Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3130362e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3130362e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: r3PnyiuCQFr08FilrB5TQk07CT3a1EMukIGGBn0M9Cw=
Subject key identifier: EF:20:96:EA:46:93:C9:BB:87:D1:E6:15:9C:F9:EB:3F:E5:20:72:93
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 709811CE2AD22594ABF599B7CF540A838243049B
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3130362e302f32342d3234203d3e203137383835.roa
Signing time: Thu 31 Mar 2022 12:00:00 +0000
ROA not before: Thu 31 Mar 2022 11:55:00 +0000
ROA not after: Thu 30 Mar 2023 12:00:00 +0000
asID: 17885
IP address blocks: 112.215.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:98:11:ce:2a:d2:25:94:ab:f5:99:b7:cf:54:0a:83:82:43:04:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 11:55:00 2022 GMT
Not After : Mar 30 12:00:00 2023 GMT
Subject: CN=EF2096EA4693C9BB87D1E6159CF9EB3FE5207293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5f:37:4b:21:29:a8:e8:97:8e:58:fb:a9:7e:
9f:00:11:f7:da:5f:87:1b:b5:d1:30:56:56:6c:40:
08:64:55:27:fb:f0:48:9c:f0:9a:f1:bf:aa:9c:04:
48:c9:b3:b0:6b:96:35:6d:da:71:4f:ac:dd:ec:c1:
67:95:66:c5:5d:0a:bc:35:3b:37:77:fb:21:62:ee:
a3:f9:3b:ea:a6:3a:14:e0:c7:d4:21:0a:a4:90:ca:
4d:3a:f1:82:35:fc:ec:0f:39:fd:fd:a7:ba:ab:0d:
41:cf:d3:4e:60:d4:21:8b:1f:f0:cd:94:ad:dc:cd:
eb:be:fc:3c:e2:83:a8:ab:be:e5:6a:6c:a8:be:2e:
a6:d9:69:52:17:2a:fd:1f:d7:81:46:d4:72:9e:09:
46:11:72:c4:fa:e2:0b:85:39:92:8e:86:77:5d:b5:
3b:02:6d:b0:a7:d2:a6:62:0c:a2:99:b9:03:73:2e:
22:41:bf:e0:e4:4d:8d:d9:96:75:20:4f:5f:9a:9e:
d4:58:ce:88:09:13:44:bd:c0:61:4a:57:2e:ad:9f:
2c:1e:0c:65:fd:15:ec:66:96:e4:19:d3:eb:f5:8b:
1b:1e:40:e6:fe:0e:e5:6f:61:a3:14:cd:77:9b:3f:
e9:30:42:b1:eb:09:ea:0e:15:ac:ad:24:1f:31:7d:
ff:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:20:96:EA:46:93:C9:BB:87:D1:E6:15:9C:F9:EB:3F:E5:20:72:93
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3130362e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.106.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f6:9c:ad:c4:a2:b7:94:5e:00:5c:79:ae:c5:82:02:57:01:
50:0b:29:06:a5:5e:52:08:2c:5c:12:0b:a0:9c:4b:39:dd:88:
9b:90:e5:f3:9e:28:e6:70:8a:db:c0:e8:0e:92:b4:b4:3d:50:
f2:98:b9:e4:44:1c:1e:2c:4b:19:7c:1b:6e:e4:22:ac:87:42:
ae:e6:a3:c9:cb:7d:cf:1c:a9:cb:82:d5:59:48:50:ce:17:6d:
ab:34:23:a9:30:5e:f5:1e:53:f3:c7:db:9c:cf:6d:1a:8f:5c:
fb:11:08:48:0d:02:31:7a:36:79:0d:a9:f6:d7:c9:45:9b:9f:
f7:45:8e:9d:6a:c7:59:84:74:2d:ea:0f:36:52:f6:17:16:d2:
a9:f9:50:46:6d:80:d1:05:4f:94:90:87:c8:95:b0:ce:21:70:
21:9e:74:20:39:50:00:59:2b:72:e8:7f:59:04:10:52:1b:c8:
5a:70:66:5f:1b:72:43:03:17:14:95:59:40:0b:e3:5c:d7:c7:
04:fe:c2:e5:06:85:b6:a6:77:29:da:05:c8:a0:57:3a:2f:91:
46:87:b5:62:41:95:72:c8:21:9a:6a:17:dd:80:2c:38:8b:16:
6e:d8:ae:24:f0:3f:96:3a:4c:b9:eb:8b:7e:8e:f8:14:cc:5f:
d9:71:9e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net