Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313432333832.roa
File: 3230322e37302e3133322e302f32332d3233203d3e20313432333832.roa (raw, json)
Hash identifier: awPNzRlgeqDCtqUTybHXDowlPqZXHMiOqToI3HpFT+k=
Subject key identifier: 59:31:D9:61:BE:5C:FF:C5:CF:0A:3C:44:FD:F9:59:9D:E0:4E:F0:2F
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 643371E51026400605163DD9888A8EFB8034A7B6
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313432333832.roa
Signing time: Sun 09 Oct 2022 06:00:00 +0000
ROA not before: Sun 09 Oct 2022 05:55:00 +0000
ROA not after: Sun 08 Oct 2023 06:00:00 +0000
asID: 142382
IP address blocks: 202.70.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:33:71:e5:10:26:40:06:05:16:3d:d9:88:8a:8e:fb:80:34:a7:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: Oct 9 05:55:00 2022 GMT
Not After : Oct 8 06:00:00 2023 GMT
Subject: CN=5931D961BE5CFFC5CF0A3C44FDF9599DE04EF02F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:50:88:6e:de:00:65:af:98:27:15:01:34:
17:9a:3d:65:29:14:5d:a2:6b:00:1f:8b:7f:93:90:
0a:38:4f:a2:f9:81:8e:0a:01:13:a1:d2:a1:24:0c:
36:d0:29:07:b4:d3:d6:e8:2b:b3:54:b0:6a:04:00:
0e:fc:99:d3:b7:5d:21:e6:68:eb:c2:bf:38:56:a0:
14:23:2a:7b:34:82:27:c7:12:19:ca:4e:3a:de:9a:
20:05:9a:bd:ee:b1:60:a5:d5:e0:c7:ca:58:7e:ad:
8e:19:19:65:63:33:b6:7c:31:54:d2:ec:6f:b9:25:
13:f7:7d:36:de:fe:07:36:57:08:29:71:73:6a:cf:
c0:77:17:28:0e:f4:ae:47:a9:7c:5d:06:53:e7:ec:
57:12:f6:0a:ca:eb:cd:b9:12:0e:5e:fa:c1:5f:47:
31:5b:e6:6e:ae:d3:d6:ff:4d:cc:0a:c3:09:41:f6:
db:fa:f1:f6:3a:14:31:90:8a:19:84:1e:d2:a9:22:
28:90:c4:d5:fd:3f:20:8d:87:d4:04:21:c7:76:5c:
1d:31:00:d3:86:1b:de:26:ec:2f:b2:88:ae:b5:01:
55:18:79:ff:c2:7a:d5:73:a1:0d:57:a7:26:d6:8f:
ab:fd:bb:e4:70:e0:44:2f:d1:bb:ee:53:e1:92:00:
54:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:31:D9:61:BE:5C:FF:C5:CF:0A:3C:44:FD:F9:59:9D:E0:4E:F0:2F
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313432333832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.70.132.0/23
Signature Algorithm: sha256WithRSAEncryption
12:7e:0d:24:7b:a8:c5:84:75:b5:ed:5c:e6:5b:71:33:13:18:
39:d1:3c:20:21:3d:6b:c8:1a:45:3f:f8:9f:83:1e:d1:a4:c8:
47:fb:2c:de:e7:26:60:c2:6f:1c:ce:e1:9f:f3:32:97:dc:94:
97:dd:13:34:03:1b:5a:04:32:c5:97:46:4f:23:3a:0a:52:18:
ea:e9:07:e4:57:49:e7:49:a6:d4:40:4e:f7:0e:ed:92:7f:05:
97:78:7c:43:da:30:4b:8c:d5:14:ed:44:6d:3c:ad:45:6c:20:
8f:0b:39:72:d0:64:bd:ec:c2:3b:92:35:be:54:27:e5:2b:20:
4c:f7:0f:10:92:78:85:ba:6f:c7:3d:94:26:85:0d:df:bb:ca:
4e:82:1b:90:ed:a3:3a:40:e6:6d:36:98:fb:6b:fe:89:ef:77:
7a:a1:1c:96:df:ee:8b:2a:68:c5:16:ca:f2:d2:6b:7b:35:9b:
d4:15:2f:aa:a8:a8:07:87:dc:6f:ed:28:ea:d1:ad:b9:7a:4b:
65:da:a7:e6:c0:ad:51:14:39:95:21:c1:b8:fa:c4:41:62:0d:
04:e7:30:cc:b4:da:89:0c:8b:09:ea:7a:bd:43:35:42:ae:f6:
d5:73:86:ae:56:a7:b6:85:02:1d:b1:12:79:3c:73:17:d2:b1:
05:cd:cd:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org