Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131392e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3131392e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: NMGJsIPYyqaSygW7StpSOEKqnvI7xjoJS7BIJJjK+N4=
Subject key identifier: D9:94:EF:74:09:07:F1:71:58:3E:4B:E1:05:AC:4C:B0:35:26:B3:81
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 3F91148BA550FAE818D1415BA99E891B47A591A6
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131392e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 12:00:00 +0000
ROA not before: Tue 05 Apr 2022 11:55:00 +0000
ROA not after: Tue 04 Apr 2023 12:00:00 +0000
asID: 17885
IP address blocks: 112.215.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:91:14:8b:a5:50:fa:e8:18:d1:41:5b:a9:9e:89:1b:47:a5:91:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:00 2022 GMT
Not After : Apr 4 12:00:00 2023 GMT
Subject: CN=D994EF740907F171583E4BE105AC4CB03526B381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:30:0f:24:b6:4d:f3:df:07:db:d9:f1:c8:06:
ed:e8:5b:03:21:7f:ea:2f:ef:65:81:12:be:99:4b:
4f:8c:94:21:fa:78:b4:77:62:b4:0b:4d:cd:ba:94:
e4:2e:62:e6:54:a0:b8:95:fa:8e:06:70:03:f8:a0:
4c:ca:a1:6b:ff:df:52:fa:ac:e6:39:d2:ba:97:ee:
3e:8f:78:e4:75:d3:0f:46:eb:63:3f:eb:77:a7:2e:
83:23:91:fb:f5:5c:8b:15:1f:a0:c6:25:d4:df:6c:
65:93:d7:ec:52:9e:3c:d1:ac:48:86:c7:1e:02:d4:
b7:0b:c2:b0:20:d1:a5:99:9d:de:8e:71:cb:af:80:
8e:c0:d1:63:e5:0a:69:19:bc:e6:47:2c:6e:a2:e3:
27:df:57:f4:ce:23:9a:5a:9a:84:79:da:00:b9:93:
0e:aa:65:a8:95:b3:83:73:10:9d:f0:67:4a:8d:fa:
45:80:48:b4:69:77:8b:35:a1:13:69:db:ea:0f:78:
2c:e6:be:e4:5b:ef:03:04:45:b4:23:91:90:86:ac:
e2:55:7c:90:e6:c0:cd:9f:a5:99:2a:d9:23:aa:fa:
d4:00:01:ad:96:d1:0b:d8:54:1b:b9:57:e3:3c:b3:
e1:11:e5:25:52:54:fa:85:9d:d1:bb:40:30:03:68:
fe:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:94:EF:74:09:07:F1:71:58:3E:4B:E1:05:AC:4C:B0:35:26:B3:81
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3131392e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.119.0/24
Signature Algorithm: sha256WithRSAEncryption
15:84:a7:8f:11:f6:f3:91:f7:6d:2c:ec:e0:4f:32:d9:c9:80:
5b:fd:53:20:56:c5:a5:f5:0b:0e:9d:1e:af:d5:b2:5e:5e:1f:
95:33:cb:ca:ea:e7:73:ee:db:7f:a4:49:b8:f4:91:f9:84:3f:
b9:c4:19:19:4d:88:65:ae:20:3c:8c:c3:e2:49:0c:c3:a3:d9:
b6:a7:c1:89:85:a8:5c:59:e1:44:f7:82:78:0b:55:fa:15:7d:
ab:e9:e2:ed:4a:a8:73:6c:f1:7f:20:bd:86:ea:b2:3a:2a:ba:
52:d1:8d:59:cf:2e:1c:9e:e1:8a:ee:f5:e7:6c:3b:34:de:f6:
72:d7:e4:78:8f:2a:23:81:f7:f0:ef:61:6d:4d:42:c5:4d:c6:
f8:bb:b9:9f:46:31:cb:1e:03:dd:85:2f:09:61:b4:02:76:11:
37:b0:8e:45:1e:5f:d8:d4:80:31:aa:54:8a:9f:49:81:06:5c:
a0:6b:f4:43:0d:b9:17:7c:49:c2:12:a8:be:af:19:e2:90:9d:
1b:57:8f:c3:f5:63:32:16:20:05:e7:09:e4:21:57:75:22:4a:
76:01:c5:47:de:49:75:47:c2:fc:e4:50:97:c0:bf:31:98:cd:
61:93:c4:2d:ef:07:6c:9c:51:8f:1a:6c:35:36:f1:57:42:da:
c8:2a:a3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net