Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32352e302f32342d3234203d3e203539323835.roa
File: 35392e3135332e32352e302f32342d3234203d3e203539323835.roa (raw, json)
Hash identifier: L9kXW37bnGgEUs2tajTTzsb/MWCmeATRrTQC4AOj+UA=
Subject key identifier: 76:08:48:A4:DE:EF:6C:A9:AE:86:E5:F5:93:67:BD:2B:76:BA:DA:F8
Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Certificate serial: 502FECE274B5982E3780BE7A191EAB5B3E723F21
Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32352e302f32342d3234203d3e203539323835.roa
Signing time: Wed 05 Apr 2023 18:28:14 +0000
ROA not before: Wed 05 Apr 2023 18:23:14 +0000
ROA not after: Wed 03 Apr 2024 18:28:14 +0000
asID: 59285
IP address blocks: 59.153.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:2f:ec:e2:74:b5:98:2e:37:80:be:7a:19:1e:ab:5b:3e:72:3f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Validity
Not Before: Apr 5 18:23:14 2023 GMT
Not After : Apr 3 18:28:14 2024 GMT
Subject: CN=760848A4DEEF6CA9AE86E5F59367BD2B76BADAF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:26:69:0d:de:8a:e5:32:a6:59:83:9f:94:05:
64:94:40:16:47:2c:98:56:e7:d1:e3:aa:7b:ae:fd:
c5:ae:56:fa:b9:f6:aa:99:d8:ae:9a:2f:b2:6a:e9:
94:45:22:59:71:d1:54:dc:8b:05:aa:9a:be:79:85:
a8:d5:36:07:9d:33:5f:46:23:d2:89:ce:cc:97:32:
9f:df:de:2e:a5:e2:35:f8:31:29:3c:b7:7b:ec:59:
0d:dd:87:45:09:dd:2e:dc:61:1d:60:f3:45:b3:36:
23:fc:bf:9f:97:65:3f:69:e0:d6:84:29:06:92:54:
fd:9e:c7:1d:1c:cf:d1:39:58:c9:76:d2:c3:e2:b4:
8b:73:a3:21:60:80:4f:43:d5:e0:4f:f1:05:fc:e3:
20:3c:c1:4d:67:94:53:77:ba:ec:5f:85:a0:21:0c:
2e:bc:61:49:63:93:c5:db:84:83:eb:bf:47:44:1a:
22:cb:4f:ba:35:71:20:0d:a8:41:b5:a9:b5:44:10:
1f:4a:20:fc:c2:66:2d:c0:d0:64:89:68:6b:f1:8b:
63:15:b6:6a:92:7b:60:ca:b9:f9:53:80:09:0f:1a:
44:62:b6:8c:b1:a8:60:b6:71:4d:5f:e9:d6:00:7b:
d1:18:7c:57:05:07:aa:30:cf:c0:2d:13:29:77:b0:
e4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:08:48:A4:DE:EF:6C:A9:AE:86:E5:F5:93:67:BD:2B:76:BA:DA:F8
X509v3 Authority Key Identifier:
keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32352e302f32342d3234203d3e203539323835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
59.153.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:4c:59:cf:92:3b:b4:4a:9a:c1:b3:ea:91:a6:be:72:bb:7b:
20:54:6e:5c:8a:15:b0:af:17:d7:ce:4e:64:1c:5f:8c:04:55:
e2:d2:31:26:d7:ae:50:90:ec:5c:0a:51:66:43:9f:2a:cd:d7:
6d:15:a2:b2:7e:90:c6:b4:f8:3a:76:8a:8a:67:ca:7c:0b:ad:
25:08:8a:00:0c:a4:16:86:2c:01:31:b9:34:3f:00:12:13:18:
e3:3b:8d:ee:8f:03:ee:fa:d9:d1:09:aa:bc:96:6f:28:e4:65:
78:bf:0d:cb:cf:1e:01:94:71:d7:25:e2:d8:ba:09:d2:e2:95:
81:97:9d:d9:8f:1b:1d:2a:8b:b8:6c:b6:b7:75:6b:b1:40:4d:
78:f9:a1:57:7e:72:11:99:66:67:00:1c:81:d9:07:31:f9:67:
b5:df:b4:8f:d0:b3:1c:59:58:0a:e3:f3:a4:07:2e:ab:b2:3d:
64:50:5d:b9:e1:c9:50:ed:e9:29:64:93:94:00:4f:11:e6:09:
cf:6d:e7:e7:95:67:19:cd:f3:84:b2:03:16:91:a3:56:c9:b1:
4f:16:d7:cc:99:9c:3d:2c:85:e6:5e:4c:2e:8b:58:6e:d0:b1:
32:e9:b9:ae:ef:3f:b7:0e:f3:98:5d:aa:9c:c1:8e:ff:fc:32:
ce:41:d9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org