Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131362e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3131362e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: eij7OAu22zBE+rPjpPPG9+EwNtOlnzE5eyfI0A9qgec=
Subject key identifier: 15:D0:DA:24:71:92:0D:B5:CA:08:53:24:1E:8C:ED:A3:4B:AB:46:98
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 404C7816F5914361576ECE5CA2026FDD7DE8F01A
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131362e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 12:00:00 +0000
ROA not before: Tue 05 Apr 2022 11:55:00 +0000
ROA not after: Tue 04 Apr 2023 12:00:00 +0000
asID: 17885
IP address blocks: 112.215.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:4c:78:16:f5:91:43:61:57:6e:ce:5c:a2:02:6f:dd:7d:e8:f0:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:00 2022 GMT
Not After : Apr 4 12:00:00 2023 GMT
Subject: CN=15D0DA2471920DB5CA0853241E8CEDA34BAB4698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:68:f2:cd:68:72:1b:a8:b2:64:a1:c8:ca:
f8:8e:c3:a4:89:df:a3:e3:1f:1d:71:4a:97:09:67:
ae:a6:e4:0e:b2:73:27:57:90:4d:59:f5:43:ce:7e:
7b:76:7a:c1:05:c9:e2:9f:08:24:63:6f:94:00:a7:
6b:aa:cb:58:38:08:3f:21:b0:49:1b:94:db:e5:10:
58:6d:89:f4:f9:82:5a:7f:2b:06:46:85:be:e5:66:
19:b9:1f:58:4d:0e:4f:82:c6:33:16:b8:dd:9d:fc:
44:0f:76:af:96:87:ff:72:6a:ce:74:90:db:cd:ce:
a1:73:d6:64:2f:21:b1:8a:6e:f2:3b:ac:90:16:cf:
4b:4b:27:c6:c3:a1:cf:86:32:87:b7:52:98:a7:43:
51:d9:d8:c9:c9:8b:35:8a:9b:05:96:be:62:82:93:
5f:cc:c7:82:0c:3f:94:e1:0d:f4:0a:f1:d8:79:ce:
1b:eb:2f:7b:53:10:b6:17:29:06:58:f0:f7:9a:85:
f7:ba:81:b2:03:74:6b:24:b8:3b:28:a0:17:bc:1e:
bf:a6:94:30:87:a7:b8:38:a2:3a:b7:d9:bf:48:c8:
31:05:1e:fd:1a:10:43:96:08:76:dc:c6:3f:72:10:
74:5d:91:12:f3:31:61:c9:9b:8a:ad:bc:b5:ad:45:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D0:DA:24:71:92:0D:B5:CA:08:53:24:1E:8C:ED:A3:4B:AB:46:98
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131362e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.116.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:53:09:9b:1a:ca:9c:5d:d2:95:54:01:2c:e8:7c:da:a2:80:
d5:57:fb:57:a1:c0:48:1a:f6:85:08:c9:53:82:ac:b0:91:92:
d7:ea:12:7b:3e:b7:95:b0:2e:c3:88:fa:ff:a5:d9:83:66:f9:
ea:1b:ac:45:d7:bb:9c:6f:66:d3:9b:ef:5f:5d:b7:54:db:c0:
91:88:9f:c4:62:2f:3b:a2:e9:02:22:50:5e:2c:99:25:52:96:
94:95:20:5e:47:63:8e:27:c9:88:3d:82:f5:44:3a:ae:37:d7:
80:da:f4:7a:f6:b8:ff:46:c7:25:8d:bc:9a:c1:b5:22:fa:5e:
6d:b5:f4:57:f7:dd:52:7c:67:08:9b:c6:94:63:17:ac:29:0a:
27:0a:7c:21:72:a9:a8:2b:2e:df:c7:59:16:60:f4:65:cc:1d:
03:48:bb:99:01:82:ee:21:92:7f:60:16:27:46:8c:fa:e5:b3:
0f:7b:4b:f2:d0:92:ef:40:ab:ae:46:46:1f:3c:69:f7:21:0a:
99:0c:f9:c4:23:6c:6d:8b:e6:48:1b:d1:43:1f:60:06:ee:0a:
5e:1a:52:55:16:cb:28:22:e3:56:a4:ad:5a:ca:67:eb:f3:69:
ed:7f:8c:0c:77:05:39:d3:ad:08:93:f6:98:61:cf:ae:d3:5e:
0b:b5:a5:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net