Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131322e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3131322e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 8ZpXmdfVYXtab5Zpx7fqsQyhtOHgEpe5nWWu6qPAdxM=
Subject key identifier: B4:72:A2:2D:50:64:C6:49:63:6F:99:89:85:27:5D:ED:1D:5C:98:12
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 46E1396BBE68A54DAC94A708C7DF8629B1951A5E
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131322e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 12:00:00 +0000
ROA not before: Tue 05 Apr 2022 11:55:00 +0000
ROA not after: Tue 04 Apr 2023 12:00:00 +0000
asID: 17885
IP address blocks: 112.215.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:e1:39:6b:be:68:a5:4d:ac:94:a7:08:c7:df:86:29:b1:95:1a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:00 2022 GMT
Not After : Apr 4 12:00:00 2023 GMT
Subject: CN=B472A22D5064C649636F998985275DED1D5C9812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c8:75:e8:4e:00:cc:7f:c3:cd:71:0d:b7:0c:
b9:f2:4d:5e:5e:a2:4c:89:05:27:a1:4c:f4:b9:ac:
22:d4:73:0e:70:98:19:89:6c:0a:64:c4:ef:a5:45:
92:c3:bb:91:52:74:ff:ec:c9:f3:36:fe:9e:a0:ce:
bd:1b:75:a9:fd:64:db:5f:78:c5:07:2a:85:3b:7f:
49:97:7d:60:d1:ff:a9:dc:cd:f7:45:26:96:b2:8b:
a4:3c:1a:b8:93:61:42:0c:f9:dd:8e:e4:01:a9:c0:
de:ba:6a:57:6a:37:3a:29:e1:0b:82:cf:9e:5a:7c:
c4:29:4d:b1:69:23:20:14:70:1a:73:4b:75:c9:e3:
10:6c:fb:64:bc:a4:04:88:64:d3:01:95:62:94:ce:
b0:61:b8:dc:16:8b:a6:5c:6b:d1:93:47:b9:92:a3:
fb:e5:02:fa:e4:bf:a6:fb:d1:59:19:76:4d:fc:45:
08:a2:1f:2d:c4:68:05:ef:91:8e:f6:89:1a:bc:f4:
51:2d:a8:80:4e:78:78:16:02:11:27:11:5c:f9:61:
6a:5d:eb:45:36:a5:2b:91:a8:78:b1:13:03:49:09:
b8:b5:7d:b4:5c:c9:5e:71:21:26:c5:5d:1d:ef:8b:
06:54:f7:27:23:ab:2b:ae:3d:67:85:d9:22:a6:bd:
58:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:72:A2:2D:50:64:C6:49:63:6F:99:89:85:27:5D:ED:1D:5C:98:12
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131322e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.112.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:7e:05:51:7a:ac:5b:79:ba:68:fa:0e:83:01:1c:8b:47:f4:
eb:91:1b:93:c9:85:da:77:00:a9:e0:02:2b:41:54:0e:e9:49:
f5:70:af:75:e3:b5:38:40:eb:a3:d5:3a:99:8b:70:32:71:a2:
db:d5:a7:69:89:7b:0d:98:16:ed:5f:9b:2c:57:e4:07:b8:65:
34:ab:07:5d:ba:bf:1d:f2:1d:84:a2:52:8c:89:43:1e:4d:b7:
83:95:a5:a0:23:e3:d9:ed:e2:f3:ba:40:80:65:1f:26:02:36:
54:16:c9:9d:7c:21:8c:a6:19:69:32:c4:ce:2d:52:ee:83:bc:
e8:6a:1d:d4:de:96:1e:25:4b:ae:40:f2:17:19:c4:34:9b:f8:
0b:3c:a4:83:ba:29:16:62:18:bb:a8:ec:f5:21:2a:8d:3f:44:
49:d0:c4:fe:e9:0f:91:c6:73:6a:a6:cc:6d:26:3b:b1:e0:25:
31:39:a0:7f:42:93:6e:1d:98:90:80:54:aa:14:cc:9d:7f:b2:
27:c8:fc:a0:8e:23:8a:a3:bd:d7:b8:71:1e:dd:b0:74:59:b1:
be:01:73:e9:ae:82:bb:d6:de:78:5b:70:09:2e:77:45:de:07:
8a:13:e3:44:bb:63:c5:c6:b4:f2:89:c4:b4:6e:b0:c2:03:7a:
a3:6c:36:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net