Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3132342e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3132342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: bViTWv/X4tuKl5JS2S5nFglph5GZ5VEHbTEbppKb/4w=
Subject key identifier: CF:32:74:79:24:0D:63:4A:12:72:F3:83:A6:C3:77:E3:45:6F:4F:7A
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 4D3E5DB174F1D7597824A6E5F4790CE6FD153AAB
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3132342e302f32342d3234203d3e203234323033.roa
Signing time: Tue 05 Apr 2022 12:00:01 +0000
ROA not before: Tue 05 Apr 2022 11:55:01 +0000
ROA not after: Tue 04 Apr 2023 12:00:01 +0000
asID: 24203
IP address blocks: 112.215.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:3e:5d:b1:74:f1:d7:59:78:24:a6:e5:f4:79:0c:e6:fd:15:3a:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:01 2022 GMT
Not After : Apr 4 12:00:01 2023 GMT
Subject: CN=CF327479240D634A1272F383A6C377E3456F4F7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b0:ed:c4:9d:d9:b3:e2:2c:7c:62:48:50:e0:
8f:8f:d9:bd:b5:6a:8e:3c:09:e6:40:ce:ea:26:16:
5c:64:78:13:93:eb:50:2b:30:21:47:56:47:97:31:
87:ac:d2:0c:52:75:3a:fc:e0:45:46:04:a6:d2:da:
b5:18:ae:f7:27:aa:0a:b0:d5:cd:f2:52:d6:78:cf:
a7:86:2f:0a:e3:e4:01:18:65:1e:e4:28:d9:80:3f:
2c:24:09:bd:d6:f0:39:da:ec:3a:3b:e4:96:6c:49:
17:27:69:7e:2e:d6:b8:30:f9:77:4a:42:fe:c2:94:
2a:db:5c:39:f8:c9:1f:d6:c9:b0:ad:30:39:16:64:
3c:49:a9:bf:52:fe:00:c8:30:37:25:30:6c:85:8e:
68:ce:41:35:44:11:20:dd:09:d4:0c:cc:1b:81:47:
70:ec:cc:74:82:bf:ed:ce:87:4a:b0:59:08:91:50:
86:51:39:87:fd:f1:38:68:c0:d3:cc:fc:db:4a:e2:
00:23:5e:a8:2a:4b:ed:cf:02:e1:57:47:c0:93:bc:
78:04:39:2d:bd:31:f7:1c:ca:05:d0:44:25:90:3e:
ee:c3:21:c4:c3:ae:fe:07:52:65:c3:7f:1a:ff:4d:
1d:bf:bd:60:c4:30:de:e8:8f:b2:4e:99:35:5c:13:
fe:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:32:74:79:24:0D:63:4A:12:72:F3:83:A6:C3:77:E3:45:6F:4F:7A
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3132342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.124.0/24
Signature Algorithm: sha256WithRSAEncryption
40:91:ab:31:20:61:47:04:03:89:ca:6b:c8:d1:0f:f2:ac:b6:
32:07:98:b3:cd:90:86:b7:a3:aa:5c:5c:ee:ac:1c:b8:21:bd:
2b:2f:ce:df:a3:f8:79:8f:e3:77:de:e4:3f:12:64:42:d2:1e:
26:96:7c:5e:c7:21:4c:62:3a:83:9c:21:fb:3b:6b:cd:e7:b3:
00:d7:ce:64:c2:00:03:8a:95:85:78:19:d9:b7:f0:e3:44:76:
4a:bd:68:e4:77:dc:68:67:a3:e0:7e:05:36:c7:e1:59:ac:00:
dc:4c:b5:5e:df:6d:58:60:e7:7e:c6:59:ae:27:02:71:1f:77:
65:4b:6f:dc:66:f4:54:9d:bf:c3:4c:8e:03:db:58:21:14:73:
b7:ab:02:ae:84:17:4d:8b:b9:c8:6a:89:49:20:d3:f2:64:2e:
ba:21:15:15:41:d5:05:d5:dc:48:f8:17:22:cb:70:bf:83:77:
f7:46:34:7e:64:c2:ec:7b:26:0e:ac:93:9c:ad:27:c1:3e:e4:
79:ce:67:62:c3:5a:02:1c:5c:e0:71:4f:50:d6:b8:30:13:8d:
c2:18:eb:d5:25:f9:07:66:c5:ce:92:38:c1:16:92:7c:96:35:
df:49:7e:53:4c:5f:fd:05:af:30:65:cd:6c:51:60:ed:33:f4:
58:02:66:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net