Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32302d3234203d3e203338313433.roa
File: 3230322e3136392e3234302e302f32302d3234203d3e203338313433.roa (raw, json)
Hash identifier: VseWtEkoibpSErqIFmfWeqSLFHYM1uxY8T2GFFwGEW0=
Subject key identifier: 1B:68:BC:11:DF:D4:91:34:29:1D:8A:A9:EF:C4:2E:34:0E:DF:A5:16
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 56E1FACBE4AC3BBD9358F27A2800B3B04ED4005B
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32302d3234203d3e203338313433.roa
Signing time: Tue 16 Aug 2022 10:49:18 +0000
ROA not before: Tue 16 Aug 2022 10:44:18 +0000
ROA not after: Tue 15 Aug 2023 10:49:18 +0000
asID: 38143
IP address blocks: 202.169.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:e1:fa:cb:e4:ac:3b:bd:93:58:f2:7a:28:00:b3:b0:4e:d4:00:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Aug 16 10:44:18 2022 GMT
Not After : Aug 15 10:49:18 2023 GMT
Subject: CN=1B68BC11DFD49134291D8AA9EFC42E340EDFA516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9d:83:d6:e9:3a:83:8d:fb:25:c1:81:13:3f:
98:07:52:6a:4a:b2:b9:78:ec:22:1c:2f:ee:ff:4f:
2a:2d:98:40:fa:86:1b:a8:5e:47:85:a1:2e:7f:d4:
34:cc:71:26:6a:17:a9:13:91:7a:b8:3b:10:31:33:
d9:01:34:a9:5f:b6:ec:78:c4:85:f2:11:e3:53:91:
96:67:4b:98:9b:cd:4e:3b:8f:ca:57:4d:48:35:f0:
1e:12:4d:15:ab:29:b5:49:79:06:2e:3b:e8:56:74:
75:11:ae:d8:53:1e:fa:b2:77:71:d2:a9:af:2c:98:
1f:7a:76:f1:da:8d:cf:14:cc:87:96:c9:96:2f:3b:
10:30:39:5a:82:e2:9e:9a:24:bf:e6:24:0f:b5:a9:
6a:d5:a4:e5:78:0b:a4:33:bb:c8:23:5d:db:34:fd:
eb:1c:fa:56:f7:05:c2:31:68:6f:05:90:f3:ba:0d:
97:a1:6a:d4:d5:d1:22:29:78:ed:92:85:86:d4:b1:
6c:cf:da:d0:8c:f7:d6:9e:23:97:8b:a7:35:d1:3a:
ec:ac:f5:8e:0a:2a:fd:70:52:9a:97:85:ee:e5:5d:
23:55:e7:9b:2f:b0:02:14:cb:0f:54:fe:29:1d:25:
2d:48:7b:f1:e6:54:63:45:27:2b:6b:8e:96:d5:02:
8c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:68:BC:11:DF:D4:91:34:29:1D:8A:A9:EF:C4:2E:34:0E:DF:A5:16
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32302d3234203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.240.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:2a:e5:1c:3a:0b:75:03:84:15:35:91:b3:74:61:88:f2:eb:
4f:c9:58:27:45:5a:c7:4d:be:cb:bf:81:88:3a:0d:89:71:a6:
01:fc:66:60:26:82:47:d4:f5:7b:22:2c:62:dd:8a:fb:ac:61:
ea:eb:fe:b4:11:a7:21:b5:81:cb:6e:61:e0:a2:59:eb:34:9e:
91:ff:15:f0:ce:c9:6d:a5:ef:97:25:ef:11:38:12:df:d6:63:
9a:42:38:31:63:c8:99:ab:52:fb:45:72:3d:ce:57:19:82:ac:
94:b7:31:7a:e5:94:48:d5:bf:85:d8:a7:a0:ab:ab:0c:1f:8e:
c9:7e:2d:93:ed:55:45:7c:af:10:02:26:be:6e:b3:61:85:18:
e2:09:80:2b:a2:2f:0e:d2:17:9e:f6:5c:94:f5:2d:6b:fc:b5:
89:d2:fb:86:88:6f:fa:23:6e:90:a9:01:4e:3e:26:4e:f5:9e:
bf:50:05:be:91:4a:c6:ef:a3:4a:fd:e6:67:9d:69:6d:b2:be:
28:89:a9:2d:1b:9f:99:fd:87:07:71:19:40:fc:09:d3:7a:09:
8c:3f:7e:54:8b:6a:0c:b0:e1:c6:dd:71:f9:2a:60:59:49:67:
96:d5:8c:dc:53:6f:2a:1f:f6:c8:c9:20:0b:ba:63:2f:91:be:
80:e2:62:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org