Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313432333832.roa
File: 3230322e37302e3133332e302f32342d3234203d3e20313432333832.roa (raw, json)
Hash identifier: TtSgnoz3om+1v3iOaM13oLE96xaDlG2z6qjOg7StGtY=
Subject key identifier: 56:6B:E3:B0:BB:89:AE:4D:A1:33:5F:E7:21:62:B1:AB:54:BA:5C:AC
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 4CE65EDD8F0E1895D87C4863DE3ECB92C28C24DB
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313432333832.roa
Signing time: Sun 09 Oct 2022 06:00:00 +0000
ROA not before: Sun 09 Oct 2022 05:55:00 +0000
ROA not after: Sun 08 Oct 2023 06:00:00 +0000
asID: 142382
IP address blocks: 202.70.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:e6:5e:dd:8f:0e:18:95:d8:7c:48:63:de:3e:cb:92:c2:8c:24:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: Oct 9 05:55:00 2022 GMT
Not After : Oct 8 06:00:00 2023 GMT
Subject: CN=566BE3B0BB89AE4DA1335FE72162B1AB54BA5CAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f6:69:6b:75:3f:7e:91:64:ec:be:30:13:a3:
c3:e7:30:99:9d:81:b7:6f:79:8c:66:08:31:37:34:
d0:d9:c2:f6:03:06:56:61:aa:4e:4e:f3:9f:39:e9:
c1:e0:e7:98:47:4f:0e:6d:26:3e:84:d0:2c:78:f7:
51:ea:f2:d6:1f:30:36:99:1c:a1:0d:79:31:14:aa:
25:77:8b:8b:00:50:3a:8d:bc:69:14:af:62:c3:d9:
a6:3a:3a:c4:7f:15:af:1d:42:54:e8:c8:83:09:44:
57:6e:63:73:25:6b:11:cb:ad:f4:99:0d:fc:e2:7a:
f3:ac:bf:fb:b4:61:d6:d0:15:89:a1:9c:01:b2:f1:
e5:02:35:87:50:b1:40:6e:cc:cd:0e:ad:a2:82:90:
e8:c7:ab:93:1e:dc:c7:96:94:bd:a1:20:fb:a6:7c:
b4:a5:b0:66:5a:f3:30:5e:dd:fe:0e:46:5c:cf:82:
f7:3a:1b:d9:ed:80:d7:95:87:d1:6e:c8:dc:e5:00:
cf:13:12:16:a1:15:84:97:c6:a6:1a:c2:83:b8:22:
3d:13:ea:6c:5c:d8:12:2f:01:bf:d3:6b:31:24:20:
35:4e:b3:e4:08:55:98:d9:2b:c5:10:7f:45:b2:b6:
98:f7:d8:b9:a3:bf:ef:be:74:66:8c:86:14:44:d0:
1a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6B:E3:B0:BB:89:AE:4D:A1:33:5F:E7:21:62:B1:AB:54:BA:5C:AC
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313432333832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.70.133.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f2:41:1c:1b:90:d8:72:d1:24:67:38:ad:7e:e9:09:e2:89:
e1:76:e4:a4:96:b6:eb:95:ee:7b:61:13:08:41:c0:6b:99:45:
13:e1:89:07:2c:9e:d5:53:1b:5e:d0:00:0d:6c:0f:78:ac:16:
1b:a5:9e:1f:73:1b:17:4d:ff:b6:48:92:d1:a8:27:33:91:83:
dc:8c:be:ba:69:c0:f4:d4:98:c6:0e:87:c4:76:dc:ea:9b:03:
dd:a5:a6:56:e3:eb:30:16:94:c4:87:40:c1:b6:76:02:51:4c:
e2:58:f1:b2:f7:9e:b7:23:4d:72:db:b0:f2:ac:60:74:56:94:
d0:df:b5:c7:3d:c2:b5:c0:3d:fc:b0:ac:b8:6f:ad:2f:7b:2f:
91:f7:c1:97:5f:eb:9e:6e:5d:32:4f:77:75:6a:02:78:96:c7:
cd:ba:c2:77:64:3f:24:03:78:d7:88:16:51:e9:31:7e:14:08:
e5:23:fb:6c:81:8a:85:ae:b3:fc:71:90:b4:75:b6:a5:a3:a7:
4d:b0:a1:be:f5:86:2e:e8:aa:d0:5f:57:b3:e2:48:06:3d:26:
4f:f5:81:d3:b5:c7:76:de:b8:2a:8d:4f:01:fd:90:22:df:19:
67:68:bc:13:e4:79:1d:eb:07:34:4e:00:08:08:0c:46:cc:ad:
d9:18:50:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org