Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137312e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3137312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 1L86asMcA0ZxPQeii7Ro2OkT5HJ2vAj6FyDS4Suj/yQ=
Subject key identifier: D5:2D:05:C4:B6:64:70:A8:37:E8:93:D3:B6:A4:B5:50:D4:CB:4A:7E
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 4AFA5E1ED1EA0F153172FC9D07CC3D8A82C4BD00
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137312e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 16:00:00 +0000
ROA not before: Thu 07 Apr 2022 15:55:00 +0000
ROA not after: Thu 06 Apr 2023 16:00:00 +0000
asID: 24203
IP address blocks: 112.215.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:fa:5e:1e:d1:ea:0f:15:31:72:fc:9d:07:cc:3d:8a:82:c4:bd:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 15:55:00 2022 GMT
Not After : Apr 6 16:00:00 2023 GMT
Subject: CN=D52D05C4B66470A837E893D3B6A4B550D4CB4A7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:55:57:6a:1c:b1:8a:dc:1f:e5:89:ba:62:f6:
68:75:4d:4d:d0:3b:c9:ad:e0:f5:c1:5e:ca:fa:32:
bf:61:b2:80:83:b6:0d:ad:a1:07:44:a2:ca:d8:d5:
5d:19:70:e1:dd:5e:5f:fd:a1:3a:1c:40:bb:a5:bb:
75:99:41:ab:a7:70:e4:ab:43:87:ba:e3:0d:a3:6c:
f1:61:a9:b9:8e:b3:61:43:ac:a8:1f:4b:d2:05:3d:
92:07:24:8e:8f:7b:5a:cf:a5:33:e0:4a:7c:43:b8:
fc:38:77:fa:da:28:86:e9:cf:4d:4c:98:9a:03:94:
3e:90:b2:c2:46:e7:a0:dc:4f:8f:38:67:92:d3:33:
fb:81:35:2f:4d:d6:67:22:f8:24:27:25:3f:b6:97:
bf:f3:f3:e8:6c:95:6c:1e:31:57:40:53:75:03:59:
ab:3c:6a:ea:c3:ca:5a:22:11:66:4f:82:f1:3c:92:
0e:e5:b9:bb:08:df:42:98:df:35:23:41:cc:f0:8c:
c4:e8:d3:bd:2f:e7:0d:33:8c:01:54:53:ef:fc:1e:
14:40:60:44:ee:7d:04:25:0a:f0:c1:0a:0d:79:b6:
f1:05:60:4a:8c:e0:d9:3b:72:9c:5b:67:cf:5d:a6:
b9:5f:92:4f:9f:c3:2a:03:df:0e:e3:8e:56:8e:bc:
59:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2D:05:C4:B6:64:70:A8:37:E8:93:D3:B6:A4:B5:50:D4:CB:4A:7E
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.171.0/24
Signature Algorithm: sha256WithRSAEncryption
46:77:07:6d:16:91:6c:d7:db:fa:32:d0:d9:7f:d0:8c:71:29:
0c:61:56:b3:52:bd:87:03:dd:99:71:f7:97:c1:f9:87:f0:1d:
1e:d6:22:c8:8f:98:6d:11:98:e1:a2:ec:c9:6d:4a:cc:50:59:
c7:eb:de:9d:bd:89:62:fe:3e:d6:35:5f:0b:cd:7b:9f:f1:46:
bd:69:1f:e5:3b:ad:52:f9:75:39:e5:f2:ed:21:1b:b6:16:06:
f1:dd:d3:77:c5:98:45:02:34:59:8f:dd:9e:a7:24:8f:3c:3e:
56:2f:02:a7:ce:4c:08:86:54:ea:ee:2c:33:e1:f0:d4:43:25:
e1:03:d9:32:6f:0e:b0:04:29:9e:4c:60:a4:ba:47:31:6c:cd:
60:f1:61:ff:33:68:b1:46:c4:e0:4a:f5:4a:d7:b5:4a:02:78:
2e:e9:2c:25:bc:4d:3f:24:47:b0:10:49:0b:3d:b8:99:0c:8d:
2b:45:f7:35:29:d7:43:fe:cf:ad:53:7b:ff:58:47:c5:f9:9b:
4b:ce:49:01:21:ec:88:41:5d:4a:e0:8e:02:c9:e3:e1:78:35:
71:3f:e9:a9:a8:63:97:a7:6c:8c:d0:fd:76:24:82:7d:a3:59:
1e:16:ff:87:fb:c9:ef:cb:e8:62:25:97:fb:20:8c:ac:c5:d2:
d3:a7:94:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net