Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3130342e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3130342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: fcwyh/71LlevuRh3VkMDJnF/UfYYqdSRlKZ/FiEc3aI=
Subject key identifier: DE:75:71:E8:92:F2:FD:60:D2:B3:80:27:76:D0:A8:E9:92:0C:B9:9E
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 32E077D62F4A2FF4596D4BE28FF0EF80EFEDBE4B
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3130342e302f32342d3234203d3e203234323033.roa
Signing time: Thu 31 Mar 2022 11:00:00 +0000
ROA not before: Thu 31 Mar 2022 10:55:00 +0000
ROA not after: Thu 30 Mar 2023 11:00:00 +0000
asID: 24203
IP address blocks: 112.215.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:e0:77:d6:2f:4a:2f:f4:59:6d:4b:e2:8f:f0:ef:80:ef:ed:be:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 10:55:00 2022 GMT
Not After : Mar 30 11:00:00 2023 GMT
Subject: CN=DE7571E892F2FD60D2B3802776D0A8E9920CB99E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9c:a6:c2:be:9e:e4:9a:c8:ef:32:78:29:12:
56:88:8a:9f:3a:e2:1e:cf:ec:48:55:92:fa:32:5e:
65:de:e0:c9:95:cd:bb:7b:8b:ad:d8:a4:81:f8:dc:
54:20:c3:a8:c2:7d:de:58:b4:6e:2b:e6:cf:1f:07:
c7:01:f8:d6:bd:66:43:0a:17:f1:82:0b:ca:3c:59:
16:bd:94:30:2f:41:36:2f:78:99:7b:c1:9e:bc:ae:
45:5f:3d:8d:50:8d:2a:b8:2d:29:4e:a1:9c:e3:01:
68:b0:c7:3c:66:fc:63:74:6c:3a:28:58:c0:d4:4c:
66:e9:c0:f6:85:a9:4b:d3:da:c1:ec:13:f4:ce:8f:
c6:ea:22:8c:47:2e:46:2a:38:81:59:25:52:12:07:
b0:c4:23:62:70:c9:0c:ab:f9:bc:61:f6:e5:21:f2:
3d:6c:e0:ce:06:b0:26:7d:bf:b7:1d:6e:9a:00:55:
ff:59:de:da:a8:94:94:92:00:cf:17:4c:e3:76:51:
5d:96:6a:be:64:0b:cd:3a:4e:d3:cd:d7:0e:99:d1:
91:28:b8:2f:b8:e9:4a:e6:e8:f1:29:89:68:55:ca:
60:f6:26:d4:bd:9a:1c:5e:4b:89:fa:fc:44:b3:3c:
ea:87:01:4e:d1:82:64:09:36:8c:17:57:03:2a:34:
33:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:75:71:E8:92:F2:FD:60:D2:B3:80:27:76:D0:A8:E9:92:0C:B9:9E
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3130342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.104.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:04:a6:57:23:63:39:3d:44:28:d5:24:67:53:52:06:63:aa:
d6:e2:e4:38:30:39:93:6b:30:4d:8f:73:a4:0f:4c:58:a9:8b:
73:e9:8f:15:39:c9:32:11:9d:79:3e:58:1c:51:4e:71:dd:7a:
0d:05:74:ef:35:f1:03:d9:07:39:d6:38:c7:bb:ed:93:d2:eb:
19:40:fa:5f:f9:47:56:2c:f6:e1:a9:f7:1b:99:d7:62:0b:52:
cc:b8:e3:c6:d0:0a:af:f9:14:65:70:43:1d:ce:06:7b:35:9d:
a3:63:88:27:ef:d9:32:7c:5d:b3:46:97:20:50:72:32:7d:ff:
53:54:b1:3b:41:5e:96:2b:2c:44:21:0b:b1:13:18:ed:1c:28:
83:ca:a3:5b:7f:3a:de:e1:62:0c:b8:a0:64:09:16:9c:99:96:
15:ad:cc:d3:fb:b7:ae:c7:3f:83:ec:5a:6d:fe:77:8c:5f:f3:
09:14:dd:49:fd:57:d9:27:c9:45:99:86:b9:b1:7a:24:1a:ff:
30:33:e4:4b:36:9f:55:17:23:9a:08:48:19:a9:1e:8f:34:4b:
e9:0e:31:0d:12:bd:51:75:66:cf:34:eb:89:31:1c:ea:e6:1e:
9b:ea:97:9e:8e:3e:47:d4:73:66:c6:9d:25:1d:0c:ce:6b:d5:
ee:09:a4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net