Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/3130312e3235352e3136382e302f32342d3234203d3e20313331373635.roa
File: 3130312e3235352e3136382e302f32342d3234203d3e20313331373635.roa (raw, json)
Hash identifier: LjVTTgtRmPMY3bWI0y55f8RH9Q2l4x5QAi6zO9WWjHs=
Subject key identifier: AD:C4:86:CF:B5:6C:51:F2:56:30:8E:71:F1:E6:08:64:02:A8:65:E3
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 21FFDE11693E44DD6FCDDD20176A87ADBFD79079
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/3130312e3235352e3136382e302f32342d3234203d3e20313331373635.roa
Signing time: Mon 31 Jan 2022 13:52:43 +0000
ROA not before: Mon 31 Jan 2022 13:47:43 +0000
ROA not after: Tue 31 Jan 2023 13:52:43 +0000
asID: 131765
IP address blocks: 101.255.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:ff:de:11:69:3e:44:dd:6f:cd:dd:20:17:6a:87:ad:bf:d7:90:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Jan 31 13:47:43 2022 GMT
Not After : Jan 31 13:52:43 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:72:20:41:57:07:0e:d8:eb:43:8e:fb:ed:81:
99:bc:95:e6:f9:e7:c1:73:eb:95:c0:70:d9:bd:01:
8b:72:34:5b:4c:31:b8:22:04:a9:50:76:67:d3:d7:
9f:ad:48:a3:0c:be:56:24:7b:32:03:74:d5:0b:ec:
bb:25:94:01:e0:df:56:0f:48:1b:c4:92:1c:f0:71:
d2:5a:21:15:2a:6b:0f:bf:7f:da:d5:0c:4c:3e:8a:
4f:b5:f8:e4:99:db:85:1e:90:75:34:b6:71:b4:f4:
91:1b:80:4e:df:04:a0:1d:ef:0d:c4:50:0b:42:f7:
fb:4b:2c:59:d5:ba:75:a7:be:ac:96:d1:52:da:b9:
dc:31:8c:08:7a:ee:69:70:bd:83:9c:eb:57:77:63:
97:bf:ca:38:f7:f1:b5:89:c1:15:1a:0d:f3:f8:ff:
a1:0b:47:e5:60:c5:70:ce:be:24:26:80:a4:38:06:
82:4a:6e:15:15:9f:fd:74:17:a8:56:61:1c:51:c7:
98:6e:1d:70:14:9e:79:ae:ab:1d:04:14:b7:8f:30:
1e:4b:88:3b:3b:69:a6:fd:6e:7d:6b:f9:28:37:16:
2f:17:b8:1b:29:42:ff:ea:1f:92:9b:f0:81:0e:52:
b5:0a:36:e3:02:fb:af:05:f5:90:c0:7f:0d:72:80:
86:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C4:86:CF:B5:6C:51:F2:56:30:8E:71:F1:E6:08:64:02:A8:65:E3
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/3130312e3235352e3136382e302f32342d3234203d3e20313331373635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.255.168.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:da:c5:9b:6f:ea:f1:1a:ff:fd:69:19:f6:b2:15:f5:25:5e:
5e:1c:17:9e:bc:6b:69:ef:23:e8:3a:87:ca:6e:bb:3b:45:6d:
99:e3:5d:95:dc:77:5e:a2:3b:d9:70:f1:e8:6e:e0:b2:fe:87:
be:22:71:f2:db:a0:0f:ab:a7:b5:a4:a8:d8:d8:12:0d:ed:22:
c4:48:45:94:a0:25:ce:9d:72:83:1a:c7:c6:a8:bd:df:01:d7:
ab:2b:c9:be:77:53:68:c5:53:95:85:a7:35:8b:1e:41:5d:ce:
46:69:68:11:40:c8:20:e3:e1:d4:bf:c9:de:ff:47:4f:61:4f:
97:f0:23:c0:96:f8:c5:17:d2:23:78:11:d5:69:04:ce:e7:f9:
cc:d1:3c:2d:e9:2a:b1:11:90:9b:2e:85:f7:05:91:17:5b:32:
b0:f1:f4:27:3b:79:d6:5b:ec:fc:5b:60:04:de:9a:70:55:7a:
aa:d9:3e:75:8f:5d:e6:e9:42:47:76:ef:98:ad:7e:7d:ca:df:
ed:51:88:f9:f3:06:56:e4:56:f9:20:d1:61:c7:05:7c:d5:62:
cb:c5:58:70:5e:61:d9:22:90:7c:7a:13:72:d6:0b:0a:4f:e6:
27:69:5d:16:45:d3:0b:e3:de:5f:26:21:3c:41:50:6e:4b:00:
a7:73:c3:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:08 2024 by rpki-client on console-fra.rpki-client.org