Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e31302e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e31302e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: V2CTrjN7B7vLdI8vSxfx31VOgdE1jB6uWu+LMSEE150=
Subject key identifier: AC:17:D9:1D:0E:14:25:FD:5D:BB:6F:69:8E:16:44:18:CE:A0:7F:CF
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 460873509CCF8299CCC640184CF99E6DF731AC12
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e31302e302f32342d3234203d3e203137383835.roa
Signing time: Fri 01 Apr 2022 21:00:00 +0000
ROA not before: Fri 01 Apr 2022 20:55:00 +0000
ROA not after: Fri 31 Mar 2023 21:00:00 +0000
asID: 17885
IP address blocks: 112.215.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:08:73:50:9c:cf:82:99:cc:c6:40:18:4c:f9:9e:6d:f7:31:ac:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 1 20:55:00 2022 GMT
Not After : Mar 31 21:00:00 2023 GMT
Subject: CN=AC17D91D0E1425FD5DBB6F698E164418CEA07FCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:41:42:50:5d:00:13:d9:ab:22:9c:8a:29:
eb:4f:7d:99:46:c2:d9:35:83:59:db:02:a2:c9:1d:
4c:c0:fd:3d:5c:ad:06:71:ac:78:22:20:6b:b2:e6:
76:13:39:ff:19:b2:47:0a:0d:3b:5a:3b:11:33:31:
27:87:44:95:82:df:43:9e:97:20:69:7d:ea:66:be:
ef:51:fd:36:6f:19:e9:49:15:41:24:1b:0f:ac:b3:
8d:a8:8b:17:bd:a9:ba:93:31:a1:c4:c1:21:45:6c:
c0:ff:37:1c:61:47:59:6c:67:4d:5c:69:e1:70:ed:
17:4f:3e:b3:e3:97:50:41:c7:bc:75:69:ae:02:5d:
08:cf:cf:9e:43:84:88:29:55:74:77:fb:83:e5:62:
59:8d:a6:5a:c2:63:47:ca:9a:9b:c1:a3:ed:86:47:
ca:78:f3:45:0d:eb:39:f8:77:f3:8e:39:69:9b:5f:
cf:1b:30:2e:f6:00:60:37:ed:aa:73:d7:a0:5c:59:
0f:3e:4a:51:d1:ad:30:0c:7e:f1:72:c0:d2:a0:b6:
f9:b3:04:90:3b:92:2e:f4:82:ff:4a:92:2f:0f:8f:
27:2d:a1:e7:91:17:8a:3c:f8:83:ad:c1:fd:8c:12:
ad:c3:dc:e8:d1:f5:6d:d7:75:ea:9b:bc:6f:c5:10:
cc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:17:D9:1D:0E:14:25:FD:5D:BB:6F:69:8E:16:44:18:CE:A0:7F:CF
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e31302e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.10.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:d6:28:5a:99:05:11:0c:c0:e5:0a:3d:bc:43:e7:08:91:6b:
ef:a7:f7:29:08:4a:a0:d8:29:05:fd:c3:b3:87:3f:5e:c8:be:
d4:ea:39:37:28:8d:91:9b:3a:44:83:ae:35:5c:e9:42:37:2f:
5d:89:80:80:59:70:20:21:55:0f:95:c8:da:bf:e8:fc:ba:38:
61:18:2d:26:a3:2a:41:01:2f:27:3e:aa:43:9b:2b:5a:80:98:
78:9c:21:ad:93:42:39:7c:81:72:2c:1c:e0:a4:78:d9:35:a6:
c9:64:7f:1e:de:5a:53:66:13:d8:43:40:98:a9:bb:42:0d:8e:
0f:ef:8b:3f:f6:c7:15:ab:98:48:6d:c2:2c:f4:a3:0c:37:97:
ff:1b:75:be:45:55:8a:01:7c:b2:45:53:53:e3:ba:e5:34:c9:
1e:fe:6e:ca:7b:aa:85:d4:68:fc:22:67:f5:df:b8:c2:de:66:
a4:d1:cf:e7:c9:6b:de:da:ea:26:8f:4c:40:21:42:e9:31:90:
5b:32:00:db:19:13:7a:de:f0:df:c9:4e:0c:11:e6:b7:c2:21:
6e:2d:f8:da:57:78:1f:98:76:13:f7:4e:35:10:87:af:53:14:
31:27:77:6c:45:eb:03:b6:76:65:d0:7a:4c:6a:64:ab:70:98:
bc:81:7b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net