Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134332e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3134332e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: L3WpJLtDwevqYUeCvkC5hvT2hTbMvm6NaCYskMyLSnA=
Subject key identifier: AB:73:4E:6C:44:40:DE:23:D8:D4:CB:A7:C0:13:AE:DB:06:C2:B8:4D
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 377FDA5F22F0F23FAD98DA847CDD0BA228C096D8
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134332e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 08:00:02 +0000
ROA not before: Thu 07 Apr 2022 07:55:02 +0000
ROA not after: Thu 06 Apr 2023 08:00:02 +0000
asID: 17885
IP address blocks: 112.215.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:7f:da:5f:22:f0:f2:3f:ad:98:da:84:7c:dd:0b:a2:28:c0:96:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:02 2022 GMT
Not After : Apr 6 08:00:02 2023 GMT
Subject: CN=AB734E6C4440DE23D8D4CBA7C013AEDB06C2B84D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2a:27:e7:d3:f6:f3:97:2c:a6:16:98:64:e6:
63:f4:10:5a:9f:5b:83:c2:1c:83:f8:5a:6c:f6:8b:
b9:dc:d8:54:05:01:a7:4b:4b:f3:0f:8f:48:b4:8b:
8a:21:9c:5c:d5:11:05:30:f9:21:68:19:df:ea:2a:
28:24:3c:0b:f6:de:9d:8d:44:2d:d9:9b:79:4d:64:
6e:da:6e:a6:55:ea:80:f0:a8:41:dd:8f:5c:2f:56:
39:bb:02:9c:92:6b:14:a4:b5:f1:f0:bf:85:76:76:
60:ea:35:fc:10:02:a6:95:25:6b:71:b5:37:07:86:
c8:f3:0b:28:28:4d:72:27:b2:1e:70:11:5a:c3:15:
92:58:85:71:69:8d:f9:87:b7:f7:01:1a:eb:4b:b7:
00:24:53:ae:89:6d:b5:c0:b4:11:9d:e1:b2:2e:13:
78:36:99:c9:63:e3:5d:c8:69:da:09:d1:c3:1b:0c:
90:fc:01:2e:c6:d0:26:ed:f4:ed:95:4c:c4:ad:61:
23:59:88:2e:ad:39:68:07:f2:f6:89:5a:b5:f9:ee:
b1:4f:32:10:8d:10:9a:3c:9f:38:bb:b4:45:67:cc:
24:d9:fd:51:ef:c9:42:6b:1c:0a:1b:e3:fa:ef:ba:
26:5e:34:c4:14:9d:4f:61:b8:32:63:c5:fd:f9:6e:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:73:4E:6C:44:40:DE:23:D8:D4:CB:A7:C0:13:AE:DB:06:C2:B8:4D
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134332e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.143.0/24
Signature Algorithm: sha256WithRSAEncryption
07:0a:81:a8:82:01:58:2c:ee:22:7b:25:ac:28:dd:c3:f9:e7:
91:38:6a:9e:6d:35:2b:2f:91:f4:67:fd:83:53:ee:11:e6:7c:
9e:ce:16:5a:f4:c9:58:53:e2:ad:2e:7b:c0:3d:b0:f3:14:0e:
d2:69:77:e7:32:32:23:5f:13:fe:3d:e3:dc:d1:3d:d2:73:81:
6b:ce:12:d5:3b:c7:84:b3:ab:e7:ef:59:da:f8:83:dc:d9:7f:
53:28:17:8f:e3:6b:cf:f9:a6:54:13:7c:75:9e:32:c9:49:86:
49:50:80:5a:3b:0d:10:db:b6:65:78:ab:f9:e7:2c:43:99:27:
14:f2:a0:fb:26:60:be:9f:6a:c1:e8:6c:0d:7c:95:f0:89:d2:
90:c5:6c:ef:10:0e:3b:0d:20:1a:c0:ee:e3:90:27:99:6c:3d:
23:db:cf:1d:f0:b4:58:82:c5:4a:b8:63:d5:27:4d:ea:9a:eb:
e9:84:79:43:8b:3f:45:37:98:69:23:13:1f:e2:94:5b:2a:c2:
de:d4:48:b6:bf:57:28:90:27:6b:77:1d:d4:eb:cd:ff:f2:82:
09:be:d9:8f:6e:af:96:01:c0:21:cb:31:0d:c2:f3:fb:c1:19:
1b:d7:b0:1d:d0:11:cc:c4:21:d0:b5:6f:d0:81:5c:32:0d:48:
48:d5:70:ec
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUN3/aXyLw8j+tmNqEfN0LoijAltgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcwNzU1MDJaFw0yMzA0MDYwODAwMDJaMDMxMTAvBgNV
BAMTKEFCNzM0RTZDNDQ0MERFMjNEOEQ0Q0JBN0MwMTNBRURCMDZDMkI4NEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjKifn0/bzlyymFphk5mP0EFqf
W4PCHIP4Wmz2i7nc2FQFAadLS/MPj0i0i4ohnFzVEQUw+SFoGd/qKigkPAv23p2N
RC3Zm3lNZG7abqZV6oDwqEHdj1wvVjm7ApySaxSktfHwv4V2dmDqNfwQAqaVJWtx
tTcHhsjzCygoTXInsh5wEVrDFZJYhXFpjfmHt/cBGutLtwAkU66JbbXAtBGd4bIu
E3g2mclj413IadoJ0cMbDJD8AS7G0Cbt9O2VTMStYSNZiC6tOWgH8vaJWrX57rFP
MhCNEJo8nzi7tEVnzCTZ/VHvyUJrHAob4/rvuiZeNMQUnU9huDJjxf35bpqtAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUq3NObERA3iPY1MunwBOu2wbCuE0wHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMTM0MzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNePMA0GCSqG
SIb3DQEBCwUAA4IBAQAHCoGoggFYLO4ieyWsKN3D+eeROGqebTUrL5H0Z/2DU+4R
5nyezhZa9MlYU+KtLnvAPbDzFA7SaXfnMjIjXxP+PePc0T3Sc4FrzhLVO8eEs6vn
71na+IPc2X9TKBeP42vP+aZUE3x1njLJSYZJUIBaOw0Q27ZleKv55yxDmScU8qD7
JmC+n2rB6GwNfJXwidKQxWzvEA47DSAawO7jkCeZbD0j288d8LRYgsVKuGPVJ03q
muvphHlDiz9FN5hpIxMf4pRbKsLe1Ei2v1cokCdrdx3U683/8oIJvtmPbq+WAcAh
yzENwvP7wRkb17Ad0BHMxCHQtW/QgVwyDUhI1XDs
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net