Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232372e302f32342d3234203d3e203633343933.roa
File: 34332e3234302e3232372e302f32342d3234203d3e203633343933.roa (raw, json)
Hash identifier: AHWMeSCZfbSoSy7UDz8Hj/GVYMCckZMHDC10qPBSCiw=
Subject key identifier: A7:0E:AC:77:CC:0D:F6:F1:D9:B2:E8:77:56:F3:26:B9:65:58:58:2A
Certificate issuer: /CN=194F6EF659F1115C068AB59065D57F150E23F5B6
Certificate serial: 5AFDA2274C417F75285245B1075CB4174D063AA7
Authority key identifier: 19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232372e302f32342d3234203d3e203633343933.roa
Signing time: Mon 19 Dec 2022 03:41:14 +0000
ROA not before: Mon 19 Dec 2022 03:36:14 +0000
ROA not after: Mon 18 Dec 2023 03:41:14 +0000
asID: 63493
IP address blocks: 43.240.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:fd:a2:27:4c:41:7f:75:28:52:45:b1:07:5c:b4:17:4d:06:3a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=194F6EF659F1115C068AB59065D57F150E23F5B6
Validity
Not Before: Dec 19 03:36:14 2022 GMT
Not After : Dec 18 03:41:14 2023 GMT
Subject: CN=A70EAC77CC0DF6F1D9B2E87756F326B96558582A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:ca:19:c3:14:33:f8:72:6b:5c:81:83:81:
50:52:ea:4c:1a:55:d6:a2:dd:36:53:84:f7:30:ae:
f4:d2:2b:89:d1:5f:40:da:18:ad:0c:a4:48:87:09:
40:d5:34:36:4f:ec:91:19:c7:7a:a8:93:78:26:94:
94:32:0d:1c:fb:e6:5a:c5:c1:0f:2b:bd:97:f3:c8:
46:2f:bd:95:7b:4e:3a:73:b6:06:2e:e9:6f:fd:69:
21:b0:a6:ba:99:54:b2:e4:f8:06:16:72:6e:4a:21:
28:99:b5:16:c4:77:f5:cb:c2:2c:43:24:4d:05:ca:
4c:7f:3b:ed:54:6b:d0:34:4f:4d:f1:7c:41:7b:a1:
97:29:33:8a:2a:37:a1:03:ef:f6:49:f3:23:0c:89:
f8:6a:a8:a6:a7:fa:1c:4d:f7:66:a6:97:f5:20:ae:
00:d3:f9:72:c0:f6:25:93:a2:85:96:4d:cc:b3:d6:
74:55:70:4f:2f:89:8f:cb:6b:77:d9:56:bd:69:a0:
fc:3c:9d:c8:4f:16:d1:58:40:40:10:35:11:97:7f:
94:88:66:fb:99:de:75:27:bd:86:b5:fc:ca:ac:4d:
20:24:b6:ef:0d:01:2f:a9:b3:22:d0:e8:e9:7e:f2:
59:9d:85:74:f8:78:13:43:ca:7a:0c:f4:3f:92:14:
8a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0E:AC:77:CC:0D:F6:F1:D9:B2:E8:77:56:F3:26:B9:65:58:58:2A
X509v3 Authority Key Identifier:
keyid:19:4F:6E:F6:59:F1:11:5C:06:8A:B5:90:65:D5:7F:15:0E:23:F5:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/194F6EF659F1115C068AB59065D57F150E23F5B6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/194F6EF659F1115C068AB59065D57F150E23F5B6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cfabec71-7ecb-4dbd-a421-99b9cd20903a/0/34332e3234302e3232372e302f32342d3234203d3e203633343933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.240.227.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:69:4c:b5:c4:64:ae:81:66:13:2d:8a:08:b8:09:74:57:19:
