Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3233203d3e203338313433.roa
File: 3230322e3136392e3235342e302f32332d3233203d3e203338313433.roa (raw, json)
Hash identifier: kuoEpVgL+diMZLUSUmRiotCcbCMhtdaNQIc7X+nN4xk=
Subject key identifier: 1B:1A:75:20:EE:FF:DB:50:87:97:E1:1C:AA:85:1A:D8:5F:78:D9:3C
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 44DB9803E94F8DF09EB7415DE39E45EDAAFC31D1
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3233203d3e203338313433.roa
Signing time: Tue 16 Aug 2022 04:48:55 +0000
ROA not before: Tue 16 Aug 2022 04:43:55 +0000
ROA not after: Tue 15 Aug 2023 04:48:55 +0000
asID: 38143
IP address blocks: 202.169.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:db:98:03:e9:4f:8d:f0:9e:b7:41:5d:e3:9e:45:ed:aa:fc:31:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Aug 16 04:43:55 2022 GMT
Not After : Aug 15 04:48:55 2023 GMT
Subject: CN=1B1A7520EEFFDB508797E11CAA851AD85F78D93C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5e:d4:73:fa:87:02:67:0e:d3:fb:37:cc:9a:
8f:b2:c7:7d:a3:bb:4f:14:e1:52:2f:9a:4d:59:58:
e5:bc:61:d2:2c:b9:9e:87:98:65:23:6d:c2:d4:be:
42:7e:3d:c4:41:09:b6:28:af:c9:e5:31:6c:8f:02:
fa:7a:ea:a3:0a:92:dd:a9:fa:8d:3c:cb:83:d2:a9:
df:74:81:b4:58:0d:4c:84:d3:20:0f:5c:a8:15:92:
f5:46:56:1f:30:bd:d4:28:e8:41:17:90:4e:5e:2e:
17:92:06:7a:76:de:b7:8f:31:c2:bd:3d:f9:8d:ba:
a9:86:da:58:bc:15:99:0b:5e:17:21:62:25:3b:88:
61:d0:a6:20:a0:59:b7:17:46:5d:4c:86:4b:13:27:
37:d4:0f:bb:cb:0c:44:bd:34:0d:53:cf:d2:57:3e:
67:42:de:ad:34:85:6b:05:72:4d:f6:7f:5a:97:ba:
af:f7:72:58:e6:83:d7:a4:4a:3a:ef:08:7b:b4:33:
dd:ff:b3:44:41:ec:52:3a:d3:ee:38:d9:28:96:74:
47:75:9c:70:f3:5d:20:66:77:f5:cb:f6:68:dc:6e:
19:c9:2c:66:46:92:21:8a:f3:b9:8a:2e:59:6c:31:
27:25:98:1d:29:d4:2f:b3:7e:31:d2:7d:b5:1f:7d:
1b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1A:75:20:EE:FF:DB:50:87:97:E1:1C:AA:85:1A:D8:5F:78:D9:3C
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3233203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.254.0/23
Signature Algorithm: sha256WithRSAEncryption
59:40:c0:ff:62:34:be:ac:2a:0a:bf:f0:98:67:96:ff:83:2e:
f0:dd:7f:1d:c1:97:73:1e:f0:bc:70:39:d0:26:5d:49:0f:09:
77:f8:f8:f8:67:45:01:7f:32:2a:cc:5a:3c:af:8a:ac:b2:9d:
e1:5d:7b:50:ef:1c:15:81:39:cb:43:4a:af:1d:f2:2e:17:9b:
45:d1:d1:94:c2:30:b3:17:c9:29:6e:78:43:15:82:fc:c4:2c:
5f:ea:70:f4:9f:35:79:4c:58:8d:25:6a:52:e1:fd:71:11:a4:
20:c5:48:6d:e3:fa:29:ae:4a:fa:45:6a:00:25:05:e2:cc:7a:
ac:78:88:21:17:4a:23:b3:43:7e:0b:18:2d:11:5f:a7:bf:b6:
17:ee:f7:4d:a9:9e:f6:46:23:58:35:d5:43:5a:de:06:7c:20:
5d:18:47:06:fa:48:de:53:1e:d7:fa:49:97:cd:be:81:65:52:
2e:6a:a5:18:c9:16:f9:b0:38:55:4a:4d:15:53:bb:55:0a:55:
8d:16:3c:e3:33:e3:21:fe:06:51:c6:65:ee:ec:69:98:9d:ac:
19:d9:d0:44:ed:cd:bd:78:b1:8a:d9:b7:3f:37:6c:91:e0:73:
f7:50:1a:6b:07:eb:3b:fe:83:4f:51:cf:0a:f5:39:33:26:19:
fc:83:20:15
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIURNuYA+lPjfCet0Fd455F7ar8MdEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC
MUNFMDMyNTAeFw0yMjA4MTYwNDQzNTVaFw0yMzA4MTUwNDQ4NTVaMDMxMTAvBgNV
BAMTKDFCMUE3NTIwRUVGRkRCNTA4Nzk3RTExQ0FBODUxQUQ4NUY3OEQ5M0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiXtRz+ocCZw7T+zfMmo+yx32j
u08U4VIvmk1ZWOW8YdIsuZ6HmGUjbcLUvkJ+PcRBCbYor8nlMWyPAvp66qMKkt2p
+o08y4PSqd90gbRYDUyE0yAPXKgVkvVGVh8wvdQo6EEXkE5eLheSBnp23rePMcK9
PfmNuqmG2li8FZkLXhchYiU7iGHQpiCgWbcXRl1MhksTJzfUD7vLDES9NA1Tz9JX
PmdC3q00hWsFck32f1qXuq/3cljmg9ekSjrvCHu0M93/s0RB7FI60+442SiWdEd1
nHDzXSBmd/XL9mjcbhnJLGZGkiGK87mKLllsMSclmB0p1C+zfjHSfbUffRsbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUGxp1IO7/21CHl+EcqoUa2F942TwwHwYDVR0j
BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG
Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF
MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i
OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzQyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByqn+MA0GCSqG
SIb3DQEBCwUAA4IBAQBZQMD/YjS+rCoKv/CYZ5b/gy7w3X8dwZdzHvC8cDnQJl1J
Dwl3+Pj4Z0UBfzIqzFo8r4qssp3hXXtQ7xwVgTnLQ0qvHfIuF5tF0dGUwjCzF8kp
bnhDFYL8xCxf6nD0nzV5TFiNJWpS4f1xEaQgxUht4/oprkr6RWoAJQXizHqseIgh
F0ojs0N+CxgtEV+nv7YX7vdNqZ72RiNYNdVDWt4GfCBdGEcG+kjeUx7X+kmXzb6B
ZVIuaqUYyRb5sDhVSk0VU7tVClWNFjzjM+Mh/gZRxmXu7GmYnawZ2dBE7c29eLGK
2bc/N2yR4HP3UBprB+s7/oNPUc8K9TkzJhn8gyAV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org