Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e2034383231.roa
File: 3232332e32352e3130392e302f32342d3234203d3e2034383231.roa (raw, json)
Hash identifier: 8FIwJCxSsp4wphLOwMMLbmgn4PiAqq0yF0PIwvVjfr8=
Subject key identifier: A8:BF:06:C3:E7:65:FB:F1:E8:85:0E:AE:26:49:67:04:E7:93:D2:BC
Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Certificate serial: 265AE0C3D11A111EDEDE1F83FC7E191B9ACFD8BE
Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e2034383231.roa
Signing time: Sun 28 Aug 2022 23:08:22 +0000
ROA not before: Sun 28 Aug 2022 23:03:22 +0000
ROA not after: Sun 27 Aug 2023 23:08:22 +0000
asID: 4821
IP address blocks: 223.25.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:5a:e0:c3:d1:1a:11:1e:de:de:1f:83:fc:7e:19:1b:9a:cf:d8:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Validity
Not Before: Aug 28 23:03:22 2022 GMT
Not After : Aug 27 23:08:22 2023 GMT
Subject: CN=A8BF06C3E765FBF1E8850EAE26496704E793D2BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8e:84:e8:b9:4d:0f:a1:80:5c:c2:8b:e5:53:
37:4f:d1:59:6c:31:12:ae:01:6e:f4:a3:7f:b5:59:
e9:9a:2b:e1:b9:fe:36:39:26:c2:88:86:da:95:5a:
58:65:e3:73:7f:f4:b5:b1:e1:e7:43:f0:79:27:76:
2b:41:aa:95:a0:6f:8a:ec:3a:7a:25:a3:17:1a:41:
58:c7:4c:b6:6a:df:74:91:4f:17:1e:73:70:91:76:
bb:18:2e:af:1f:2f:9c:12:69:03:7a:4e:51:a2:2f:
78:92:8f:2b:49:67:9d:01:98:2c:4c:8a:8a:ad:b7:
a5:c2:d5:20:de:e6:27:ca:8d:29:6c:3f:3f:9c:95:
55:31:0d:69:10:c8:5d:d1:f4:01:4f:37:64:3f:2e:
07:9b:59:39:ea:d5:4f:35:fe:0b:00:23:fe:1f:ae:
4c:cb:8c:32:55:a3:76:e9:ee:1a:8f:4f:0b:ed:93:
c7:87:fd:48:fb:96:9c:8e:ff:c5:0b:26:17:db:e1:
64:07:ca:20:56:e6:83:81:77:f5:68:e2:5c:ab:08:
3b:91:52:6a:ee:a6:b1:3d:8a:85:2a:11:f6:50:1d:
71:59:f1:cf:59:24:47:c6:f1:42:c0:a7:3b:91:89:
bd:67:df:96:ff:73:47:10:3e:98:c4:bd:a9:97:55:
5e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:BF:06:C3:E7:65:FB:F1:E8:85:0E:AE:26:49:67:04:E7:93:D2:BC
X509v3 Authority Key Identifier:
keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e2034383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.25.109.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ff:1a:00:5a:a0:cf:df:df:76:83:85:95:ab:ac:0d:56:fb:
ee:5a:91:37:6c:12:04:3b:79:3f:26:c4:eb:24:bc:80:9c:37:
5d:eb:a5:76:2e:94:01:61:f2:14:f3:f1:82:83:d7:62:ea:49:
e7:9f:6c:e3:60:09:12:1d:5b:2e:3b:f2:2d:06:fe:78:c7:cd:
30:3a:c2:75:6e:ff:52:90:b8:a6:bf:f6:53:96:11:d4:65:4f:
38:16:4c:22:d4:fe:99:6d:1e:49:69:54:5c:d2:65:15:9b:47:
39:5b:97:24:29:da:cd:1f:9f:76:12:b9:02:63:2f:29:14:d6:
c3:a2:3e:b9:79:98:4c:64:cf:a9:b2:2d:96:ef:ef:d5:02:04:
c8:24:f1:03:35:6e:d5:33:fe:90:d7:e7:e3:37:34:6a:83:80:
af:48:f2:ec:43:43:6c:8d:10:2f:86:d0:19:36:d9:52:d4:51:
20:ab:00:e7:73:59:32:e0:47:08:85:76:3c:ef:e8:ab:ff:4b:
6f:09:3d:5c:bf:72:29:84:62:d6:45:48:c3:6d:2a:6d:59:fb:
d8:f8:f3:51:9f:25:2d:69:b6:51:2b:b0:63:01:85:92:13:54:
f0:81:21:b5:fa:83:59:bd:29:5b:ef:98:97:e5:9d:21:f4:29:
18:51:8e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:08 2024 by rpki-client on console-fra.rpki-client.org