Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131342e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3131342e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: hSTTcQfNRe1CEeMhSJf0DNhVo0isoQyYVgHtf2227FE=
Subject key identifier: 78:00:19:AE:21:BF:D7:FF:47:94:24:B7:5E:EE:A7:39:B6:C1:62:FC
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 70C965050695BA81701497A332F278BB93ABD221
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131342e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 12:00:01 +0000
ROA not before: Tue 05 Apr 2022 11:55:01 +0000
ROA not after: Tue 04 Apr 2023 12:00:01 +0000
asID: 17885
IP address blocks: 112.215.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:c9:65:05:06:95:ba:81:70:14:97:a3:32:f2:78:bb:93:ab:d2:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:01 2022 GMT
Not After : Apr 4 12:00:01 2023 GMT
Subject: CN=780019AE21BFD7FF479424B75EEEA739B6C162FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:71:b3:6d:46:45:98:d5:16:3d:bb:6a:a9:
ab:e7:8f:88:3a:8c:c8:e2:c1:8a:20:5f:fe:c5:04:
26:99:cb:1b:0f:e9:12:11:60:d7:b2:aa:01:03:25:
43:9c:cb:9b:24:c1:eb:64:d9:c4:87:7a:a8:03:07:
31:ae:cc:53:a7:a3:11:d0:82:17:a1:34:3d:dc:6a:
83:7c:cf:68:c0:a8:48:92:c1:fc:73:de:a8:7f:6b:
b0:a1:75:05:3c:85:d2:e9:9f:7e:50:3b:42:de:d7:
4c:5f:62:bb:a8:59:98:56:e6:cf:57:67:3a:53:1d:
47:40:10:2f:c3:14:69:f5:e0:74:b3:67:4a:14:3f:
b2:e7:ae:e4:81:7a:8a:26:22:95:6d:87:98:d3:90:
87:3a:f2:34:e1:c2:06:75:94:07:70:93:68:7f:10:
e1:90:c5:6a:f9:1e:37:6b:5c:fd:3f:78:c5:62:9b:
76:db:3b:b1:b2:92:ce:96:59:0b:a7:60:ef:47:0a:
09:65:19:95:76:37:2a:6f:4c:ae:c0:44:40:d7:6e:
5c:a2:f9:b2:49:b0:bc:45:eb:80:c7:ea:a6:ae:6f:
60:b8:aa:ca:fa:fd:81:59:ea:37:7e:9e:a9:6d:2a:
4c:1c:a9:c1:38:49:97:1d:64:e3:36:fa:70:e7:ca:
a9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:00:19:AE:21:BF:D7:FF:47:94:24:B7:5E:EE:A7:39:B6:C1:62:FC
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131342e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.114.0/24
Signature Algorithm: sha256WithRSAEncryption
38:83:8d:c4:20:52:b5:9b:72:d8:a5:33:97:d5:b7:19:4c:91:
56:60:f4:ea:38:16:33:32:31:11:84:1f:d7:07:75:f5:b7:2b:
ec:52:6c:00:82:ab:a8:c0:bd:9f:0b:1c:5f:3f:b9:d8:d3:13:
5a:ba:dd:85:ec:10:5d:94:4d:38:88:a6:76:e0:3d:98:93:45:
35:16:75:53:0b:7c:df:d4:16:08:72:7c:fd:d4:86:ff:59:3c:
43:5a:98:5c:0a:e5:f5:ac:e9:bb:42:03:05:0f:ee:92:bf:ce:
96:ca:96:59:d3:13:f0:9c:44:3b:f1:7a:fc:f8:77:12:12:dc:
54:2f:00:3a:4a:92:a4:5b:20:97:31:cf:2c:c5:b1:1d:e7:0b:
ac:61:48:0f:47:42:f1:8c:db:65:eb:a6:fc:31:50:2d:c0:5f:
a8:89:71:da:2a:90:82:c3:9c:ce:16:c3:29:94:9f:8a:b3:a2:
03:98:1a:98:ff:db:72:10:36:5e:6a:84:34:e8:43:7f:75:01:
b5:a6:5f:cf:25:b0:41:5a:15:b9:c0:f6:b9:5d:5d:34:70:cb:
ab:1d:f5:a3:1d:5a:bd:4a:95:3a:0c:49:4c:a6:b1:af:11:31:
22:8a:9c:89:09:4b:8c:e1:88:ff:91:9d:fe:90:a4:d3:71:c7:
3c:eb:26:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net