![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e36322e302f32342d3234203d3e203435333132.roa
File: 3230322e38312e36322e302f32342d3234203d3e203435333132.roa (raw, json)
Hash identifier: oxtldyCSwhtGBYqKNk8kysKqQpmG9BvkB7v39zIp7MM=
Subject key identifier: 8D:45:74:4B:1E:95:34:8E:A0:E7:3C:3E:6D:E9:3C:F8:C6:83:F2:32
Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Certificate serial: 4835E529321F3A52EB8FD765C26B05A57FE93357
Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e36322e302f32342d3234203d3e203435333132.roa
Signing time: Wed 11 May 2022 11:00:00 +0000
ROA not before: Wed 11 May 2022 10:55:00 +0000
ROA not after: Wed 10 May 2023 11:00:00 +0000
asID: 45312
IP address blocks: 202.81.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:35:e5:29:32:1f:3a:52:eb:8f:d7:65:c2:6b:05:a5:7f:e9:33:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Validity
Not Before: May 11 10:55:00 2022 GMT
Not After : May 10 11:00:00 2023 GMT
Subject: CN=8D45744B1E95348EA0E73C3E6DE93CF8C683F232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:39:01:09:90:40:e1:d3:b1:27:5e:f4:b9:
b5:74:b6:83:ed:50:7d:e3:c6:63:62:fe:8d:23:d0:
4b:e3:f9:a3:c1:04:f7:14:74:72:18:f1:cd:20:29:
ce:ac:f4:f3:b6:f9:bd:81:a9:dd:e2:be:e7:54:0c:
dd:91:65:91:9d:ef:e1:69:32:de:83:bb:b5:e7:06:
ff:25:98:ed:bd:e9:e1:e9:61:cc:57:bf:da:d2:93:
68:e3:6e:29:4c:bd:97:0e:7e:5b:63:78:ee:14:23:
db:cf:26:28:f2:2d:06:c7:7d:e1:c9:66:c5:ed:a4:
c8:22:cb:38:eb:e4:7b:a0:59:19:63:9b:11:e2:d6:
da:74:09:85:1a:83:64:54:48:35:1d:22:2c:6c:72:
20:cd:6f:bc:a8:6f:a1:24:a4:f7:5f:40:84:3e:71:
14:34:d0:e5:c3:67:6c:d5:86:14:94:6e:23:e2:5d:
4f:8a:7d:24:d6:a0:10:73:0b:87:e6:18:a8:bc:30:
4f:41:14:00:fb:6e:06:d9:aa:17:a3:cd:ad:23:e7:
3e:8e:14:32:3a:e8:4e:d3:52:76:59:0a:8c:e4:8a:
fc:66:d4:09:f1:24:54:c7:d2:e6:78:fe:02:2f:36:
b0:9f:7f:99:71:46:b0:73:8f:51:8f:5c:49:21:c9:
9e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:45:74:4B:1E:95:34:8E:A0:E7:3C:3E:6D:E9:3C:F8:C6:83:F2:32
X509v3 Authority Key Identifier:
keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3230322e38312e36322e302f32342d3234203d3e203435333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.81.62.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:8a:bb:89:7b:62:cf:65:46:9b:aa:1b:58:1b:b8:f5:25:57:
65:ca:77:e0:81:8d:7c:da:db:f7:3c:3c:1a:de:35:56:8a:85:
11:1b:bb:b6:7b:40:b9:96:07:0d:44:44:60:53:61:56:f3:5d:
8e:db:da:4f:f2:76:b2:e0:26:6a:7f:5a:26:7b:6a:5e:65:9d:
d9:09:bd:98:50:5a:6e:8f:61:59:13:9f:fc:34:52:5f:77:b4:
b2:39:04:5e:60:24:e8:f7:66:f3:21:96:22:b1:28:76:7c:4f:
de:c2:1d:03:27:16:7c:2b:30:27:8a:74:14:75:ad:f1:c5:bc:
51:9b:96:7f:4b:68:e7:90:2d:4e:b3:d8:c5:84:e5:6d:cf:0b:
ef:26:6d:a6:97:e9:11:a7:07:d7:33:00:7b:cc:16:1e:14:84:
3e:21:ba:1d:2f:bc:e0:37:a8:50:dc:1d:83:57:fa:5c:4d:ab:
05:36:c2:1b:41:77:70:e1:ec:a0:0d:c7:4f:d8:f7:b8:a5:34:
ab:78:4e:db:f8:f9:97:f8:30:80:04:57:a0:06:f7:bf:fc:ce:
68:06:15:6f:09:09:ad:ce:dc:85:6c:eb:7f:94:0f:b2:c7:16:
e4:ab:dd:ea:08:8f:35:ad:9a:79:e0:7c:e0:f2:d4:0e:3e:d4:
f5:f4:65:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org