Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313432333832.roa
File: 3230322e37302e3133322e302f32342d3234203d3e20313432333832.roa (raw, json)
Hash identifier: d4wO+RqUTeKyCuwctREeA4oF3SjfFnJRaHdgsN/3OwE=
Subject key identifier: E9:B0:E3:94:FC:98:AB:24:51:CD:C4:AB:0A:E1:1B:84:FD:72:32:17
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 791CBD3F06D42959B4B8118C158FC4F8DAD80943
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313432333832.roa
Signing time: Sun 09 Oct 2022 06:00:00 +0000
ROA not before: Sun 09 Oct 2022 05:55:00 +0000
ROA not after: Sun 08 Oct 2023 06:00:00 +0000
asID: 142382
IP address blocks: 202.70.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:1c:bd:3f:06:d4:29:59:b4:b8:11:8c:15:8f:c4:f8:da:d8:09:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: Oct 9 05:55:00 2022 GMT
Not After : Oct 8 06:00:00 2023 GMT
Subject: CN=E9B0E394FC98AB2451CDC4AB0AE11B84FD723217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:85:93:7a:62:f0:a8:5b:b2:2e:d6:d3:7f:6d:
5e:74:2d:55:3c:65:ea:fa:b6:5f:fd:c4:5e:94:1c:
df:58:97:c9:28:03:5c:ce:1a:b4:49:eb:ae:dc:c7:
59:01:dc:99:02:96:8b:be:e8:0d:34:3f:6c:96:89:
33:d1:1b:1c:d0:09:02:92:95:10:81:d4:79:ce:c4:
59:2d:19:18:a7:24:23:a7:da:1f:81:da:08:a3:8c:
72:f1:50:e0:48:d4:e7:f6:55:1d:13:f3:53:47:2b:
89:6e:55:ba:d0:dc:65:8e:03:fb:78:f7:15:05:bb:
30:d0:ee:cf:3d:11:6a:2f:91:b5:d3:4a:59:39:2e:
09:11:ca:d5:43:48:05:f0:2a:35:12:10:42:03:32:
27:5e:89:ce:1c:c5:66:b4:8b:f5:c0:41:58:5e:bf:
a9:3b:1a:c3:dc:93:7a:fa:06:69:a5:ec:9f:9b:bb:
a4:cb:b8:fd:97:51:b1:99:a7:c0:7a:ee:a8:50:89:
a3:f3:56:86:28:e5:cb:e9:59:7d:60:5b:42:9b:be:
be:4a:68:81:94:d0:b4:72:ee:56:df:13:43:c7:a2:
64:13:75:33:2a:b3:33:48:c5:91:49:59:b7:26:15:
d7:48:f8:b3:10:56:d5:af:df:b5:aa:02:51:5c:5c:
96:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B0:E3:94:FC:98:AB:24:51:CD:C4:AB:0A:E1:1B:84:FD:72:32:17
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313432333832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.70.132.0/24
Signature Algorithm: sha256WithRSAEncryption
32:fb:bb:8b:2d:0a:ad:1e:fa:12:84:41:95:88:77:bd:b7:4b:
e2:b0:27:3b:13:7f:4a:29:23:46:8e:ae:93:25:1b:ef:eb:64:
22:d7:9b:69:23:87:79:e0:ef:61:c2:b0:db:49:64:db:1b:bf:
6d:e5:d4:cb:57:df:54:99:fa:f5:74:fe:92:69:12:fe:c5:7b:
79:ea:10:aa:a2:22:2f:4d:7b:24:33:0d:8b:56:82:b7:9d:fa:
39:62:d4:bd:b4:ab:98:23:44:e6:f0:24:86:82:cb:9c:dc:77:
fd:54:63:c1:a1:17:a3:04:e5:ad:18:03:1c:38:c1:06:17:02:
d6:b9:70:c1:6a:08:30:33:66:ed:5a:23:f9:97:7b:90:6d:93:
1c:8d:ab:d8:ae:c5:d8:ae:08:03:65:5a:05:82:75:3f:61:da:
1d:33:fe:1b:70:32:c9:19:1a:f2:1e:00:01:37:ae:c8:0c:82:
93:f1:1d:38:8b:fa:a3:d3:6f:78:b2:e0:ef:a9:c8:03:46:d6:
f2:52:2a:4e:6d:fe:35:40:18:04:75:a5:0b:f2:4d:37:77:0c:
3d:93:98:43:30:89:4d:73:77:f1:eb:11:5f:ce:c6:4b:5e:8e:
eb:97:66:df:77:28:02:b1:5f:bb:ff:c1:41:86:db:c0:4d:6b:
3d:15:f7:dc
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUeRy9PwbUKVm0uBGMFY/E+NrYCUMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx
MkIxNTYxMDAeFw0yMjEwMDkwNTU1MDBaFw0yMzEwMDgwNjAwMDBaMDMxMTAvBgNV
BAMTKEU5QjBFMzk0RkM5OEFCMjQ1MUNEQzRBQjBBRTExQjg0RkQ3MjMyMTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHhZN6YvCoW7Iu1tN/bV50LVU8
Zer6tl/9xF6UHN9Yl8koA1zOGrRJ667cx1kB3JkClou+6A00P2yWiTPRGxzQCQKS
lRCB1HnOxFktGRinJCOn2h+B2gijjHLxUOBI1Of2VR0T81NHK4luVbrQ3GWOA/t4
9xUFuzDQ7s89EWovkbXTSlk5LgkRytVDSAXwKjUSEEIDMideic4cxWa0i/XAQVhe
v6k7GsPck3r6Bmml7J+bu6TLuP2XUbGZp8B67qhQiaPzVoYo5cvpWX1gW0Kbvr5K
aIGU0LRy7lbfE0PHomQTdTMqszNIxZFJWbcmFddI+LMQVtWv37WqAlFcXJaJAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU6bDjlPyYqyRRzcSrCuEbhP1yMhcwHwYDVR0j
BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw
MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx
NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04
NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaEMA0GCSqG
SIb3DQEBCwUAA4IBAQAy+7uLLQqtHvoShEGViHe9t0visCc7E39KKSNGjq6TJRvv
62Qi15tpI4d54O9hwrDbSWTbG79t5dTLV99Umfr1dP6SaRL+xXt56hCqoiIvTXsk
Mw2LVoK3nfo5YtS9tKuYI0Tm8CSGgsuc3Hf9VGPBoRejBOWtGAMcOMEGFwLWuXDB
aggwM2btWiP5l3uQbZMcjavYrsXYrggDZVoFgnU/YdodM/4bcDLJGRryHgABN67I
DIKT8R04i/qj0294suDvqcgDRtbyUipObf41QBgEdaUL8k03dww9k5hDMIlNc3fx
6xFfzsZLXo7rl2bfdygCsV+7/8FBhtvATWs9Fffc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org