Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32332d3234203d3e20313337333633.roa
File: 3230322e31302e35302e302f32332d3234203d3e20313337333633.roa (raw, json)
Hash identifier: /U5bmGiqV97Bp8eIlbJTpZV6gUDvuE7t+8LDb+tOnbs=
Subject key identifier: DA:80:67:85:69:22:63:7B:E2:E6:DC:53:8A:A6:F9:53:11:C2:BE:45
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 1DAEAC730400399563C4032D05CAE399F3B9D661
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32332d3234203d3e20313337333633.roa
Signing time: Wed 17 May 2023 09:35:40 +0000
ROA not before: Wed 17 May 2023 09:30:40 +0000
ROA not after: Wed 15 May 2024 09:35:40 +0000
asID: 137363
IP address blocks: 202.10.50.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:ae:ac:73:04:00:39:95:63:c4:03:2d:05:ca:e3:99:f3:b9:d6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: May 17 09:30:40 2023 GMT
Not After : May 15 09:35:40 2024 GMT
Subject: CN=DA8067856922637BE2E6DC538AA6F95311C2BE45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7e:97:34:ea:d0:3b:34:5d:49:7c:40:fe:d3:
b0:c2:92:6d:53:86:e9:67:ce:6f:30:6d:10:e7:65:
72:70:b9:c8:26:d3:c7:57:ed:34:03:02:c6:29:92:
c8:44:1e:7f:de:1a:45:af:51:fb:51:1f:2a:fb:23:
10:8d:26:fd:e7:b0:27:9b:07:bd:0a:3f:ed:eb:73:
ff:f0:90:73:b2:2a:79:eb:08:6a:a5:25:29:3e:23:
96:72:5d:85:67:46:68:0b:4b:9c:c3:2d:2d:f9:a5:
ed:91:56:25:20:28:0e:4d:54:b8:05:43:01:b8:03:
18:27:80:45:6a:c2:aa:d2:aa:25:8a:f7:bf:69:d5:
82:b5:47:3e:e9:1c:84:e1:c3:7c:9c:17:07:2e:38:
24:f9:53:c1:6b:6b:f3:ef:33:9d:0e:1e:1f:44:1d:
52:86:36:29:58:33:aa:70:3d:60:76:f7:04:8e:cc:
9d:d7:e0:3d:bd:00:59:a8:d1:f3:ea:9c:35:eb:b1:
e5:3e:fc:d9:c1:10:5a:55:7d:e3:ef:04:5a:99:0c:
b0:f0:f2:fb:52:57:07:a2:6c:c5:df:fd:ba:73:1d:
cf:cf:e1:5a:61:85:18:d9:37:fe:c5:9c:77:89:2b:
f3:5d:1b:6c:86:6b:1b:cc:d1:0f:1a:25:54:b7:9e:
ea:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:80:67:85:69:22:63:7B:E2:E6:DC:53:8A:A6:F9:53:11:C2:BE:45
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32332d3234203d3e20313337333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.50.0/23
Signature Algorithm: sha256WithRSAEncryption
94:eb:d3:e2:c7:97:79:6a:11:88:b7:56:59:8f:3d:eb:9c:b1:
2b:1b:df:68:0a:fd:d6:53:29:33:c5:45:38:da:92:7b:da:45:
3a:28:c6:cc:a8:91:a9:8b:dc:23:ed:00:66:0a:62:ce:95:6f:
e7:0b:9d:e5:29:59:a1:0a:ae:4c:41:6f:c0:e4:e6:85:6c:06:
2b:6b:23:46:a7:2d:3f:d4:86:c2:e7:58:43:d4:90:d7:dc:57:
6b:73:f4:b9:8e:04:02:84:0e:c3:32:2d:39:76:29:22:c3:c3:
77:82:d9:22:ce:89:16:6e:e5:ed:f7:b5:27:ea:c1:4b:e3:6e:
61:fc:7e:f4:6b:00:f1:3a:54:e6:00:03:57:ad:e9:61:e8:2a:
b1:d8:29:ed:17:e1:52:3e:9d:21:8b:34:16:89:fa:d5:07:21:
15:bc:ad:c4:2c:fe:03:15:21:44:33:ab:c6:56:15:d6:af:8a:
cf:de:e2:52:17:ee:56:45:01:64:aa:ef:17:d6:90:41:72:61:
7d:ff:b7:36:e5:cb:31:75:5e:10:2c:d6:19:56:9d:73:f4:ef:
d1:87:65:6d:dc:d6:f6:f7:68:25:b1:04:b1:24:75:d7:c2:88:
ef:e2:dc:d8:b4:56:d2:16:74:91:cc:56:7a:94:15:d2:10:5b:
ac:90:51:e8
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUHa6scwQAOZVjxAMtBcrjmfO51mEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy
NDk5M0NBMzAeFw0yMzA1MTcwOTMwNDBaFw0yNDA1MTUwOTM1NDBaMDMxMTAvBgNV
BAMTKERBODA2Nzg1NjkyMjYzN0JFMkU2REM1MzhBQTZGOTUzMTFDMkJFNDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+fpc06tA7NF1JfED+07DCkm1T
hulnzm8wbRDnZXJwucgm08dX7TQDAsYpkshEHn/eGkWvUftRHyr7IxCNJv3nsCeb
B70KP+3rc//wkHOyKnnrCGqlJSk+I5ZyXYVnRmgLS5zDLS35pe2RViUgKA5NVLgF
QwG4AxgngEVqwqrSqiWK979p1YK1Rz7pHIThw3ycFwcuOCT5U8Fra/PvM50OHh9E
HVKGNilYM6pwPWB29wSOzJ3X4D29AFmo0fPqnDXrseU+/NnBEFpVfePvBFqZDLDw
8vtSVweibMXf/bpzHc/P4VphhRjZN/7FnHeJK/NdG2yGaxvM0Q8aJVS3nup/AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU2oBnhWkiY3vi5txTiqb5UxHCvkUwHwYDVR0j
BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2
RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5
M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04
MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMDJlMzAyZjMyMzMy
ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcoKMjANBgkqhkiG
9w0BAQsFAAOCAQEAlOvT4seXeWoRiLdWWY8965yxKxvfaAr91lMpM8VFONqSe9pF
OijGzKiRqYvcI+0AZgpizpVv5wud5SlZoQquTEFvwOTmhWwGK2sjRqctP9SGwudY
Q9SQ19xXa3P0uY4EAoQOwzItOXYpIsPDd4LZIs6JFm7l7fe1J+rBS+NuYfx+9GsA
8TpU5gADV63pYegqsdgp7RfhUj6dIYs0Fon61QchFbytxCz+AxUhRDOrxlYV1q+K
z97iUhfuVkUBZKrvF9aQQXJhff+3NuXLMXVeECzWGVadc/Tv0YdlbdzW9vdoJbEE
sSR118KI7+Lc2LRW0hZ0kcxWepQV0hBbrJBR6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org