Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39312e302f32342d3234203d3e203338373733.roa
File: 3131342e3134312e39312e302f32342d3234203d3e203338373733.roa (raw, json)
Hash identifier: 7Pf/Hp5/x99Z3H6O48AD3V5Kx/49Fj0GKBqyWoVfNRE=
Subject key identifier: 03:6B:5A:5E:87:31:56:71:4B:46:7B:1C:FF:CA:C2:47:70:D2:50:49
Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Certificate serial: 7A58E71DD22D42FFD09CD381743EE42E44E32264
Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39312e302f32342d3234203d3e203338373733.roa
Signing time: Tue 21 Mar 2023 01:55:59 +0000
ROA not before: Tue 21 Mar 2023 01:50:59 +0000
ROA not after: Tue 19 Mar 2024 01:55:59 +0000
asID: 38773
IP address blocks: 114.141.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:58:e7:1d:d2:2d:42:ff:d0:9c:d3:81:74:3e:e4:2e:44:e3:22:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F
Validity
Not Before: Mar 21 01:50:59 2023 GMT
Not After : Mar 19 01:55:59 2024 GMT
Subject: CN=036B5A5E873156714B467B1CFFCAC24770D25049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b3:1c:e0:ac:d5:ea:3a:70:95:09:46:ab:eb:
c0:bc:c8:3d:b0:e0:c7:32:03:85:a0:f2:16:cf:0c:
e0:75:c8:5f:21:ce:9c:33:bd:a7:94:c0:49:cc:e5:
64:53:a1:fd:07:dd:82:50:ce:0e:ae:bb:a7:d4:70:
7c:6c:14:43:e4:e0:80:45:3e:3f:8a:26:25:fd:ac:
a2:39:6a:60:38:73:19:ee:76:7e:a6:7f:05:3f:3a:
fb:4b:c2:09:b4:e2:1c:5c:05:e5:4b:06:c1:19:20:
2f:ca:b9:6f:08:6c:b8:b2:90:51:30:0e:a2:ec:9f:
63:c7:b9:83:8d:27:02:cd:01:cc:03:78:ca:17:4a:
75:15:96:85:d8:9a:9e:cf:93:b6:e8:4c:18:64:26:
64:e5:0c:9f:88:29:5c:33:d0:57:f7:b0:f2:9e:db:
c4:7c:8e:15:83:a8:de:1c:55:38:fe:1f:28:18:e9:
94:b3:75:4c:53:64:e7:e4:f8:c7:0c:50:f5:10:08:
3d:9a:2f:17:8e:4f:10:b4:14:89:bb:01:71:ea:66:
59:bf:32:3d:14:52:a1:36:03:4a:10:e1:fe:51:3c:
2b:84:39:29:61:f2:70:d3:1c:d7:85:2c:5d:a6:e3:
3b:c5:d4:0d:ce:1e:80:ba:81:18:39:79:9d:0f:88:
60:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6B:5A:5E:87:31:56:71:4B:46:7B:1C:FF:CA:C2:47:70:D2:50:49
X509v3 Authority Key Identifier:
keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/3131342e3134312e39312e302f32342d3234203d3e203338373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.141.91.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e1:cc:31:45:06:16:7c:d1:45:55:b4:4e:75:fa:82:d6:ac:
a7:26:1d:48:bd:4b:0c:f3:31:f0:d2:63:c5:22:32:bf:94:5c:
e7:95:44:63:04:03:4b:df:11:bb:c2:89:83:cc:54:a2:c5:f3:
a8:0d:1a:70:11:5a:95:90:42:61:89:c1:e2:e3:11:bf:a9:b1:
5e:e3:dc:d4:ce:0f:16:b0:24:4e:c0:cc:9a:64:bb:39:26:71:
4f:12:b7:77:67:82:95:ee:85:6b:f8:9f:b9:e1:7f:ba:37:12:
f6:0e:29:28:65:c1:2a:ae:f8:bd:4f:da:c8:66:08:7b:c9:23:
60:2f:d8:47:d5:d8:9d:ef:b1:8d:71:8e:df:1d:eb:7b:dc:0b:
2f:a0:d2:1a:a6:12:3d:16:91:a3:18:46:df:5e:c3:85:d0:7c:
00:e6:77:d4:62:30:d6:db:03:0c:43:51:ff:f4:77:6c:25:48:
db:d7:89:88:e7:3f:04:33:12:70:a8:42:ab:9b:1d:3b:ee:a7:
b5:a5:2c:54:b3:bc:c1:1d:ef:3d:b9:fd:d4:2e:bd:5d:9b:55:
1a:67:fb:85:e0:b2:75:c9:79:c1:70:95:3e:48:87:14:2a:f0:
82:4b:35:00:e7:d0:34:79:73:75:ea:67:7e:7e:b4:b7:4c:c9:
6b:2b:57:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org