96:4a:56:f4:d8:2c:92:7f:dc:f1:a2:f0:b6:36:31:b4:93:42:
b6:b0:ef:88:60:44:b8:fc:93:d9:22:3b:9d:2f:68:de:86:d3:
d4:41:50:9a:b2:3d:2d:f7:73:5a:83:3a:10:39:75:49:88:23:
bf:f6:09:c3:56:d6:04:35:88:8b:91:e8:75:03:28:cb:1b:b2:
6e:c3:80:2e:8c:4e:3b:95:71:52:34:a5:59:ee:59:4b:60:04:
26:24:18:5b:4c:07:e3:9b:b8:3a:41:8c:40:53:a9:39:5d:f4:
5d:65:5e:1b:ff:6f:b2:b1:18:bd:6d:12:81:7c:ce:ee:f7:a8:
80:85:d3:42:34:56:39:b4:72:d2:05:f7:50:5b:ee:9d:9c:38:
af:65:76:75:81:91:d8:a9:55:61:ef:1e:ed:31:00:d5:86:02:
cc:50:23:aa:3b:d9:24:01:e6:70:0d:ea:d7:21:53:4e:7a:d1:
95:89:ba:17:ce:0b:74:05:62:04:8b:48:00:87:30:83:2d:52:
7c:49:0a:94:f5:87:53:28:3c:68:7f:86:07:6c:c8:e9:26:ac:
89:c4:40:06:73:88:0d:b7:b2:a7:5d:3d:90:3d:fb:16:89:9d:
a0:cf:81:d8
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUWv2iJ0xBf3UoUkWxB1y0F00GOqcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUw
RTIzRjVCNjAeFw0yMjEyMTkwMzM2MTRaFw0yMzEyMTgwMzQxMTRaMDMxMTAvBgNV
BAMTKEE3MEVBQzc3Q0MwREY2RjFEOUIyRTg3NzU2RjMyNkI5NjU1ODU4MkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9n8oZwxQz+HJrXIGDgVBS6kwa
Vdai3TZThPcwrvTSK4nRX0DaGK0MpEiHCUDVNDZP7JEZx3qok3gmlJQyDRz75lrF
wQ8rvZfzyEYvvZV7TjpztgYu6W/9aSGwprqZVLLk+AYWcm5KISiZtRbEd/XLwixD
JE0Fykx/O+1Ua9A0T03xfEF7oZcpM4oqN6ED7/ZJ8yMMifhqqKan+hxN92aml/Ug
rgDT+XLA9iWTooWWTcyz1nRVcE8viY/La3fZVr1poPw8nchPFtFYQEAQNRGXf5SI
ZvuZ3nUnvYa1/MqsTSAktu8NAS+psyLQ6Ol+8lmdhXT4eBNDynoM9D+SFIqvAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUpw6sd8wN9vHZsuh3VvMmuWVYWCowHwYDVR0j
BBgwFoAUGU9u9lnxEVwGirWQZdV/FQ4j9bYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
ZmFiZWM3MS03ZWNiLTRkYmQtYTQyMS05OWI5Y2QyMDkwM2EvMC8xOTRGNkVGNjU5
RjExMTVDMDY4QUI1OTA2NUQ1N0YxNTBFMjNGNUI2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTk0RjZFRjY1OUYxMTE1QzA2OEFCNTkwNjVENTdGMTUwRTIz
RjVCNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmYWJlYzcxLTdlY2ItNGRiZC1h
NDIxLTk5YjljZDIwOTAzYS8wLzM0MzMyZTMyMzQzMDJlMzIzMjM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw4zANBgkqhkiG
9w0BAQsFAAOCAQEAuGlMtcRkroFmEy2KCLgJdFcZlkpW9Ngskn/c8aLwtjYxtJNC
trDviGBEuPyT2SI7nS9o3obT1EFQmrI9LfdzWoM6EDl1SYgjv/YJw1bWBDWIi5Ho
dQMoyxuybsOALoxOO5VxUjSlWe5ZS2AEJiQYW0wH45u4OkGMQFOpOV30XWVeG/9v
srEYvW0SgXzO7veogIXTQjRWObRy0gX3UFvunZw4r2V2dYGR2KlVYe8e7TEA1YYC
zFAjqjvZJAHmcA3q1yFTTnrRlYm6F84LdAViBItIAIcwgy1SfEkKlPWHUyg8aH+G
B2zI6SasicRABnOIDbeyp109kD37FomdoM+B2A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org