Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134312e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3134312e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: b1LuxvxXwySu4u0gb5sthc840QZfORSPdyPKqomZ6G8=
Subject key identifier: 0B:00:36:9C:35:79:63:A2:6E:7E:91:7E:17:9A:63:29:9E:5E:29:DD
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 764B6DA85296D475A735CE01D29B8DDB64079768
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134312e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 08:00:02 +0000
ROA not before: Thu 07 Apr 2022 07:55:02 +0000
ROA not after: Thu 06 Apr 2023 08:00:02 +0000
asID: 17885
IP address blocks: 112.215.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:4b:6d:a8:52:96:d4:75:a7:35:ce:01:d2:9b:8d:db:64:07:97:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:02 2022 GMT
Not After : Apr 6 08:00:02 2023 GMT
Subject: CN=0B00369C357963A26E7E917E179A63299E5E29DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:f4:99:b9:93:20:17:24:1f:3a:17:d7:5e:
c9:3d:8a:f0:1b:57:9f:68:47:6e:c1:3c:15:dc:a9:
ad:06:6e:e1:b1:1d:56:bf:0f:d1:31:95:7f:3e:e9:
41:66:62:62:b1:ff:db:a7:56:76:6f:48:6d:40:f4:
7d:e7:c9:fb:84:db:46:4d:db:bb:1f:0f:ce:04:62:
18:19:05:28:a1:b8:a7:2d:ed:f7:31:38:de:0b:c3:
a7:4c:d7:c3:ec:c1:67:d1:c1:e6:5d:5b:05:9f:ae:
4b:63:29:6d:be:98:79:9c:5d:82:60:14:00:fb:c0:
76:a8:7e:1b:fd:ce:7a:48:c0:0e:3e:e6:79:27:08:
b2:9b:e2:79:a1:ea:06:de:17:62:44:0d:6c:18:c9:
ec:a9:83:72:c6:4b:91:3d:e6:a4:d9:d9:2c:59:20:
f1:43:03:4d:65:f4:09:a7:a3:35:c8:c1:15:cf:57:
10:71:f2:0e:bf:fe:ea:97:8d:3e:68:a5:cc:d1:e8:
1b:1b:a7:63:e5:05:8a:e0:f6:09:2e:31:90:32:bf:
e2:9a:4e:df:c3:a6:e9:9d:6b:33:4c:b6:1e:c5:1b:
84:b8:bf:3d:55:bb:a6:cc:d6:11:fc:53:8f:fa:98:
4f:d3:ee:8e:a7:16:09:fb:89:f6:61:4d:a3:81:f1:
e6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:00:36:9C:35:79:63:A2:6E:7E:91:7E:17:9A:63:29:9E:5E:29:DD
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134312e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.141.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:04:57:ee:2e:7d:49:ef:69:13:d6:1a:58:3a:93:f8:d4:52:
79:80:1e:07:71:b3:b6:01:64:4e:38:01:c1:c9:73:93:af:a1:
49:9b:da:d2:b1:5c:1e:29:a9:ba:6d:44:af:33:23:6d:66:fb:
6f:83:39:cf:da:19:4b:10:7c:42:84:0b:9b:51:77:66:1d:09:
69:4f:5e:81:eb:c3:ea:9c:e5:8f:68:db:5a:57:c8:87:80:69:
55:81:49:eb:71:7e:e1:78:46:98:3d:97:ed:f6:02:85:16:9a:
6d:b7:df:6e:ca:05:45:00:bc:9f:34:1d:11:78:0b:f0:5e:eb:
cb:bc:48:ea:c9:a8:6d:91:10:12:fe:e8:63:12:a7:b3:25:2e:
be:66:19:c9:52:52:92:52:ee:e6:aa:cf:48:94:33:c7:19:78:
95:0d:18:6a:38:8a:a2:ec:2a:b3:a6:02:a4:26:27:e2:e2:b0:
1a:89:0d:ec:6e:7b:3c:c2:5f:9f:d4:5e:de:7c:e8:89:f1:5e:
8d:c1:d7:2e:d1:d1:17:eb:3b:2c:8b:6c:db:9d:dc:10:eb:16:
a0:18:36:71:40:e9:b7:fa:a1:0f:39:da:dd:80:56:77:77:2e:
aa:7e:ec:ad:01:d5:d7:49:56:ee:1a:ce:09:b9:7b:a7:2c:81:
55:63:8c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net