Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3135382e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3135382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: sB0UCGuWXJqDTMhTfGhf83XxmCY2uG6f8FiJOk1Qdkw=
Subject key identifier: 8E:85:F3:B6:49:3D:93:1E:4A:80:29:55:7A:38:36:93:47:CB:28:59
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 7ACDAD9521AED976D86635579E984B2D75ED371E
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3135382e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:01 +0000
ROA not before: Thu 07 Apr 2022 07:55:01 +0000
ROA not after: Thu 06 Apr 2023 08:00:01 +0000
asID: 24203
IP address blocks: 112.215.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:cd:ad:95:21:ae:d9:76:d8:66:35:57:9e:98:4b:2d:75:ed:37:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:01 2022 GMT
Not After : Apr 6 08:00:01 2023 GMT
Subject: CN=8E85F3B6493D931E4A8029557A38369347CB2859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ef:c3:0b:1d:51:8e:67:f7:5e:0a:a0:96:15:
04:ee:ee:3b:5e:26:51:09:ef:53:51:a5:92:b4:87:
3f:a0:30:cd:aa:c9:e7:61:71:23:a4:39:70:96:1a:
7f:44:cd:ff:9c:e1:78:df:91:e6:a7:1d:d7:51:11:
9c:18:57:4a:65:4d:13:1b:0a:9f:44:c7:f2:60:48:
63:4f:d6:6e:b8:d5:f0:08:a0:d9:72:1e:0e:81:85:
7d:92:59:3f:b1:5e:e0:89:38:65:5b:61:1a:90:3d:
2d:d7:ae:8b:86:33:42:58:bc:4a:71:ae:27:6f:f0:
23:52:9d:e0:b4:fc:d1:a5:07:71:3c:5e:16:ba:f5:
0c:52:3a:73:3b:12:ee:7d:c4:25:67:bc:47:11:38:
d6:e6:14:62:9d:ad:97:41:82:b2:34:5a:2f:03:ac:
86:ad:ff:22:59:a4:71:df:03:4b:6c:f2:86:ec:10:
31:ca:49:fd:0d:f0:b7:c3:1f:bd:a5:f3:99:23:dd:
ec:f8:b2:03:27:03:7e:c6:60:7d:16:ef:d1:53:86:
fe:1c:d6:1c:82:34:5c:3e:2a:06:3e:0d:c1:6d:4a:
96:fe:66:6e:42:ad:ad:3f:c5:fd:a4:01:f3:ac:cb:
c4:95:fb:7a:63:4a:16:9d:e9:a8:37:34:6d:90:7c:
56:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:85:F3:B6:49:3D:93:1E:4A:80:29:55:7A:38:36:93:47:CB:28:59
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3135382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.158.0/24
Signature Algorithm: sha256WithRSAEncryption
72:12:29:e5:f7:ab:9f:36:a4:fe:25:0e:0f:e6:4b:ad:e1:f3:
bc:ac:b1:b5:e7:33:ff:51:f3:e9:86:e0:49:8f:dd:58:81:25:
05:7a:6c:c1:2f:ac:9b:44:cc:29:34:a7:f2:08:ca:d8:77:0f:
fc:03:8c:ee:50:61:f1:0c:da:2d:4f:cd:81:53:16:ee:13:fd:
c7:7d:a2:0c:22:2b:f3:33:bb:a2:33:b6:dc:18:5a:61:5e:18:
3d:0d:97:43:b3:d5:ea:2e:fb:10:84:98:db:70:0a:9f:9d:ba:
92:6b:09:58:34:fa:ac:a6:e5:a2:d2:97:b3:cd:9b:ba:fc:14:
20:67:0e:c9:5c:8f:c2:b7:6f:82:1a:eb:c6:df:53:90:c7:3c:
12:a1:66:63:ec:1a:44:6b:df:b0:f5:de:ac:df:c3:6f:43:cc:
28:af:60:3e:e1:3b:12:2a:79:20:31:93:50:38:c2:a0:fc:6d:
a3:8d:5c:8a:4f:0d:2a:86:f3:ac:8d:c4:80:1b:9c:be:56:dd:
18:bc:65:0e:01:0c:bc:21:77:09:11:e4:0a:27:b9:96:6b:35:
0d:88:41:87:fc:b9:f2:19:92:ed:a7:35:93:40:a9:45:6b:a4:
85:de:67:30:a7:f9:b9:c0:11:cb:a6:c1:ad:4c:34:58:c4:9e:
f7:0b:bc:7f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUes2tlSGu2XbYZjVXnphLLXXtNx4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcwNzU1MDFaFw0yMzA0MDYwODAwMDFaMDMxMTAvBgNV
BAMTKDhFODVGM0I2NDkzRDkzMUU0QTgwMjk1NTdBMzgzNjkzNDdDQjI4NTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx78MLHVGOZ/deCqCWFQTu7jte
JlEJ71NRpZK0hz+gMM2qyedhcSOkOXCWGn9Ezf+c4XjfkeanHddREZwYV0plTRMb
Cp9Ex/JgSGNP1m641fAIoNlyHg6BhX2SWT+xXuCJOGVbYRqQPS3XrouGM0JYvEpx
ridv8CNSneC0/NGlB3E8Xha69QxSOnM7Eu59xCVnvEcRONbmFGKdrZdBgrI0Wi8D
rIat/yJZpHHfA0ts8obsEDHKSf0N8LfDH72l85kj3ez4sgMnA37GYH0W79FThv4c
1hyCNFw+KgY+DcFtSpb+Zm5Cra0/xf2kAfOsy8SV+3pjShad6ag3NG2QfFYXAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUjoXztkk9kx5KgClVejg2k0fLKFkwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMTM1MzgyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNeeMA0GCSqG
SIb3DQEBCwUAA4IBAQByEinl96ufNqT+JQ4P5kut4fO8rLG15zP/UfPphuBJj91Y
gSUFemzBL6ybRMwpNKfyCMrYdw/8A4zuUGHxDNotT82BUxbuE/3HfaIMIivzM7ui
M7bcGFphXhg9DZdDs9XqLvsQhJjbcAqfnbqSawlYNPqspuWi0pezzZu6/BQgZw7J
XI/Ct2+CGuvG31OQxzwSoWZj7BpEa9+w9d6s38NvQ8wor2A+4TsSKnkgMZNQOMKg
/G2jjVyKTw0qhvOsjcSAG5y+Vt0YvGUOAQy8IXcJEeQKJ7mWazUNiEGH/LnyGZLt
pzWTQKlFa6SF3mcwp/m5wBHLpsGtTDRYxJ73C7x/
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net