Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32312d3231203d3e203338313433.roa
File: 3230322e3136392e3234302e302f32312d3231203d3e203338313433.roa (raw, json)
Hash identifier: LJky0Ln6Hy6MVm27iHnGia9EPtR+adL+VSdt/MRYmKo=
Subject key identifier: 03:02:D5:CE:D2:B9:7C:6B:F4:51:F8:11:2B:A1:61:CE:B3:8C:2F:4B
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 6C9ABDD3E298CA607550AE01940F5F85EFD45286
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32312d3231203d3e203338313433.roa
Signing time: Tue 16 Aug 2022 04:46:08 +0000
ROA not before: Tue 16 Aug 2022 04:41:08 +0000
ROA not after: Tue 15 Aug 2023 04:46:08 +0000
asID: 38143
IP address blocks: 202.169.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:9a:bd:d3:e2:98:ca:60:75:50:ae:01:94:0f:5f:85:ef:d4:52:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Aug 16 04:41:08 2022 GMT
Not After : Aug 15 04:46:08 2023 GMT
Subject: CN=0302D5CED2B97C6BF451F8112BA161CEB38C2F4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d8:44:4c:74:3b:fa:74:65:f8:8e:eb:cc:a9:
59:a5:70:c1:91:46:e1:b2:58:23:b5:be:01:bd:d1:
4e:a1:f1:38:d7:ec:40:21:95:81:5a:a2:99:12:71:
e7:3b:d9:e1:a0:41:4a:6a:0d:6e:4c:0d:1b:e0:12:
90:29:f8:68:8b:9e:f1:7c:2a:b7:cb:0f:e5:28:b5:
ef:52:cf:d9:f5:ce:95:da:38:b0:ae:30:61:72:0b:
66:00:48:a1:b5:e2:5e:9f:81:b6:9c:6c:63:bd:e8:
c7:81:de:a9:da:05:ca:5f:37:8e:82:2f:cc:bb:3b:
e0:05:14:99:37:96:e9:5a:fd:75:d2:6c:e5:b0:a7:
bd:79:6e:ae:fd:b4:8d:ae:c0:2d:3e:c4:0e:21:1f:
50:8d:95:c0:6d:d3:24:cb:3e:5c:ff:59:c6:d9:69:
fb:97:20:52:c6:77:b5:cb:3b:70:7d:2a:4b:0a:78:
36:08:80:cd:f6:c1:c1:14:74:ce:3a:34:76:a0:a8:
55:61:b6:52:59:20:be:80:93:37:97:dc:1f:e2:45:
7e:f5:bd:f5:dd:71:5e:69:ed:13:67:6e:d0:a1:36:
1c:6b:d0:d9:ae:6a:a2:f0:ea:bb:26:e7:74:33:e2:
0e:c7:df:a5:0a:a8:c7:42:10:5d:d4:40:8c:1d:3f:
32:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:02:D5:CE:D2:B9:7C:6B:F4:51:F8:11:2B:A1:61:CE:B3:8C:2F:4B
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32312d3231203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.240.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:dc:ee:55:a4:7b:1d:fc:6e:b8:62:6a:ed:71:c7:04:a6:86:
3a:ce:a7:b0:70:37:91:e7:fc:ff:68:13:d0:ac:a7:94:d8:fe:
4b:38:a0:e4:c3:5e:df:2b:c2:a5:11:d1:b9:e0:06:da:4e:42:
02:28:04:a1:aa:cb:30:7b:25:2c:4c:38:5c:d8:65:b0:f4:4b:
8e:54:41:14:b2:32:a5:04:ec:bf:13:7f:ae:cd:5a:c6:56:fe:
a8:ec:65:5a:34:93:52:2b:2c:e3:85:68:24:fe:12:6f:8b:78:
5a:c9:f0:09:a2:b4:c5:47:70:c6:8e:81:5e:ee:b1:65:cf:8a:
e1:48:7a:5f:18:59:49:40:2c:72:f9:f1:43:8b:b5:20:d6:f9:
f6:b3:9a:07:2d:75:81:55:e3:92:82:c7:68:44:0e:e3:aa:c9:
10:8c:9b:5d:fc:83:7f:0e:c4:61:37:20:99:e1:87:2a:14:db:
56:2d:29:54:c4:90:2e:ef:84:db:02:2f:7c:dc:b7:14:3c:23:
80:9d:0d:a3:b0:a0:2b:44:73:46:77:56:d3:9c:ac:0b:7f:3c:
71:0a:44:10:29:9c:77:20:bd:c5:f2:ea:a3:1f:73:7e:40:83:
8b:54:93:ac:01:89:06:2d:08:bf:39:ec:9d:00:b5:7c:13:7a:
6b:ad:47:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org