Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3135322e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3135322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Q1RBVpjNuYpmOdUyCVG/MaMBu3fpCGXmgdfcYTLiLHY=
Subject key identifier: A4:CE:68:FA:3E:C4:EE:29:21:6C:16:E9:A5:3F:72:65:69:D0:F3:F6
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5C35531692108A8D5D1E088E2013DE9210672F89
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3135322e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:01 +0000
ROA not before: Thu 07 Apr 2022 07:55:01 +0000
ROA not after: Thu 06 Apr 2023 08:00:01 +0000
asID: 24203
IP address blocks: 112.215.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:35:53:16:92:10:8a:8d:5d:1e:08:8e:20:13:de:92:10:67:2f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:01 2022 GMT
Not After : Apr 6 08:00:01 2023 GMT
Subject: CN=A4CE68FA3EC4EE29216C16E9A53F726569D0F3F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fc:d7:c5:57:54:58:da:89:18:67:9a:38:43:
87:3c:c3:78:41:74:65:96:3c:12:69:a6:c7:83:57:
4f:94:a2:1b:b5:58:e2:19:3d:12:24:b4:ef:27:2d:
4d:48:0f:c4:29:9a:82:7d:23:9d:2b:28:65:35:31:
70:f1:91:d6:37:a4:21:c6:87:a6:8b:96:23:bd:b3:
26:1b:04:24:74:5b:b4:41:14:eb:e0:30:4e:fd:50:
51:7f:23:ee:93:be:cc:71:c4:e1:aa:f7:03:9e:11:
3b:51:32:7d:2d:74:73:5f:6e:1f:6f:67:59:31:f9:
54:2a:28:7b:40:71:c1:82:59:9f:7e:f7:dd:d2:35:
c3:02:32:4d:a6:0b:b0:86:e7:2d:69:f2:c3:5d:66:
d1:03:ab:b7:fe:5e:34:b5:a2:ca:29:36:44:83:57:
6e:a7:e0:83:72:f0:9e:4c:ea:85:d3:50:2d:ee:85:
04:46:1d:0d:e0:32:f1:8e:6f:89:c5:45:ca:ff:14:
b4:b2:26:89:80:47:73:9d:9d:b7:1a:5a:6c:04:b6:
0d:2f:42:50:e6:43:d8:34:46:a4:62:f8:7d:c5:72:
ed:e3:8e:98:d4:61:6e:6e:15:68:3a:58:e2:ea:87:
1f:e9:a8:ff:8c:f4:54:d5:17:6e:7a:f0:2a:dd:9f:
7f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CE:68:FA:3E:C4:EE:29:21:6C:16:E9:A5:3F:72:65:69:D0:F3:F6
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3135322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.152.0/24
Signature Algorithm: sha256WithRSAEncryption
43:9f:76:5a:6e:03:bb:c5:41:a7:4f:6a:ca:d3:c2:ee:c3:36:
98:e3:1e:5e:c4:86:65:2c:67:2b:14:b8:fd:bc:26:e6:2c:2b:
d2:22:3a:0e:dc:cc:d2:65:3c:6e:75:25:50:a1:a8:b3:f1:81:
c3:7a:a1:f6:85:14:71:bf:c0:9e:24:7d:f0:e0:7a:64:5b:84:
f0:0f:eb:ae:13:1e:a3:ab:be:f6:90:16:9a:69:4f:ff:5f:c3:
f0:4b:12:6d:6d:f2:03:e4:a2:9f:6b:4d:96:3a:7e:94:0e:7b:
0b:60:5f:9f:c9:57:6e:b2:a8:2d:b9:b1:8d:0d:79:7a:52:95:
4a:56:93:0e:c1:47:84:21:da:ed:0d:67:da:fb:67:69:ee:a9:
55:6a:06:4f:24:0f:31:b4:b7:9c:44:80:41:2e:c9:a3:4e:8d:
9b:3b:91:6d:eb:12:4f:65:90:99:6f:82:2e:08:03:3a:c7:69:
52:12:88:56:03:87:41:b1:69:39:96:5b:ab:3a:ed:e3:88:60:
78:1f:59:8d:61:e8:58:2b:ad:41:65:a5:4e:e2:02:a9:99:33:
f2:8c:00:63:da:68:d8:74:15:c7:e9:a1:ff:63:e4:26:bd:d1:
8e:8c:49:e5:34:a2:27:9a:9a:1c:01:28:92:d3:d5:4d:5a:e3:
34:75:48:7c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUXDVTFpIQio1dHgiOIBPekhBnL4kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcwNzU1MDFaFw0yMzA0MDYwODAwMDFaMDMxMTAvBgNV
BAMTKEE0Q0U2OEZBM0VDNEVFMjkyMTZDMTZFOUE1M0Y3MjY1NjlEMEYzRjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv/NfFV1RY2okYZ5o4Q4c8w3hB
dGWWPBJppseDV0+Uohu1WOIZPRIktO8nLU1ID8QpmoJ9I50rKGU1MXDxkdY3pCHG
h6aLliO9syYbBCR0W7RBFOvgME79UFF/I+6TvsxxxOGq9wOeETtRMn0tdHNfbh9v
Z1kx+VQqKHtAccGCWZ9+993SNcMCMk2mC7CG5y1p8sNdZtEDq7f+XjS1osopNkSD
V26n4INy8J5M6oXTUC3uhQRGHQ3gMvGOb4nFRcr/FLSyJomAR3OdnbcaWmwEtg0v
QlDmQ9g0RqRi+H3Fcu3jjpjUYW5uFWg6WOLqhx/pqP+M9FTVF2568Crdn3/lAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUpM5o+j7E7ikhbBbppT9yZWnQ8/YwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMTM1MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNeYMA0GCSqG
SIb3DQEBCwUAA4IBAQBDn3ZabgO7xUGnT2rK08LuwzaY4x5exIZlLGcrFLj9vCbm
LCvSIjoO3MzSZTxudSVQoaiz8YHDeqH2hRRxv8CeJH3w4HpkW4TwD+uuEx6jq772
kBaaaU//X8PwSxJtbfID5KKfa02WOn6UDnsLYF+fyVdusqgtubGNDXl6UpVKVpMO
wUeEIdrtDWfa+2dp7qlVagZPJA8xtLecRIBBLsmjTo2bO5Ft6xJPZZCZb4IuCAM6
x2lSEohWA4dBsWk5llurOu3jiGB4H1mNYehYK61BZaVO4gKpmTPyjABj2mjYdBXH
6aH/Y+QmvdGOjEnlNKInmpocASiS09VNWuM0dUh8
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net