Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203233363739.roa
File: 3131342e3134312e38382e302f32342d3234203d3e203233363739.roa (raw, json)
Hash identifier: HBp/LSPd3dqWlVMlXr869p4udUnTNG2JBmkREDptN/o=
Subject key identifier: 28:21:BD:F4:FC:AD:07:01:8D:81:E5:BD:B4:6E:D9:C7:D9:E3:AF:A6
Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Certificate serial: 74550D4D8997B41BC82C5BC63BA33DDE436EEBF7
Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203233363739.roa
Signing time: Tue 21 Mar 2023 10:50:33 +0000
ROA not before: Tue 21 Mar 2023 10:45:33 +0000
ROA not after: Tue 19 Mar 2024 10:50:33 +0000
asID: 23679
IP address blocks: 114.141.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:55:0d:4d:89:97:b4:1b:c8:2c:5b:c6:3b:a3:3d:de:43:6e:eb:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Validity
Not Before: Mar 21 10:45:33 2023 GMT
Not After : Mar 19 10:50:33 2024 GMT
Subject: CN=2821BDF4FCAD07018D81E5BDB46ED9C7D9E3AFA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:97:4d:bf:2d:38:00:01:08:9f:b9:cf:28:4e:
3a:be:81:0e:95:79:22:2e:fe:0f:a0:94:04:a4:06:
28:fa:d7:f1:60:74:97:0c:f0:62:bf:d5:dd:41:5e:
f5:a1:51:ff:b0:b6:ec:05:e8:69:da:9d:d1:88:53:
07:e1:7a:28:c2:c2:f0:57:f3:a0:bc:a8:1b:1e:a2:
76:46:a2:5f:9f:26:32:7e:18:6a:2e:81:dc:f5:38:
81:00:5c:13:e4:a7:60:19:57:dd:6e:40:08:c1:e3:
d7:f7:77:53:fa:b0:f2:33:51:7c:99:eb:51:cc:75:
c0:3c:20:e1:b0:bd:ff:b2:fd:36:a5:b4:2d:df:1a:
bd:a6:05:18:e9:d7:76:38:46:68:71:57:80:94:10:
5d:6f:ba:d3:b3:fb:7d:a3:bc:04:f7:d2:a9:b5:56:
c0:00:7d:2a:f1:9e:b8:dd:f7:8c:5c:d7:37:e7:17:
b1:42:7c:44:4a:5b:d9:01:68:77:81:25:c6:91:3e:
ba:ad:1b:f5:d1:50:f3:a0:08:0a:8d:d9:5b:e3:cd:
6b:b5:4b:3e:a8:4a:ed:a7:ec:1e:6c:d7:56:99:b1:
ad:7d:cd:a1:bd:5b:58:e8:ae:03:48:b4:9e:6b:6b:
de:af:c0:2c:94:14:4e:9c:4c:86:62:ce:38:f8:b5:
37:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:21:BD:F4:FC:AD:07:01:8D:81:E5:BD:B4:6E:D9:C7:D9:E3:AF:A6
X509v3 Authority Key Identifier:
keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e38382e302f32342d3234203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.141.88.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d1:2f:3b:ce:78:a1:9d:2f:64:21:82:a6:5b:45:c0:c9:d9:
87:96:dd:5b:38:e5:3e:5c:ce:52:10:d3:ba:d1:33:c3:af:80:
c3:8c:3d:03:c8:e8:da:93:79:e0:c2:7a:09:c4:44:45:d3:51:
42:12:1e:a8:7e:80:89:5d:29:23:8b:54:ac:ee:72:8d:6d:73:
e7:34:73:32:7c:2e:87:65:c9:ea:fe:d0:e7:ae:3c:0f:e6:97:
55:b1:8a:a1:dc:88:e2:95:31:04:b0:47:ca:01:de:ce:5b:d1:
4e:6d:5b:5a:8b:af:89:01:fe:71:65:cb:dd:57:3d:ad:e7:d9:
37:56:0f:51:34:3b:f7:b1:12:10:fc:68:e2:af:a2:1f:67:13:
d7:2b:4a:09:3e:c0:40:68:9d:bb:53:9f:ec:bd:d0:30:eb:d7:
6b:10:50:64:4d:4a:17:bc:58:5b:26:34:d5:ee:90:24:74:d3:
d9:44:14:3e:ad:82:5b:52:29:a7:1e:8e:ed:fc:95:6b:63:3b:
4c:b5:4e:45:b3:b5:ae:d0:b9:c5:68:20:f7:db:ee:1d:05:fa:
2f:10:4f:70:0c:aa:34:91:c9:f4:1a:62:18:f5:74:e5:c5:af:
58:82:be:4e:88:b1:1c:3d:69:4d:b4:ad:09:14:99:aa:87:40:
fc:b4:22:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org