Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32332e302f32342d3234203d3e20313337383331.roa
File: 3230322e37332e32332e302f32342d3234203d3e20313337383331.roa (raw, json)
Hash identifier: wnoUAVQMvVo9famhYiyJRS/r4yh2cznQB8neJfgf94A=
Subject key identifier: 1D:38:8B:D3:E2:83:51:69:E5:F5:AF:61:4D:C5:84:81:5B:2F:12:FC
Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Certificate serial: 590014388A235118AB3492EA4B2E2E206E8FF574
Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32332e302f32342d3234203d3e20313337383331.roa
Signing time: Wed 19 Apr 2023 07:50:01 +0000
ROA not before: Wed 19 Apr 2023 07:45:01 +0000
ROA not after: Wed 17 Apr 2024 07:50:01 +0000
asID: 137831
IP address blocks: 202.73.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:00:14:38:8a:23:51:18:ab:34:92:ea:4b:2e:2e:20:6e:8f:f5:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Validity
Not Before: Apr 19 07:45:01 2023 GMT
Not After : Apr 17 07:50:01 2024 GMT
Subject: CN=1D388BD3E2835169E5F5AF614DC584815B2F12FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b9:0c:d0:ea:a0:5a:b9:eb:b1:a8:a1:5c:7e:
61:94:88:05:18:44:45:30:63:10:b9:93:9a:3b:ba:
ae:bf:8f:97:72:f8:3f:8f:69:b4:bc:3f:a8:90:8c:
21:e4:f7:b2:58:f9:8b:58:d6:b9:3d:a9:c0:ec:70:
96:5e:80:9c:a1:65:16:7d:5f:23:1a:15:40:b2:21:
3e:cf:fd:25:1d:18:99:bf:41:68:43:77:e0:a7:62:
86:32:e7:a8:51:69:b6:d1:28:24:13:f1:f0:a4:fd:
f9:62:37:a4:80:d5:01:fb:65:d2:ec:fe:3f:61:74:
e8:22:89:50:d4:b4:78:23:bf:0f:d8:9c:8c:c8:15:
ff:b8:0c:85:24:b2:6e:58:d3:86:55:b6:91:b2:2b:
60:b0:fe:b7:d8:05:eb:89:10:36:11:3b:5f:3b:47:
28:6d:51:f0:38:86:46:6e:d5:0f:b4:93:3b:de:3b:
9e:aa:2a:98:31:5f:55:88:e2:0c:3d:f6:5c:8c:08:
2a:8f:17:62:13:4d:d4:70:0f:86:7b:91:aa:13:6b:
4f:08:ff:90:97:ac:64:02:e2:6c:d5:e1:da:03:ac:
ff:72:ee:72:13:a0:d1:06:f1:e5:40:31:e2:e7:f3:
0a:6c:7a:eb:ef:03:bd:6f:4e:fe:4b:b5:b9:db:8c:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:38:8B:D3:E2:83:51:69:E5:F5:AF:61:4D:C5:84:81:5B:2F:12:FC
X509v3 Authority Key Identifier:
keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32332e302f32342d3234203d3e20313337383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.73.23.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:22:bd:41:47:9a:3f:02:6c:aa:4e:4b:f7:a9:dc:ab:e1:93:
ef:8a:8e:e7:72:47:cf:f4:61:70:95:c7:e9:7f:a1:1b:d3:fc:
5b:90:f3:15:b8:2b:dd:2b:33:f2:89:8f:ef:9e:9d:22:96:c6:
c5:da:2c:9e:89:04:e4:f6:37:74:54:a8:4b:53:71:b0:ef:4c:
9f:75:1c:32:d3:d6:6f:8e:bc:8e:cc:e6:62:b2:16:24:5b:06:
bf:0d:98:8d:6b:f5:bb:8c:c4:81:b3:c8:75:74:a2:26:90:fd:
e0:d4:88:68:4e:16:4f:71:79:3d:b5:45:fb:06:9a:60:03:a6:
6c:39:cf:2f:d8:2b:46:82:41:77:a1:37:d0:98:52:1a:b7:7d:
fc:11:41:c0:be:1d:3e:36:1e:09:55:a6:20:e5:8a:39:68:e4:
5b:52:98:f5:6b:2d:82:b6:fb:13:dd:7d:37:2e:22:d7:2f:38:
64:c0:ee:31:f8:86:bb:60:00:7d:3c:8a:f8:4a:cc:30:5b:54:
48:e3:22:2f:6a:1b:f7:26:28:29:75:b0:0b:65:71:3d:6e:3b:
02:a7:f8:76:94:fa:c0:0b:23:3d:e4:b4:32:b5:4d:87:e2:19:
17:9a:f1:4b:4a:d9:a7:11:b2:06:fa:18:ec:c1:3f:fb:3f:f9:
93:35:fd:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org