Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS131765.roa
File: AS131765.roa (raw, json)
Hash identifier: s+Bu4de6ILU82mefi+cW0iTiaP68qneGvFdvhVgbFto=
Subject key identifier: 8C:8C:DA:05:AE:1E:3A:94:AE:04:C6:93:79:53:12:4F:02:3E:B0:D8
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 4D45583FD10E6082324A3B323D1D333E1EEB5D40
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS131765.roa
Signing time: Tue 14 Mar 2023 07:00:00 +0000
ROA not before: Tue 14 Mar 2023 06:55:00 +0000
ROA not after: Tue 12 Mar 2024 07:00:00 +0000
asID: 131765
IP address blocks: 101.255.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:45:58:3f:d1:0e:60:82:32:4a:3b:32:3d:1d:33:3e:1e:eb:5d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Mar 14 06:55:00 2023 GMT
Not After : Mar 12 07:00:00 2024 GMT
Subject: CN=8C8CDA05AE1E3A94AE04C6937953124F023EB0D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:45:11:e2:69:5c:a1:24:4c:ed:da:1c:cf:80:
ff:44:94:1d:fd:42:5d:d4:92:62:21:bc:f9:fd:ac:
98:cc:a0:7b:08:de:2f:ca:1a:37:ce:5b:d7:2f:dd:
2a:e4:97:8e:b8:42:2c:f5:d8:0d:e6:1c:8b:08:ce:
82:e7:4f:dc:d8:ee:73:c9:c1:7d:bc:0c:9a:99:10:
22:d9:59:db:a9:ec:75:02:5e:b7:dd:8e:b5:b0:09:
32:a1:8b:88:97:9a:2b:05:42:9e:5d:c9:22:4d:66:
a8:ae:a3:dc:e3:48:fd:39:4f:5d:fa:fb:2e:05:a6:
a2:27:f3:2b:fa:33:7f:c6:14:94:38:a1:70:05:54:
90:c4:97:31:01:f3:3b:f1:5a:1c:e3:ab:f1:64:ad:
da:ae:95:b7:5e:2e:ca:e1:ca:dd:a9:cd:3b:83:60:
f2:a0:2e:4f:c2:61:78:26:b8:b9:ac:7c:a3:17:71:
66:44:f2:8a:8d:09:8a:fa:61:90:69:bb:c6:62:0d:
35:14:0d:13:1b:7e:a1:6b:b4:b5:b1:9c:3b:66:b1:
1d:b2:e4:55:ed:8e:3e:8c:d1:ab:e7:52:15:98:d7:
a5:77:af:98:35:cf:74:34:ea:7d:58:b0:84:fc:58:
85:c2:12:74:df:c2:04:02:cd:5b:b1:05:6b:76:20:
51:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8C:DA:05:AE:1E:3A:94:AE:04:C6:93:79:53:12:4F:02:3E:B0:D8
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS131765.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.255.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:3d:0d:b6:1c:ac:3a:85:c7:d7:ca:e0:7b:fe:b4:17:f4:40:
09:87:d6:a4:b1:b7:7a:77:26:90:33:33:8c:03:b7:f0:04:4e:
0c:ec:fc:47:28:fa:5e:4e:50:cd:37:b8:76:5b:b2:a0:95:83:
1f:1d:99:bb:3d:d7:fa:93:c8:2b:d9:24:29:c9:39:33:0d:97:
40:37:f6:bc:1f:94:b4:5e:4e:f6:ed:32:35:ee:43:20:29:fa:
b8:e1:0c:19:af:e1:76:e3:b0:48:ad:b3:21:5a:23:28:d4:aa:
6f:81:e1:cf:6f:cb:09:64:a1:3c:b6:3c:e6:63:72:da:ed:b8:
83:da:69:f1:8f:0e:73:a5:e3:15:c2:3a:23:8b:bc:78:f7:2c:
be:8f:b8:10:cb:4a:49:33:ad:ad:8b:1b:bb:8a:ae:6e:e6:5e:
df:95:ab:cb:dc:c0:20:be:03:f7:69:ac:dc:0c:53:fe:5b:a9:
d0:3a:68:16:b5:d2:51:d5:12:fb:e6:9c:e5:9d:54:ea:ab:68:
f0:6b:7d:30:de:6f:ab:f2:b6:ae:fe:71:0a:78:4f:98:ee:ae:
c2:08:5a:0d:d2:ff:17:f2:51:0f:5c:99:f3:d4:0e:38:73:17:
94:90:e3:9f:9d:53:b0:6a:7c:b5:7b:a0:8c:d9:dc:63:23:3f:
38:01:62:db
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIUTUVYP9EOYIIySjsyPR0zPh7rXUAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZF
N0FCQzE3RjAeFw0yMzAzMTQwNjU1MDBaFw0yNDAzMTIwNzAwMDBaMDMxMTAvBgNV
BAMTKDhDOENEQTA1QUUxRTNBOTRBRTA0QzY5Mzc5NTMxMjRGMDIzRUIwRDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzRRHiaVyhJEzt2hzPgP9ElB39
Ql3UkmIhvPn9rJjMoHsI3i/KGjfOW9cv3Srkl464Qiz12A3mHIsIzoLnT9zY7nPJ
wX28DJqZECLZWdup7HUCXrfdjrWwCTKhi4iXmisFQp5dySJNZqiuo9zjSP05T136
+y4FpqIn8yv6M3/GFJQ4oXAFVJDElzEB8zvxWhzjq/FkrdqulbdeLsrhyt2pzTuD
YPKgLk/CYXgmuLmsfKMXcWZE8oqNCYr6YZBpu8ZiDTUUDRMbfqFrtLWxnDtmsR2y
5FXtjj6M0avnUhWY16V3r5g1z3Q06n1YsIT8WIXCEnTfwgQCzVuxBWt2IFEzAgMB
AAGjggH/MIIB+zAdBgNVHQ4EFgQUjIzaBa4eOpSuBMaTeVMSTwI+sNgwHwYDVR0j
BBgwFoAUkWm5tlJs0UmE3eOkLiTdj+erwX8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0yMDc0YzU5ODA4OTgvMC85MTY5QjlCNjUy
NkNEMTQ5ODREREUzQTQyRTI0REQ4RkU3QUJDMTdGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZFN0FC
QzE3Ri5jZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jl
cG8tcnBraS5pZG5pYy5uZXQvcmVwby84OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0y
MDc0YzU5ODA4OTgvMC9BUzEzMTc2NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGX/qDANBgkqhkiG9w0B
AQsFAAOCAQEAfz0NthysOoXH18rge/60F/RACYfWpLG3encmkDMzjAO38ARODOz8
Ryj6Xk5QzTe4dluyoJWDHx2Zuz3X+pPIK9kkKck5Mw2XQDf2vB+UtF5O9u0yNe5D
ICn6uOEMGa/hduOwSK2zIVojKNSqb4Hhz2/LCWShPLY85mNy2u24g9pp8Y8Oc6Xj
FcI6I4u8ePcsvo+4EMtKSTOtrYsbu4qubuZe35Wry9zAIL4D92ms3AxT/lup0Dpo
FrXSUdUS++ac5Z1U6qto8Gt9MN5vq/K2rv5xCnhPmO6uwghaDdL/F/JRD1yZ89QO
OHMXlJDjn51TsGp8tXugjNncYyM/OAFi2w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org