjeq85yrwRm41DlkYU5vkyb+V6TwmSHpxEOdsNLA0P+d3hDQF5
xg4D4uNrmkFHVSXh2sowyAIcten6hog+D1hsAw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org