Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3132312e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3132312e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: tMq2VBclsavptpsicTREDZKrMKby8hNFT3fljXv/QLQ=
Subject key identifier: 72:52:92:55:E6:AD:EE:F1:C2:83:69:90:6F:C8:6A:66:D0:54:BA:72
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 656F55F9E3994C2EB033772D4133F05B06E3B467
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3132312e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 12:00:01 +0000
ROA not before: Tue 05 Apr 2022 11:55:01 +0000
ROA not after: Tue 04 Apr 2023 12:00:01 +0000
asID: 17885
IP address blocks: 112.215.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:6f:55:f9:e3:99:4c:2e:b0:33:77:2d:41:33:f0:5b:06:e3:b4:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:01 2022 GMT
Not After : Apr 4 12:00:01 2023 GMT
Subject: CN=72529255E6ADEEF1C28369906FC86A66D054BA72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ba:c1:de:b8:1c:a5:bf:60:fa:41:74:86:ef:
be:18:59:5e:84:2c:86:14:06:ea:e8:e0:e8:48:e3:
5d:0e:b6:e6:8e:3b:a1:fe:a2:5a:7a:5e:2c:c7:c6:
36:19:a4:bb:05:5e:49:11:cd:15:61:04:b1:b9:b4:
a3:7c:25:ce:6f:e0:c8:b5:6c:a2:e1:d7:f4:17:26:
1c:89:42:53:0d:c1:98:4b:2b:02:be:85:84:e3:06:
c8:18:ab:ff:76:72:15:d7:27:53:43:e0:df:ca:13:
ae:35:99:b7:ee:6d:eb:7f:f3:77:5e:de:ed:13:20:
a8:03:4e:32:93:ec:45:f5:13:3e:40:03:bf:69:52:
82:db:fb:2c:da:e0:f1:91:2b:d2:4d:ac:ee:6a:5d:
85:09:ac:43:e8:c8:ed:f9:17:cd:5a:77:f6:e9:5a:
0f:c4:3d:29:6b:43:1e:ce:f0:43:1f:51:55:47:54:
a3:90:7a:96:a0:8f:c1:3a:d9:b9:91:b8:c3:74:39:
3e:4a:60:b4:d6:52:7b:5a:85:12:e5:99:01:6d:04:
d1:14:68:a9:d7:1c:07:4c:0b:d0:07:1b:9a:45:05:
8d:bc:0f:f1:66:97:54:8f:de:be:20:0e:10:4d:e8:
1a:bb:32:36:55:49:4a:b1:93:93:6f:92:e3:20:c5:
76:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:52:92:55:E6:AD:EE:F1:C2:83:69:90:6F:C8:6A:66:D0:54:BA:72
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3132312e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.121.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d1:70:68:92:01:ea:12:77:42:e4:f1:9b:d7:47:47:dc:98:
c2:fb:4b:8e:d5:1e:97:c0:4f:af:a4:cc:d1:e2:af:83:e8:9d:
24:b4:e7:51:29:e0:62:49:f8:0e:e8:16:11:d3:7e:d9:db:ae:
19:ef:5b:a8:b1:36:c0:32:57:70:60:6b:af:b3:3d:ac:06:f6:
bb:f8:ee:f6:53:ed:2e:17:79:36:e7:c4:a0:d4:89:43:7a:05:
3d:3b:b2:7c:da:91:d8:81:8a:f5:4d:1a:be:12:82:b8:ee:6d:
68:43:cc:15:12:63:44:f8:ab:5b:bc:93:bc:6a:19:16:1a:c7:
64:5a:d0:c6:f4:55:6e:c7:b3:9c:87:3f:a1:44:cf:7f:8f:d7:
cb:7e:45:f2:30:54:fd:60:49:43:76:1f:82:14:d2:33:b9:79:
df:3f:4c:66:62:88:81:d6:a8:d7:a2:01:41:01:7d:14:cc:b8:
c4:e4:fc:58:a6:fe:d9:cc:e5:f5:3c:f7:cf:b8:75:1b:9b:cc:
9f:d0:e1:a8:1b:0d:1e:c4:36:73:16:7c:88:61:0c:f0:c1:2d:
35:15:08:cd:60:65:42:82:9f:0b:53:a0:ec:34:89:8c:9f:7e:
3e:7a:f4:40:e8:41:79:fc:6b:0b:e0:fe:e3:4d:8d:cb:bb:49:
db:ca:55:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net