Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31392e302f32342d3234203d3e20313338303930.roa
File: 3230322e35312e31392e302f32342d3234203d3e20313338303930.roa (raw, json)
Hash identifier: 3A5bhqbbLYqxwPvkdOq5QjwNFpjpfpmFANMNq/iTjNo=
Subject key identifier: 3A:10:86:CB:18:04:13:AD:36:F8:B9:DA:BC:49:A9:78:6A:86:BD:62
Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0
Certificate serial: 5A679EB6915D123CAC7D769A8C46571FD4265BE1
Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31392e302f32342d3234203d3e20313338303930.roa
Signing time: Tue 17 May 2022 04:28:07 +0000
ROA not before: Tue 17 May 2022 04:23:07 +0000
ROA not after: Tue 16 May 2023 04:28:07 +0000
asID: 138090
IP address blocks: 202.51.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:67:9e:b6:91:5d:12:3c:ac:7d:76:9a:8c:46:57:1f:d4:26:5b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0
Validity
Not Before: May 17 04:23:07 2022 GMT
Not After : May 16 04:28:07 2023 GMT
Subject: CN=3A1086CB180413AD36F8B9DABC49A9786A86BD62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:49:7e:9c:4f:90:7d:53:4c:77:83:99:84:9c:
44:35:0b:27:fa:d2:a9:88:d3:06:e4:28:0f:9e:cd:
ee:39:20:9e:22:7b:1f:e4:f4:d1:8e:87:37:ff:14:
e9:a9:5b:e4:fd:52:bc:5e:e7:77:73:ee:81:28:2d:
1f:a2:8c:4e:f6:d4:68:f8:5d:72:fa:2d:bf:5f:19:
30:e1:77:a7:65:0f:5b:bb:6a:8a:5a:f4:f8:02:6f:
14:c0:2e:94:4c:34:92:1b:fb:bf:13:26:0c:2c:14:
50:66:a1:e9:ac:c9:a9:8e:18:53:7c:73:f3:49:e1:
cf:dd:1c:bc:60:a0:c7:e2:8c:31:64:cc:35:de:88:
df:de:52:3a:85:00:a5:2e:0c:d8:c3:13:30:37:8b:
52:43:43:73:2b:d0:89:bd:30:6b:e0:4b:f4:8d:74:
77:a9:2f:9c:fe:68:34:b5:6e:94:27:8b:81:d2:63:
24:7e:0f:01:5b:d8:8d:1e:e8:77:b9:70:d0:38:e1:
33:54:60:a5:2c:75:d3:f5:dd:9d:88:8e:f2:4d:83:
8a:0f:d8:cb:97:88:7c:fb:5f:a3:cd:6a:27:f5:b6:
01:7e:f4:ee:6f:03:14:f3:9e:b6:94:94:03:4e:00:
e8:03:df:08:79:d8:93:1e:9d:17:90:93:c0:21:5a:
65:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:10:86:CB:18:04:13:AD:36:F8:B9:DA:BC:49:A9:78:6A:86:BD:62
X509v3 Authority Key Identifier:
keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31392e302f32342d3234203d3e20313338303930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.19.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:ae:a1:83:c8:56:86:5d:42:4a:91:57:30:74:a5:e0:bc:e7:
8b:73:88:26:01:c2:63:d6:69:f6:ed:70:38:84:f6:80:a3:60:
1c:0e:d3:b4:40:6b:d7:e5:98:d5:2f:c4:6a:7d:57:4a:33:19:
17:ff:69:52:db:45:6a:f4:16:f0:99:21:ec:f4:97:9b:ce:38:
ab:1d:01:0f:98:9f:84:0d:88:73:d5:e4:57:8d:87:16:a2:d1:
59:97:fa:82:24:17:5a:ac:ce:c1:b0:21:88:2c:06:8a:a3:eb:
0c:b6:77:89:0d:d9:d5:01:d1:5b:1f:d0:d3:a4:19:42:c9:90:
40:64:49:d8:f7:58:c7:09:ce:2c:64:6f:9b:76:c5:1d:85:61:
66:0f:8d:08:46:bb:d0:00:00:88:73:40:3f:61:6a:1d:fb:35:
16:72:79:0b:24:98:5b:5c:cc:01:92:25:a4:5c:bb:fe:04:75:
8a:31:f9:3c:13:73:d5:4b:4f:80:71:76:20:64:80:7d:e4:94:
45:09:93:a3:81:55:83:a1:51:53:59:85:f0:47:87:8e:f6:e8:
35:84:18:f7:8f:80:c6:94:13:d1:d5:4d:82:69:d4:02:4f:d7:
5f:23:32:18:c5:fc:00:68:55:e5:b1:9f:48:26:d0:89:88:b3:
24:a7:5a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:31 2025 by rpki-client