Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32302d3234203d3e203233393530.roa
File: 3230322e35312e31362e302f32302d3234203d3e203233393530.roa (raw, json)
Hash identifier: F/vnVpmCRuEA0KXRyT6eJm2WdFu4VHl4vO3eoe//sjA=
Subject key identifier: E4:BB:41:41:F2:8B:77:7B:2E:B6:31:1A:C5:49:FE:61:0D:5E:12:6E
Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0
Certificate serial: 204AA6F296FA20E4A1E8FF2E7390A14D4A1BB7BC
Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32302d3234203d3e203233393530.roa
Signing time: Fri 24 Jun 2022 08:00:00 +0000
ROA not before: Fri 24 Jun 2022 07:55:00 +0000
ROA not after: Fri 23 Jun 2023 08:00:00 +0000
asID: 23950
IP address blocks: 202.51.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:4a:a6:f2:96:fa:20:e4:a1:e8:ff:2e:73:90:a1:4d:4a:1b:b7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0
Validity
Not Before: Jun 24 07:55:00 2022 GMT
Not After : Jun 23 08:00:00 2023 GMT
Subject: CN=E4BB4141F28B777B2EB6311AC549FE610D5E126E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b3:9b:f0:96:a0:2d:8a:40:09:43:0e:ae:11:
84:f8:68:f6:f6:91:10:43:6c:9e:6c:5f:07:23:c3:
34:a4:71:f4:4c:b9:68:8c:b0:92:b1:9e:fb:31:54:
cb:e9:90:16:61:92:25:d2:c0:00:6c:80:eb:fb:6d:
e7:3e:48:b3:38:7b:eb:24:87:40:f0:90:14:aa:9c:
70:50:4c:fa:81:1a:5e:41:85:da:02:de:78:9b:a9:
0e:39:52:b5:12:32:e4:3c:d5:c1:13:f5:24:51:3a:
0f:27:ae:30:35:78:a8:fa:8a:4e:22:14:45:b1:13:
d7:8a:13:25:5c:f1:8b:04:d9:12:25:6f:d2:0f:c6:
60:3f:db:a9:03:60:ac:01:ce:b2:f1:e3:83:5b:77:
8d:70:8e:a5:0f:f0:33:1d:0e:96:f9:8f:83:a2:19:
9e:5e:f9:65:a9:a9:21:c9:6b:d9:b1:18:6f:5f:f3:
58:6e:ee:ec:14:02:50:43:1c:d7:31:99:55:2b:b4:
82:c6:47:c2:e2:9a:14:9a:04:f0:29:a9:04:30:a6:
e6:9c:08:02:ed:59:f4:05:68:17:80:b9:80:d1:71:
c3:3f:e1:62:0c:a8:84:14:1b:7e:f2:c8:49:e2:1f:
69:bf:17:1d:8a:cf:9b:b4:7b:f5:48:0d:0e:ce:e2:
28:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BB:41:41:F2:8B:77:7B:2E:B6:31:1A:C5:49:FE:61:0D:5E:12:6E
X509v3 Authority Key Identifier:
keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e31362e302f32302d3234203d3e203233393530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.16.0/20
Signature Algorithm: sha256WithRSAEncryption
41:a0:63:06:ba:cb:53:d1:7e:17:26:b0:37:86:4b:02:50:5a:
63:9e:16:c4:9f:08:8b:29:4a:3f:92:ca:b5:c3:92:89:24:f9:
87:56:d9:40:4c:5a:3b:ef:ca:4b:15:a2:b4:5b:ac:b0:21:60:
ae:ff:b1:3e:34:d4:0b:9e:57:6f:5d:0d:af:06:18:35:d5:a4:
8f:ad:33:1d:a9:d2:e3:22:51:5c:75:1e:e9:aa:a5:15:df:95:
b1:a7:6f:41:f3:6c:4c:2e:92:2f:ca:83:1e:cf:d6:bd:9b:df:
f8:b1:83:2b:44:9d:65:5d:dc:1a:ca:f7:0b:3e:42:cb:c5:df:
69:9f:04:bb:87:1f:91:26:4e:b8:04:ea:35:04:54:33:a9:e1:
da:89:a5:31:c0:f7:f7:92:5d:3f:b0:a1:8c:23:18:2b:bc:13:
cc:1a:b1:52:2a:94:5b:45:53:10:5b:30:8c:89:e4:d5:86:2f:
4a:13:6b:8e:55:ae:0c:9f:af:b3:03:2c:33:d8:b8:ea:02:27:
dd:a5:f9:7a:22:6a:27:9b:72:76:02:29:5e:b8:6e:60:99:3e:
8c:5d:d4:8b:32:22:29:2a:fb:a8:24:14:53:a0:fc:a4:12:6d:
0a:96:1e:d5:09:65:8c:d2:89:92:b9:2e:8e:6d:96:8a:d5:58:
66:19:13:ec
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUIEqm8pb6IOSh6P8uc5ChTUobt7wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx
QUI0MjBBMDAeFw0yMjA2MjQwNzU1MDBaFw0yMzA2MjMwODAwMDBaMDMxMTAvBgNV
BAMTKEU0QkI0MTQxRjI4Qjc3N0IyRUI2MzExQUM1NDlGRTYxMEQ1RTEyNkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjs5vwlqAtikAJQw6uEYT4aPb2
kRBDbJ5sXwcjwzSkcfRMuWiMsJKxnvsxVMvpkBZhkiXSwABsgOv7bec+SLM4e+sk
h0DwkBSqnHBQTPqBGl5BhdoC3nibqQ45UrUSMuQ81cET9SRROg8nrjA1eKj6ik4i
FEWxE9eKEyVc8YsE2RIlb9IPxmA/26kDYKwBzrLx44Nbd41wjqUP8DMdDpb5j4Oi
GZ5e+WWpqSHJa9mxGG9f81hu7uwUAlBDHNcxmVUrtILGR8LimhSaBPApqQQwpuac
CALtWfQFaBeAuYDRccM/4WIMqIQUG37yyEniH2m/Fx2Kz5u0e/VIDQ7O4ijVAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU5LtBQfKLd3sutjEaxUn+YQ1eEm4wHwYDVR0j
BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5
RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0
MjBBMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04
M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzEzNjJlMzAyZjMyMzAy
ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKMxAwDQYJKoZIhvcN
AQELBQADggEBAEGgYwa6y1PRfhcmsDeGSwJQWmOeFsSfCIspSj+SyrXDkokk+YdW
2UBMWjvvyksVorRbrLAhYK7/sT401AueV29dDa8GGDXVpI+tMx2p0uMiUVx1Humq
pRXflbGnb0HzbEwuki/Kgx7P1r2b3/ixgytEnWVd3BrK9ws+QsvF32mfBLuHH5Em
TrgE6jUEVDOp4dqJpTHA9/eSXT+woYwjGCu8E8wasVIqlFtFUxBbMIyJ5NWGL0oT
a45Vrgyfr7MDLDPYuOoCJ92l+XoiaiebcnYCKV64bmCZPoxd1IsyIikq+6gkFFOg
/KQSbQqWHtUJZYzSiZK5Lo5tlorVWGYZE+w=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:20 2023 by rpki-client on console.sobornost.net