Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138362e302f32342d3234203d3e203338343936.roa
File: 3230322e38372e3138362e302f32342d3234203d3e203338343936.roa (raw, json)
Hash identifier: WOMtl9J7D37RIoJ4XCFzVrqqIOPDAn5Nv1YLd3b/7ic=
Subject key identifier: 65:CF:34:F8:FD:D5:8B:B6:6A:20:1A:19:48:55:D8:0E:D7:B0:32:8C
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 61E5FDE5CE24208E7B449B900B5CA0F0EDEDAF82
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138362e302f32342d3234203d3e203338343936.roa
Signing time: Sat 06 May 2023 05:00:02 +0000
ROA not before: Sat 06 May 2023 04:55:02 +0000
ROA not after: Sat 04 May 2024 05:00:02 +0000
asID: 38496
IP address blocks: 202.87.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:e5:fd:e5:ce:24:20:8e:7b:44:9b:90:0b:5c:a0:f0:ed:ed:af:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: May 6 04:55:02 2023 GMT
Not After : May 4 05:00:02 2024 GMT
Subject: CN=65CF34F8FDD58BB66A201A194855D80ED7B0328C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c7:c0:86:94:40:20:e1:d7:78:88:fd:f9:50:
f9:eb:f0:e7:f2:ef:f4:7a:ff:15:87:d9:66:96:31:
4b:0b:a4:2e:a5:57:f1:e6:35:ad:df:62:74:a0:c8:
8b:a9:97:e5:17:ec:f3:d2:da:05:90:99:b0:ad:31:
97:f4:dc:3b:ea:06:5f:af:3b:62:a4:16:be:e1:58:
de:68:19:cf:09:1c:02:b3:19:5f:23:81:39:21:5f:
27:39:97:43:38:08:54:57:23:57:cd:ca:da:7c:da:
81:f2:b9:f5:6a:cc:dc:8a:6e:88:f2:44:28:20:ac:
ff:0e:75:2a:95:70:bc:4b:c4:a7:bd:21:b4:63:17:
de:2a:79:98:85:d5:31:7d:17:25:e1:61:de:7f:28:
e7:29:44:fc:bd:04:e5:99:65:57:12:82:a3:9f:8b:
d4:c9:92:95:26:ba:d7:79:0e:e0:1f:be:14:67:e4:
79:72:3f:77:72:dc:1f:58:50:1c:88:4d:13:6a:0b:
31:34:0e:a4:4c:f8:1a:ae:a2:1b:21:1a:5e:48:b5:
fe:67:43:ec:82:f8:66:fc:cf:38:d4:88:6b:e0:22:
63:96:66:21:8b:e5:35:28:a2:98:ad:09:14:ac:55:
34:ac:1e:00:22:ea:2e:21:21:c6:15:47:7b:33:bf:
b0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CF:34:F8:FD:D5:8B:B6:6A:20:1A:19:48:55:D8:0E:D7:B0:32:8C
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138362e302f32342d3234203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.87.186.0/24
Signature Algorithm: sha256WithRSAEncryption
31:67:79:d4:0e:da:0f:84:43:3a:78:21:ee:b9:70:48:32:22:
63:a8:0d:5e:d9:61:4f:2c:24:b3:dc:d7:e2:b7:15:d8:7a:d9:
a2:c1:5d:6a:fb:92:a1:89:13:63:0f:cd:82:c7:61:3f:02:99:
03:2e:fa:f7:7d:5d:af:20:b0:01:61:1e:2b:d1:97:c3:e2:2b:
14:5a:fa:2c:24:24:e6:a2:37:e1:7e:c5:8e:86:27:02:a8:cc:
b1:69:23:d9:e8:8e:3e:02:3f:c8:83:78:3b:f7:2f:62:0a:bf:
1e:45:64:ed:f7:e6:f3:20:a6:22:45:00:4e:15:55:9b:24:e8:
85:ed:41:23:78:3e:17:73:3c:40:b6:ac:58:85:f0:75:41:8e:
46:0f:aa:b1:32:f1:c4:53:20:c7:c5:fb:84:ef:ef:ae:38:7c:
08:a6:00:29:b6:4e:b1:67:46:91:39:3e:e6:8a:d6:61:ed:85:
c8:e7:6d:2e:f2:a8:86:83:27:63:0b:c6:50:af:59:82:e9:9f:
56:47:8b:07:81:64:58:53:51:a6:3c:87:be:17:df:a5:ec:14:
9c:28:c0:fe:29:ee:48:31:c2:05:38:f8:c8:c0:a7:5e:ba:99:
b9:62:da:60:a1:e0:70:15:f4:29:1c:fc:80:c9:68:ee:b0:b7:
67:ff:68:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org