Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e2034343334.roa
File: 3230322e3135342e34342e302f32332d3234203d3e2034343334.roa (raw, json)
Hash identifier: YLdjCPziRig7U1oI4h9QerzMrhWyajFoBqKYH/8nlcc=
Subject key identifier: 73:14:B9:AA:25:FB:BB:06:15:F0:E4:4C:63:6B:D4:FF:99:22:A4:D5
Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Certificate serial: 1940DB16B4F04A0C13CF5EFED1AA3217CFE92B07
Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e2034343334.roa
Signing time: Wed 19 Oct 2022 10:50:59 +0000
ROA not before: Wed 19 Oct 2022 10:45:59 +0000
ROA not after: Wed 18 Oct 2023 10:50:59 +0000
asID: 4434
IP address blocks: 202.154.44.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:40:db:16:b4:f0:4a:0c:13:cf:5e:fe:d1:aa:32:17:cf:e9:2b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Validity
Not Before: Oct 19 10:45:59 2022 GMT
Not After : Oct 18 10:50:59 2023 GMT
Subject: CN=7314B9AA25FBBB0615F0E44C636BD4FF9922A4D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5c:ab:4f:2c:68:2a:3b:cf:8d:8b:70:94:4d:
14:5d:e1:2a:35:cd:63:38:19:75:e7:99:a8:91:e5:
26:a2:11:c9:2c:bb:e9:cd:50:34:46:ae:92:f3:2d:
2c:66:55:e6:b6:cb:49:4c:d8:7c:1b:bd:b1:19:51:
52:15:49:5b:9b:45:9b:b8:02:82:5a:5b:17:fb:38:
e3:c1:23:e1:e7:31:42:a1:43:33:b0:b6:f4:66:ee:
69:3a:5f:98:80:64:d2:51:b9:49:61:b5:8f:b6:52:
80:7f:9c:d4:c2:f1:54:9c:b4:46:bd:1b:ca:7f:87:
5f:a9:ce:a3:8b:d1:b1:05:7f:29:92:4b:17:05:dd:
ca:d1:dd:27:7c:6b:db:c2:7c:b2:3e:ff:91:92:3f:
3e:ae:25:28:8c:2b:51:55:e6:ff:26:5e:24:ca:14:
80:2e:23:83:2a:ad:c9:a5:f3:14:94:9d:2e:cd:9b:
28:3b:0c:d4:f2:16:f0:cb:21:f8:a6:8a:dc:6a:15:
e0:a0:ce:a6:61:16:56:15:5e:66:49:c8:f5:48:10:
23:33:fd:2e:89:9d:24:a4:2c:4b:bd:e8:8f:9d:92:
41:90:cf:aa:f4:ec:fa:36:97:26:7c:7e:25:9f:14:
6c:91:7d:18:93:7b:9b:ca:6a:9b:89:84:39:9e:6d:
f4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:14:B9:AA:25:FB:BB:06:15:F0:E4:4C:63:6B:D4:FF:99:22:A4:D5
X509v3 Authority Key Identifier:
keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e2034343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:b1:be:84:8f:e1:61:f7:92:50:aa:ce:b4:a0:7e:9f:b6:c8:
5e:db:3c:9b:33:af:f2:8b:6e:6a:14:ce:dc:8e:72:96:bd:c7:
3e:43:f6:20:03:b2:0e:45:c3:67:f9:04:81:ae:46:74:f8:97:
e8:e5:8f:61:0f:be:6a:23:cf:d0:87:5c:a9:01:e5:23:4f:28:
77:90:17:bb:4c:cb:44:bc:a4:60:a7:ec:86:a9:d6:e6:e1:88:
9b:93:81:3e:7d:b5:4f:cc:d1:37:f6:09:ee:91:8a:a8:1b:e9:
20:6c:52:56:30:68:1a:7c:0f:e7:97:88:f8:16:7d:75:2e:04:
77:9c:eb:7f:bb:ec:ec:6e:97:62:ad:f4:4e:3b:a6:f4:a6:8d:
04:cb:eb:56:2c:a4:18:b6:d8:98:2f:6a:e5:b8:07:ef:84:b2:
5f:6c:ad:9b:1d:4e:4f:7f:95:27:35:7b:1a:43:e7:3e:44:41:
42:cc:3c:d1:ec:e1:a9:19:6a:30:08:1f:3a:f5:19:0c:87:43:
5c:79:f2:54:66:de:22:5c:77:5e:c5:36:9c:60:37:65:45:2c:
7f:d1:32:17:59:ee:89:90:df:15:cd:3f:4b:e4:b4:36:2e:e3:
a3:70:97:7a:8b:ba:2c:3d:d5:fc:2e:d2:21:de:f8:5b:7b:a2:
55:48:49:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org