Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234382e302f32322d3232203d3e203338313433.roa
File: 3230322e3136392e3234382e302f32322d3232203d3e203338313433.roa (raw, json)
Hash identifier: wOhAQQCIqnkJrHWiWyKTc/gRmEU+reiDKcIjfj13QEU=
Subject key identifier: A9:2D:A2:09:9D:6D:5B:B8:76:DE:13:58:5A:CF:7A:DC:82:D1:3E:66
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 4310C7F18712FF6A2AFEB9A23FDB50EEABB80166
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234382e302f32322d3232203d3e203338313433.roa
Signing time: Tue 16 Aug 2022 04:46:41 +0000
ROA not before: Tue 16 Aug 2022 04:41:41 +0000
ROA not after: Tue 15 Aug 2023 04:46:41 +0000
asID: 38143
IP address blocks: 202.169.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:10:c7:f1:87:12:ff:6a:2a:fe:b9:a2:3f:db:50:ee:ab:b8:01:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Aug 16 04:41:41 2022 GMT
Not After : Aug 15 04:46:41 2023 GMT
Subject: CN=A92DA2099D6D5BB876DE13585ACF7ADC82D13E66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:1b:35:8e:a6:13:d9:57:b2:d3:f8:2d:9f:
2d:eb:6b:58:38:3c:87:48:2c:6b:76:35:22:a1:74:
0a:88:0a:e3:a7:ce:b3:51:2d:56:e5:c8:1b:c7:a5:
5b:c1:1d:49:6e:c8:fa:c1:57:46:f8:18:ab:9b:22:
53:89:de:a3:0d:52:cc:e4:ea:35:06:39:06:f6:66:
ae:54:11:a8:39:13:f8:63:59:3c:d2:81:df:65:1a:
3b:f4:cd:5e:72:3b:a2:16:f3:79:c8:c9:bd:f0:92:
fa:8a:b7:7a:fa:b8:74:e8:04:1d:9b:1c:29:86:33:
34:42:46:a9:f5:f8:11:dd:af:fd:71:06:78:1f:b9:
66:45:11:99:0e:27:55:a8:f0:86:95:06:82:17:5e:
02:3a:37:5b:d1:fc:7c:05:0b:81:b5:0a:68:f2:32:
cb:c6:f8:a0:92:93:4c:de:87:d5:9a:7f:e7:2b:8e:
db:ef:2e:70:f6:82:fe:b4:62:47:b0:31:4b:d0:54:
eb:17:67:20:1e:13:2f:97:b4:94:86:fc:df:a2:16:
b1:8c:07:04:09:ee:81:83:36:fd:ff:3c:26:8e:6e:
73:dd:f3:ee:a5:7b:b6:8d:23:1f:9a:9d:5b:79:22:
09:bd:c9:8e:a6:b3:3b:99:14:81:2f:90:01:ed:f0:
44:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2D:A2:09:9D:6D:5B:B8:76:DE:13:58:5A:CF:7A:DC:82:D1:3E:66
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234382e302f32322d3232203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.248.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:7f:f4:c7:09:b1:03:c9:04:96:cb:bb:e7:b7:b3:9c:11:f0:
e3:44:aa:83:33:4c:aa:d4:71:fd:4d:4a:33:e2:b9:c4:aa:a0:
2b:8f:8c:e5:f7:42:01:15:ee:4a:73:60:80:ad:ca:c8:7d:c2:
4f:ef:e4:e2:35:eb:ec:f0:12:87:9e:95:e6:2f:be:5f:e8:7f:
52:bb:15:9c:ff:27:7f:ca:0d:09:2a:29:3e:d2:50:1c:df:98:
d2:9a:04:38:47:ec:94:c3:07:08:9e:66:e2:29:17:ea:a2:6e:
80:4e:0c:a0:76:8e:a5:0a:a6:51:4f:e1:19:33:53:3c:cc:c4:
a4:27:c9:88:a5:eb:cb:f9:e3:e2:37:8a:a8:f9:cf:5b:5f:2b:
86:bc:7b:fb:fb:51:77:75:5c:f4:85:9d:ab:2a:b9:c6:87:b1:
70:4d:3b:2e:46:8b:aa:25:93:e9:31:a0:b6:9c:e0:d5:3c:26:
b9:7b:1c:02:37:2c:0f:2e:e3:0e:8f:31:0f:e1:32:20:6e:29:
48:33:7b:6b:f8:99:e1:77:66:3b:13:45:7a:33:4a:2a:fe:63:
bc:47:5c:a3:83:1b:8e:5a:93:ac:ae:e1:38:b5:74:7d:23:b7:
d3:40:08:84:3f:17:ee:ca:47:ca:61:39:63:b9:99:ad:a6:f9:
ab:7a:f9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org