Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32332d3234203d3e203233393530.roa
File: 3230322e35312e31362e302f32332d3234203d3e203233393530.roa (raw, json)
Hash identifier: PLxyzNMHDwWhigbWK1elnj9wmeVoOxOWWNDLZHzEEUc=
Subject key identifier: C4:9A:1D:F0:88:15:BF:15:D9:5D:27:2F:DC:CB:E6:73:29:0B:BA:07
Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0
Certificate serial: 531D0A95F37F13EA48BB713117A2F517361A51B7
Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32332d3234203d3e203233393530.roa
Signing time: Thu 07 Nov 2024 15:00:00 +0000
ROA not before: Thu 07 Nov 2024 14:55:00 +0000
ROA not after: Thu 06 Nov 2025 15:00:00 +0000
asID: 23950
IP address blocks: 202.51.16.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:1d:0a:95:f3:7f:13:ea:48:bb:71:31:17:a2:f5:17:36:1a:51:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0
Validity
Not Before: Nov 7 14:55:00 2024 GMT
Not After : Nov 6 15:00:00 2025 GMT
Subject: CN=C49A1DF08815BF15D95D272FDCCBE673290BBA07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:39:51:9f:61:93:26:9e:e7:4f:e1:2a:52:43:
5a:e4:34:9a:e8:ef:0f:28:0e:cf:d9:63:14:92:6e:
72:5f:e7:d7:6e:b2:5f:a8:85:82:25:a0:bb:54:c8:
14:3c:05:1a:15:fd:7a:f4:42:00:15:fc:7c:24:4d:
5d:75:a9:73:04:ac:93:69:69:1f:92:45:52:d1:da:
5e:50:b0:1f:4a:bd:f4:09:ad:e4:8e:c7:55:02:3f:
74:de:c4:91:a2:10:20:40:d5:ac:7f:3f:45:ba:a3:
56:20:5a:74:73:95:43:7b:93:a5:2d:bd:c3:a7:c2:
a8:21:8b:4e:9e:04:72:40:e0:9c:b9:0c:69:61:4d:
8f:9f:42:1c:00:89:19:94:2c:d8:0e:18:8e:ec:b5:
53:06:16:6a:39:fc:be:8a:16:a8:36:bb:38:1d:95:
e3:ca:0d:0b:b7:9a:03:ba:b1:92:10:05:a9:08:9d:
81:4d:51:ba:ef:62:77:52:c1:5f:43:58:d3:a9:9c:
34:0c:51:d7:5a:75:ec:2f:d2:4a:88:a7:ec:c3:86:
f2:96:6e:9d:2a:3e:33:2a:34:25:05:71:b7:61:a1:
b5:46:f5:a1:38:4b:21:b3:7e:7f:84:aa:aa:1f:f8:
ab:a0:86:06:0c:4b:97:b1:ce:56:b7:74:bf:01:04:
64:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9A:1D:F0:88:15:BF:15:D9:5D:27:2F:DC:CB:E6:73:29:0B:BA:07
X509v3 Authority Key Identifier:
keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32332d3234203d3e203233393530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.16.0/23
Signature Algorithm: sha256WithRSAEncryption
64:15:8c:7c:51:63:3d:47:c7:0b:1e:0a:27:21:a1:70:91:1a:
83:a9:5e:e9:db:31:32:ae:46:a3:56:22:2f:84:4d:39:44:ee:
af:04:9b:79:74:6a:ba:40:7a:48:d6:91:d4:b4:8b:66:43:3d:
bd:88:70:d8:a3:a5:41:16:ed:4d:37:99:d0:fc:e0:ca:1e:23:
7d:76:16:17:f2:b8:7e:31:20:27:ce:c2:b0:6d:ef:c1:34:35:
e0:30:c2:77:c7:c5:45:f6:27:bb:95:c7:02:00:82:12:67:0c:
7f:4c:7a:b4:cb:73:1a:6b:ed:62:c0:80:e0:24:49:2c:8f:ed:
b9:a3:6f:99:db:e3:7d:5d:a7:92:0d:5e:60:a0:d8:02:73:cb:
a1:9a:cd:75:b7:c4:41:91:bd:b3:f7:4d:94:a5:15:12:b8:1e:
4f:df:04:36:d5:a2:81:87:7c:3f:c0:d4:f8:20:c5:73:03:20:
15:10:8f:8f:d0:b4:8f:79:b9:53:d8:0b:d6:21:63:35:e9:af:
19:e7:6b:c9:3b:d8:16:5e:48:f8:9e:87:2d:b2:a7:4b:fb:46:
2e:22:88:08:33:8a:b9:a5:6f:fa:94:03:83:d5:8c:dd:b7:81:
56:1c:cc:8c:7f:45:b1:02:b7:77:17:9b:09:83:6f:0f:6f:14:
0f:11:6e:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:43:12 2025 by rpki-client