Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32342d3234203d3e203539323835.roa
File: 35392e3135332e32342e302f32342d3234203d3e203539323835.roa (raw, json)
Hash identifier: +L4F9kFmPcsqm8rWUnFSmTWYvC+7htE9f7AodVXo8hE=
Subject key identifier: 4E:3C:10:11:8E:9D:83:9B:D7:05:00:7F:DC:2B:0D:06:C7:26:CE:A2
Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Certificate serial: 4E03EA8E96259873DA241202F92A387CB5CC3159
Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32342d3234203d3e203539323835.roa
Signing time: Wed 05 Apr 2023 18:27:54 +0000
ROA not before: Wed 05 Apr 2023 18:22:54 +0000
ROA not after: Wed 03 Apr 2024 18:27:54 +0000
asID: 59285
IP address blocks: 59.153.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:03:ea:8e:96:25:98:73:da:24:12:02:f9:2a:38:7c:b5:cc:31:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Validity
Not Before: Apr 5 18:22:54 2023 GMT
Not After : Apr 3 18:27:54 2024 GMT
Subject: CN=4E3C10118E9D839BD705007FDC2B0D06C726CEA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:d9:78:e7:79:6a:2b:2a:6d:37:b7:00:7d:
a4:62:79:4d:bd:1a:d0:b4:3c:36:d9:3a:d2:9f:da:
83:a2:b3:c3:bd:18:19:e0:a7:f2:09:cc:0e:0b:65:
85:e2:41:49:c8:11:bf:be:14:45:3b:11:8b:c8:84:
29:b5:b7:4a:1e:73:ab:73:b1:98:53:28:ff:db:17:
b8:21:67:93:53:cb:56:fc:ca:b8:54:44:a0:62:3b:
c8:32:ec:39:00:fc:2e:26:55:5d:5d:1a:8c:49:b3:
89:3d:de:94:6c:8a:1c:cb:b3:9b:de:50:da:3c:4f:
87:37:a3:b9:4f:89:a0:67:65:d9:0e:a7:b1:c2:d2:
4b:5a:51:9a:c1:0e:9d:81:5b:f8:17:ae:a6:a0:0f:
61:30:82:44:43:38:dd:55:27:df:54:17:69:43:07:
d9:97:76:93:fc:ce:33:37:54:6d:3b:bc:ed:90:d2:
be:40:4d:2c:b5:96:36:be:99:46:51:ed:13:21:35:
82:a8:ce:95:e9:41:73:ca:25:68:5c:54:19:0d:7e:
74:d9:79:f1:67:c0:1f:2c:85:bb:9a:3c:3b:c9:dc:
96:e4:be:a7:cf:e0:d9:e6:59:a2:06:16:72:82:01:
cc:4b:47:d6:35:24:96:e4:1b:1b:96:8d:0c:1f:10:
c1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3C:10:11:8E:9D:83:9B:D7:05:00:7F:DC:2B:0D:06:C7:26:CE:A2
X509v3 Authority Key Identifier:
keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32342d3234203d3e203539323835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
59.153.24.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b4:7c:a2:52:05:88:25:24:96:12:6f:3c:1b:c3:75:6a:c6:
64:b7:79:ff:cf:15:34:b6:f0:6f:19:f2:d0:c3:ae:a9:e4:d6:
f5:24:e0:19:9d:19:c0:47:8b:33:12:2a:1c:50:95:32:ae:70:
e2:78:cd:2a:e0:71:50:d8:ea:f8:d9:0c:f8:d1:b2:22:7c:e8:
2b:a6:86:45:46:04:3d:47:5c:8e:e9:66:ee:4a:ef:82:23:e2:
54:86:2a:45:07:23:bb:0e:f2:c5:f3:e7:e6:fe:a9:f6:1e:82:
b9:81:76:22:c2:86:48:0c:f2:43:2a:80:88:fd:30:21:02:4e:
f4:13:6d:33:0a:0e:38:2d:18:c0:7c:0e:0d:94:02:bd:c2:d7:
3c:e4:5c:56:5b:c9:05:9d:a6:56:97:83:9d:37:45:1b:1c:4d:
c4:5b:43:bf:b8:90:08:68:72:42:94:58:29:a8:da:9b:da:dc:
67:8a:66:42:e5:9b:9b:e3:58:63:45:8a:03:86:c9:ff:99:7e:
52:c4:1e:a5:4a:69:27:e0:3d:55:19:63:06:3c:0a:34:18:f0:
ce:a0:5a:84:1c:23:c2:ba:78:ce:e3:52:5a:76:98:e3:a8:ba:
cc:0c:35:28:24:16:f2:94:19:69:9c:ba:37:1a:68:97:0f:db:
42:78:1e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org