Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e302e302f31382d3234203d3e2039333430.roa
File: 3230322e3135392e302e302f31382d3234203d3e2039333430.roa (raw, json)
Hash identifier: ueajHcC2M3R7ofgaiVNVafR+hpB8er4cEK3aCS+otGk=
Subject key identifier: 43:F3:C8:8D:AD:2D:4C:FA:0F:1B:5F:FA:82:5E:B2:D4:BA:D9:88:2E
Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308
Certificate serial: 7D6FA31530E24A608E1011F0A3B5719C76435E3C
Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e302e302f31382d3234203d3e2039333430.roa
Signing time: Fri 10 Mar 2023 03:39:04 +0000
ROA not before: Fri 10 Mar 2023 03:34:04 +0000
ROA not after: Fri 08 Mar 2024 03:39:04 +0000
asID: 9340
IP address blocks: 202.159.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:6f:a3:15:30:e2:4a:60:8e:10:11:f0:a3:b5:71:9c:76:43:5e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308
Validity
Not Before: Mar 10 03:34:04 2023 GMT
Not After : Mar 8 03:39:04 2024 GMT
Subject: CN=43F3C88DAD2D4CFA0F1B5FFA825EB2D4BAD9882E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d6:dc:ef:76:35:33:f1:17:48:42:94:68:66:
04:ab:d0:c7:7a:c9:49:69:be:e7:78:ac:f4:76:08:
32:5d:b0:56:df:c7:10:91:df:08:c4:a2:06:67:14:
43:38:52:26:c5:51:e9:80:82:6a:ea:f1:36:c2:59:
fb:37:b5:89:07:4e:76:75:aa:65:c2:f7:b0:3b:d4:
d8:01:03:ce:3c:40:cd:35:aa:b2:c4:7c:87:19:b1:
ea:78:ae:25:bf:fd:1b:79:91:14:3e:b8:9c:69:b3:
6a:43:be:9c:ef:cc:ab:6b:d3:57:c3:ed:8f:da:3d:
d3:20:53:f6:c8:8b:81:a1:10:ab:92:6f:e9:ac:cc:
7f:0d:ce:49:c6:c5:3d:87:b6:c5:f6:31:50:37:52:
53:67:15:97:44:04:38:ff:b0:de:9a:b9:7e:c5:63:
c6:6c:c4:01:3f:24:64:7e:8f:7c:cb:85:8a:c7:f3:
12:fe:8d:68:78:cb:5e:ba:b0:c1:da:4f:b2:ba:c1:
65:87:6b:b1:68:82:7c:55:e0:0e:cf:41:cc:c5:67:
e3:b8:5a:6f:37:56:5c:d1:04:2a:47:7e:3f:73:b4:
88:3f:61:4b:64:7a:85:2f:8d:34:07:3c:b2:86:a2:
64:58:42:98:01:c1:fe:74:48:30:ec:75:a9:cb:bc:
be:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F3:C8:8D:AD:2D:4C:FA:0F:1B:5F:FA:82:5E:B2:D4:BA:D9:88:2E
X509v3 Authority Key Identifier:
keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e302e302f31382d3234203d3e2039333430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.159.0.0/18
Signature Algorithm: sha256WithRSAEncryption
99:3b:4e:e8:bd:99:85:9c:b4:97:3e:95:4d:9c:76:f3:20:cd:
03:3f:c1:13:bd:1e:fb:7a:14:8a:6e:c9:ac:5e:2c:d4:b1:3a:
02:f6:54:ee:aa:31:49:ea:b7:9c:63:a2:54:d2:aa:78:07:c7:
c8:1a:a2:61:9f:4e:78:c4:ad:4e:86:b6:5f:61:49:c4:9c:4f:
67:ba:02:02:44:56:17:52:82:9f:21:8a:60:be:07:39:eb:5b:
ed:4a:ae:3e:ad:df:54:d4:f6:6c:c6:da:74:49:0a:da:54:e8:
b5:ad:64:1d:75:7d:a6:33:ae:51:d8:01:bc:19:dd:93:61:73:
7c:a0:02:f6:47:59:33:c0:cf:87:66:30:0c:f4:7e:6a:2c:35:
0a:c2:86:ba:c0:f7:35:a8:b8:e0:50:b7:f2:46:17:d6:0f:b8:
52:80:8c:78:40:58:24:03:de:bd:e9:96:3f:e5:bd:cb:34:16:
b4:32:99:96:d6:1c:a7:b9:ca:52:09:ec:63:4e:61:0e:b8:92:
6b:be:05:4c:6b:15:be:45:b6:4a:a1:38:cf:d2:7c:3c:1c:a6:
c7:be:b5:d7:82:12:6d:6c:b4:99:70:aa:83:89:99:fe:67:96:
ba:d9:eb:e7:ba:3e:7f:0d:74:f5:c7:30:76:98:5b:3d:52:61:
ba:33:08:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org