Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3130332e332e3232302e302f32342d3234203d3e203137383835.roa
File: 3130332e332e3232302e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: RfjI41JdLtCDFqkBcJKSpwQPg5e7oHw64XRwaD49Ds0=
Subject key identifier: 26:0F:55:FB:F4:7D:57:7F:BE:53:D1:18:75:E4:A6:BA:27:0D:E2:7E
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 4A21703730D0C7FD28A25B02A297396E9B832AC3
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3130332e332e3232302e302f32342d3234203d3e203137383835.roa
Signing time: Fri 25 Mar 2022 06:00:00 +0000
ROA not before: Fri 25 Mar 2022 05:55:00 +0000
ROA not after: Fri 24 Mar 2023 06:00:00 +0000
asID: 17885
IP address blocks: 103.3.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:21:70:37:30:d0:c7:fd:28:a2:5b:02:a2:97:39:6e:9b:83:2a:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 25 05:55:00 2022 GMT
Not After : Mar 24 06:00:00 2023 GMT
Subject: CN=260F55FBF47D577FBE53D11875E4A6BA270DE27E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:36:b6:53:76:be:7d:72:64:bb:13:f3:86:f9:
2c:74:05:bb:ab:d2:55:c0:07:10:70:88:70:9a:43:
ab:8f:6c:f3:05:4d:04:c1:7a:c1:97:af:a3:e7:6f:
d4:15:f4:1a:2d:3d:d7:db:53:ae:32:d0:2b:09:5d:
a7:19:89:d0:72:a0:02:43:30:f5:1f:aa:f5:1f:d6:
7d:35:68:62:95:56:d3:ea:99:f4:86:0f:70:a1:74:
8a:8c:66:13:2d:b1:28:93:83:d0:89:27:0e:14:fa:
79:e9:cd:14:12:70:cc:06:5f:f3:eb:b9:b9:5f:c7:
4b:e4:a2:62:0b:bf:f0:1a:48:ba:d4:87:c0:54:5c:
ec:bb:fb:c0:4b:f6:13:57:99:fb:5a:73:03:77:de:
4e:6f:25:b0:5b:bd:c1:d6:aa:04:d3:f2:bd:54:cb:
51:13:57:2f:6a:e2:f0:fb:aa:27:3e:9d:00:bf:ac:
c9:a5:9a:09:2e:51:6b:46:ba:e4:0c:12:4f:cc:de:
93:9d:8c:b8:82:b5:4e:2d:e6:e9:6e:4f:95:27:0f:
24:5f:d4:04:9e:50:82:83:5a:98:4f:20:29:f7:55:
61:b7:dd:5a:be:19:c1:2e:8a:42:d6:d5:b3:2c:7b:
a3:e0:b9:4a:4b:56:3d:3c:a9:08:c1:3e:97:0b:46:
cc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:0F:55:FB:F4:7D:57:7F:BE:53:D1:18:75:E4:A6:BA:27:0D:E2:7E
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3130332e332e3232302e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.3.220.0/24
Signature Algorithm: sha256WithRSAEncryption
33:80:77:e7:ae:8d:a7:2c:20:94:d4:54:02:c2:ad:da:43:09:
2c:f9:25:52:a1:78:e5:42:c8:ba:60:bc:58:bb:dc:aa:13:10:
98:a5:71:d0:1f:5a:06:32:77:bf:d5:48:76:0f:a4:fa:dd:57:
7e:d8:13:cf:6e:6c:3a:24:eb:a8:f6:b2:b0:51:64:b7:dc:d5:
c6:1b:87:34:bb:dd:c0:7e:34:18:ab:9c:bf:14:9b:ca:df:41:
9f:a4:43:1b:4f:df:44:bd:80:84:34:01:86:e4:4c:f8:71:c4:
bb:fe:46:77:8f:26:f1:00:ca:1f:77:12:a8:73:71:23:b1:a5:
b2:22:d1:9f:13:60:5c:07:f2:55:e6:22:d6:38:30:7c:13:e9:
8a:df:c1:6f:c6:70:54:b2:89:1b:bb:19:74:38:10:10:e1:be:
92:4f:8e:07:f2:a8:b1:3b:98:18:6c:0a:dd:26:7e:a2:ae:b9:
c7:f2:55:50:6e:fc:f6:eb:4a:3a:b5:fc:df:99:7d:b6:29:b2:
00:76:d9:a7:49:ba:b6:51:fc:2f:d4:6b:5e:57:9b:0c:4e:e2:
05:e9:7f:59:1d:d8:2a:a5:bc:10:31:7a:ed:a7:ad:d1:30:4e:
eb:71:d7:01:7f:a3:2c:28:e2:f9:0a:33:0f:34:d2:2f:2b:b9:
29:a3:15:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net