Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e33322e302f32332d3234203d3e20313337333633.roa
File: 3230322e31302e33322e302f32332d3234203d3e20313337333633.roa (raw, json)
Hash identifier: fOibOIAn4d5Iq+U3dsRirB5NqVHw8E05oFomyz5U+bI=
Subject key identifier: 5A:68:0F:38:93:F6:24:D7:AD:8B:B7:2E:CF:45:AD:99:3E:9B:E1:77
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 3A2D67F7CC8A74FF1BF47C77CDDE5BF2C39640F2
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e33322e302f32332d3234203d3e20313337333633.roa
Signing time: Wed 17 May 2023 09:39:03 +0000
ROA not before: Wed 17 May 2023 09:34:03 +0000
ROA not after: Wed 15 May 2024 09:39:03 +0000
asID: 137363
IP address blocks: 202.10.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:2d:67:f7:cc:8a:74:ff:1b:f4:7c:77:cd:de:5b:f2:c3:96:40:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: May 17 09:34:03 2023 GMT
Not After : May 15 09:39:03 2024 GMT
Subject: CN=5A680F3893F624D7AD8BB72ECF45AD993E9BE177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:48:70:c1:e9:af:1c:a1:ac:ab:3d:40:67:16:
55:0b:e9:3c:0e:84:6f:cf:d1:c5:d3:f7:29:de:0b:
24:59:6a:f5:c6:2b:a9:dd:13:09:2f:7b:86:e2:93:
e0:dd:ff:64:8d:c6:a5:61:15:06:2c:49:d1:65:ee:
64:36:63:bf:33:4c:4e:d1:14:c3:98:f2:66:ff:fc:
69:a0:f4:9c:5a:69:00:ff:51:f3:7f:00:e3:50:46:
c7:45:47:cf:72:55:e1:4f:c1:46:47:77:6b:fb:8d:
94:54:1b:95:e8:9a:38:ce:85:91:48:47:82:c9:ff:
ba:29:9e:25:94:d5:a1:4a:a0:7b:f9:ca:d7:46:99:
0d:c1:95:20:3e:2f:3d:c5:dc:87:b8:7c:39:d8:d2:
76:73:35:a8:4c:e7:dc:5d:54:8a:4b:c9:9a:1a:54:
4e:8f:e6:31:bb:c8:7f:c2:1a:fe:66:89:e8:76:62:
76:2e:33:9b:42:0f:fa:7c:e6:7b:5d:ae:a4:0b:40:
44:6d:69:c0:31:c1:86:c0:c7:b7:cb:e6:5b:e0:36:
cf:06:29:f5:98:60:ce:3f:13:d7:16:ba:d5:49:dd:
2c:eb:e2:de:78:bc:6c:a4:28:00:a3:98:d7:f1:1b:
0c:7f:0a:fb:7c:38:aa:ba:11:d9:70:fb:68:51:22:
b6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:68:0F:38:93:F6:24:D7:AD:8B:B7:2E:CF:45:AD:99:3E:9B:E1:77
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e33322e302f32332d3234203d3e20313337333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.32.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:ef:47:30:19:6d:dd:78:7c:9e:28:0f:1d:80:70:85:1c:50:
ff:49:fe:d2:a8:8e:21:ed:7a:5d:93:2f:ed:03:83:80:01:e5:
f4:8a:e8:87:75:ae:04:94:2e:4a:2f:64:92:25:d1:63:d9:ed:
85:12:8e:17:61:d1:b3:3e:7b:03:51:8e:81:97:5c:ba:5b:1c:
80:e3:ab:cd:ec:ea:7e:df:a4:e2:99:54:65:1c:1e:cc:db:c1:
09:e8:dd:4b:fd:c2:74:7e:73:87:39:a2:03:f1:f4:a9:3d:ca:
39:c8:47:26:1e:6a:55:37:1f:00:d3:8a:5f:58:6d:13:1e:7b:
23:a7:5f:91:6c:9a:23:ec:a8:dd:52:7e:aa:bb:37:8a:50:59:
4e:d8:4f:18:8e:bc:c2:de:8d:4c:b6:2d:75:c7:9b:e1:c0:04:
ba:b6:0b:1e:a8:36:8a:5a:e8:ae:82:e7:eb:c9:2b:91:37:2f:
a6:7a:df:90:1a:fb:83:b7:66:e6:df:43:b2:8c:76:62:5a:9a:
59:b7:dd:c2:b5:8a:a7:22:45:29:4d:e5:fc:a1:07:f3:85:0a:
1d:bd:70:65:cb:fe:86:4f:d4:85:66:b1:ec:48:b1:52:02:56:
90:0f:a4:71:3d:d9:e6:d1:83:09:07:9b:f4:3d:1b:e8:4a:5e:
c6:d7:61:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org