Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e20313331373336.roa
File: 3131352e3137382e3133332e302f32342d3234203d3e20313331373336.roa (raw, json)
Hash identifier: DiTY7nUzLJL+T2OnJBjvwkxo4gJmGw1B/bxQkdOOw8I=
Subject key identifier: 6B:F0:A8:1D:FB:BC:45:BD:B6:B4:28:6E:20:03:7B:5A:C0:D7:A3:B6
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 088EDBE5BE3CA8870DED7597ED10B4FF164FD05B
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e20313331373336.roa
Signing time: Fri 04 Mar 2022 07:44:06 +0000
ROA not before: Fri 04 Mar 2022 07:39:06 +0000
ROA not after: Sat 04 Mar 2023 07:44:06 +0000
asID: 131736
IP address blocks: 115.178.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:8e:db:e5:be:3c:a8:87:0d:ed:75:97:ed:10:b4:ff:16:4f:d0:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Mar 4 07:39:06 2022 GMT
Not After : Mar 4 07:44:06 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:27:78:df:b3:e8:28:b8:0e:35:ae:59:ef:3a:
b2:16:bf:4c:b9:1e:f1:79:ac:54:94:43:54:9a:7c:
e2:e4:8f:96:1c:72:b4:82:f3:e3:6f:5b:c6:b4:5d:
bb:eb:9a:cf:70:fa:c0:b1:10:81:4f:96:6e:24:4e:
71:f1:8f:68:65:e5:ab:dd:49:86:8d:4b:7d:8f:82:
dd:9a:4a:d5:09:e4:5e:17:e4:57:15:f7:fd:29:17:
b6:55:cc:3e:05:b6:86:b7:d7:b6:a5:84:31:c1:80:
f8:f0:e7:0f:3c:2a:7b:d1:2b:b4:1e:9b:5f:0d:7c:
47:31:0b:13:a6:24:5c:1c:df:71:5a:3c:18:dd:2d:
18:bf:a1:7f:e2:92:fa:bd:37:5e:c2:2b:45:c0:e8:
f4:d8:c1:10:cd:9e:f7:74:79:e1:be:5d:20:43:14:
20:f7:2c:79:b1:43:f7:4f:cb:35:b6:96:7a:28:cc:
9e:cb:cb:94:27:32:d6:dc:14:1f:8f:1c:1e:74:80:
9f:18:59:5f:9e:91:99:38:e4:d8:cd:7c:7d:3d:49:
34:47:85:4c:a2:ac:40:fb:90:f9:3b:78:fb:01:ea:
f4:13:54:0b:e7:e6:dd:97:24:64:23:8b:51:7a:13:
5b:02:f5:c4:2b:4d:cf:9c:10:55:7c:ee:e1:2f:d4:
66:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F0:A8:1D:FB:BC:45:BD:B6:B4:28:6E:20:03:7B:5A:C0:D7:A3:B6
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e20313331373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
115.178.133.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:29:f0:18:65:ec:a4:41:0e:90:0b:10:e4:60:f1:8a:f8:17:
e7:3f:a8:9f:55:b0:02:57:8f:fc:73:a9:38:62:b6:3c:7c:aa:
a9:05:36:59:f2:b3:e0:8d:e2:d8:8e:4a:1b:2a:69:8b:e4:c3:
be:8b:dd:46:86:aa:05:2c:2b:43:eb:e4:58:8f:ee:d4:9e:06:
82:90:0e:0f:36:7a:0a:b7:96:37:6d:26:9c:46:fa:98:71:b0:
d8:6f:5f:c8:d9:d1:4c:7d:be:42:46:92:2b:e8:47:e8:42:22:
68:9f:a4:98:84:31:ee:f8:3c:c7:17:12:57:2b:22:34:ba:b7:
63:d3:7e:eb:1b:bb:97:94:f6:f5:06:04:9a:a2:ed:32:9e:77:
1a:69:b7:33:f0:b4:6f:e2:20:50:d5:88:f5:c4:46:fa:53:ad:
d0:b0:2c:be:4e:5f:17:c2:eb:11:a8:ff:de:1b:80:b5:c1:93:
cf:b0:29:a0:ee:f6:58:d0:65:5f:b4:fa:85:c6:ea:7b:64:fa:
2d:2a:83:62:37:d7:d0:7e:a4:8a:f4:76:d5:e3:f0:d0:f2:eb:
77:35:7b:44:d7:eb:b7:bd:fd:9b:88:8f:a9:64:54:b0:5b:2d:
59:d6:70:43:20:a4:82:bb:22:6d:6f:e3:90:14:e9:17:78:e0:
28:cf:4b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:07 2023 by rpki-client on console-fra.rpki-client.org