Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3133312e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3133312e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: kF+rttyt3ujSjnzLRGqehe9FIWbrCylke/kQthMrvzY=
Subject key identifier: 5A:9F:17:85:95:81:3B:0F:D0:4F:5F:5A:1A:D5:BB:CE:C1:FF:D7:E8
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 089ACE7FCD007F9106EB00C8326B9F24635784E3
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3133312e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 12:00:01 +0000
ROA not before: Tue 05 Apr 2022 11:55:01 +0000
ROA not after: Tue 04 Apr 2023 12:00:01 +0000
asID: 17885
IP address blocks: 112.215.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:9a:ce:7f:cd:00:7f:91:06:eb:00:c8:32:6b:9f:24:63:57:84:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 11:55:01 2022 GMT
Not After : Apr 4 12:00:01 2023 GMT
Subject: CN=5A9F178595813B0FD04F5F5A1AD5BBCEC1FFD7E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:7e:10:90:05:df:4e:40:b1:0b:64:ad:6f:
d2:d2:f7:92:c3:92:bc:e9:c0:49:f6:89:38:fd:78:
bc:74:88:cb:6f:87:78:a6:2c:22:7a:33:44:09:a8:
e5:3e:3f:06:f8:fc:0a:07:f0:6e:1b:ed:3c:9d:74:
67:98:9a:76:50:7e:49:b4:99:ec:cc:0f:94:77:e6:
28:a1:4d:8d:e9:d7:bf:62:07:c2:ef:82:a3:10:7c:
c6:c2:80:7b:39:c8:06:b4:10:be:85:fd:41:3e:31:
6a:51:00:8c:98:e7:9a:e4:13:17:84:45:92:e2:3f:
ca:46:c9:9c:fc:32:6b:b0:ff:2d:72:0a:86:75:ea:
66:3a:8f:cf:2a:c5:1c:07:60:8f:8a:18:14:bf:f9:
f3:b6:9c:16:21:bf:a2:5e:87:0e:df:1f:c6:0a:d6:
2b:43:27:99:87:b5:e6:76:5d:42:c2:aa:9a:b5:4a:
c6:ad:62:55:bd:1c:9a:8a:89:88:aa:0d:23:3f:8a:
0b:d2:4b:3a:00:bd:eb:70:39:25:be:17:05:87:af:
0a:bf:af:c1:4f:6d:2e:be:49:16:ba:08:c4:ef:f4:
0f:4b:e8:74:3b:6c:9f:1a:23:07:31:be:62:0a:f1:
4b:f3:29:43:4c:99:c3:14:74:d1:23:6b:81:a9:7a:
22:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9F:17:85:95:81:3B:0F:D0:4F:5F:5A:1A:D5:BB:CE:C1:FF:D7:E8
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3133312e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.131.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:e4:7c:b0:60:4c:46:8d:8e:6a:53:79:f7:0a:76:6d:d1:81:
ab:ff:77:36:d8:62:73:68:77:31:bd:3e:9a:4f:b0:08:be:49:
7e:09:2a:cc:d3:69:75:7a:3e:e6:93:f0:36:3b:72:ec:52:54:
cb:c8:99:54:cc:7a:2a:c4:0e:8c:d5:88:ea:d5:b1:38:c2:4f:
52:de:0c:b4:65:fc:e4:5e:fa:52:31:aa:cd:1e:21:c2:20:c7:
7b:c5:62:3d:4d:19:9e:7c:0d:90:71:35:58:56:20:51:03:e1:
93:71:0f:a7:d1:02:b1:6d:74:70:25:09:33:d4:0e:70:30:16:
a0:f4:21:a4:af:d3:95:8f:7d:1b:d8:86:ef:cd:d6:65:d4:3f:
20:40:2b:df:2f:bf:4c:47:70:02:f2:aa:b3:c4:5f:c6:f5:dd:
0e:fd:c5:63:13:a7:03:c3:f8:73:f1:12:3a:40:03:c3:4f:8f:
0a:16:7b:11:d6:50:fd:75:2a:a1:4d:e3:98:c0:fa:ad:99:d1:
97:88:43:61:b5:52:87:cd:95:da:df:3b:8b:38:7c:55:1f:fa:
2f:d3:da:3a:93:c0:0a:71:df:31:93:08:c4:1f:b0:8a:80:fb:
64:28:b1:ee:af:9a:73:4f:70:25:ea:4c:e5:38:0a:8f:98:ac:
ce:ab:26:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net