Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137322e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3137322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: sbWFNGKeFnFzCVRuogXg1ZipCZGopifOkcCHUdSbRS0=
Subject key identifier: 29:05:0E:5E:EE:B4:27:C1:DB:39:8B:6B:DF:CE:E9:70:F2:B1:AD:E9
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 73CE7B26F8C6F7773B2F9C3F7C21226EAB3D0D9B
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137322e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 17:00:01 +0000
ROA not before: Thu 07 Apr 2022 16:55:01 +0000
ROA not after: Thu 06 Apr 2023 17:00:01 +0000
asID: 24203
IP address blocks: 112.215.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:ce:7b:26:f8:c6:f7:77:3b:2f:9c:3f:7c:21:22:6e:ab:3d:0d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:01 2022 GMT
Not After : Apr 6 17:00:01 2023 GMT
Subject: CN=29050E5EEEB427C1DB398B6BDFCEE970F2B1ADE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:39:d3:97:ae:ee:b4:93:48:bd:7e:f5:ea:
35:1b:c2:1b:2f:b8:63:8a:4c:4f:b8:eb:1c:2d:d9:
00:07:b4:3a:36:72:98:b2:9a:24:6c:8d:ec:3a:85:
b2:78:83:d6:51:e2:9c:32:27:73:2b:59:dd:d1:be:
5e:8b:61:42:7c:80:ab:25:3f:93:cb:28:04:12:6e:
a1:c3:2e:d0:cd:ed:35:33:0f:4b:c3:cc:a6:b6:af:
c5:5d:56:7f:7a:5e:94:87:0f:40:07:39:e2:6f:1e:
df:67:3f:8f:57:3a:fa:1f:c6:e9:e7:86:d9:40:a9:
f9:9f:f0:c4:87:19:c0:1f:6d:9f:a2:6d:f2:34:e2:
19:c0:96:7a:04:6f:ce:73:5a:34:0f:57:0c:f5:f4:
79:89:e8:2f:62:bb:6e:4e:cc:44:37:ce:10:c5:b6:
9f:0e:62:04:dd:c8:6c:d7:63:3f:49:ab:02:65:8d:
07:fd:c8:cf:84:00:e8:93:fd:4e:05:90:1a:83:41:
26:c3:e8:74:7d:63:dc:a1:70:95:85:66:7c:e0:e2:
e2:c5:27:d4:c6:05:14:9f:ef:09:c6:8e:89:4d:37:
87:b7:73:42:57:d0:19:fa:e5:f5:97:cd:64:69:f8:
ee:76:6d:d1:ff:7b:df:ac:3e:e2:1a:b7:69:45:49:
91:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:05:0E:5E:EE:B4:27:C1:DB:39:8B:6B:DF:CE:E9:70:F2:B1:AD:E9
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.172.0/24
Signature Algorithm: sha256WithRSAEncryption
68:57:ff:b7:23:ad:98:31:63:a3:1f:71:8c:85:78:dd:77:21:
13:de:cd:65:da:f2:40:84:f4:f1:bf:8f:a4:09:09:3b:d1:b3:
ec:d3:39:de:fe:03:75:f3:64:6e:6f:b8:0c:9e:43:ed:80:97:
d8:2d:39:ee:da:c2:8a:f7:2a:f0:0f:7a:44:c2:7b:7e:db:2f:
ac:d5:06:f4:89:d9:29:fb:44:d0:98:c6:74:5f:bd:0f:6e:a8:
9b:8e:a3:9f:fb:d9:60:2b:83:f7:9c:a3:ca:50:4b:57:aa:36:
59:94:b1:d4:3c:1b:90:cd:d2:b6:3d:96:df:96:c8:3d:f4:7a:
0a:fd:0f:2c:27:a1:f6:97:36:02:99:68:98:12:6d:23:39:df:
6a:bb:4d:44:e4:4d:cf:3b:a9:69:ef:8c:51:c2:41:a6:61:7d:
f6:3d:a0:84:35:2d:98:ea:43:24:93:9a:75:8e:32:66:95:9b:
5c:e8:d4:ca:c6:79:04:5c:89:4b:85:63:db:2b:df:6b:05:38:
a9:0e:65:a2:f4:fe:16:b0:97:3a:64:8c:4b:2f:d6:81:a3:20:
aa:9c:07:da:8a:f4:c0:e1:65:c9:cb:b5:2c:2e:3d:65:fc:07:
3f:6c:51:29:29:6d:87:e8:b7:dd:c4:30:ee:f8:65:c7:7d:82:
91:9e:99:64
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUc857JvjG93c7L5w/fCEibqs9DZswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcxNjU1MDFaFw0yMzA0MDYxNzAwMDFaMDMxMTAvBgNV
BAMTKDI5MDUwRTVFRUVCNDI3QzFEQjM5OEI2QkRGQ0VFOTcwRjJCMUFERTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtNznTl67utJNIvX716jUbwhsv
uGOKTE+46xwt2QAHtDo2cpiymiRsjew6hbJ4g9ZR4pwyJ3MrWd3Rvl6LYUJ8gKsl
P5PLKAQSbqHDLtDN7TUzD0vDzKa2r8VdVn96XpSHD0AHOeJvHt9nP49XOvofxunn
htlAqfmf8MSHGcAfbZ+ibfI04hnAlnoEb85zWjQPVwz19HmJ6C9iu25OzEQ3zhDF
tp8OYgTdyGzXYz9JqwJljQf9yM+EAOiT/U4FkBqDQSbD6HR9Y9yhcJWFZnzg4uLF
J9TGBRSf7wnGjolNN4e3c0JX0Bn65fWXzWRp+O52bdH/e9+sPuIat2lFSZFvAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUKQUOXu60J8HbOYtr387pcPKxrekwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMTM3MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNesMA0GCSqG
SIb3DQEBCwUAA4IBAQBoV/+3I62YMWOjH3GMhXjddyET3s1l2vJAhPTxv4+kCQk7
0bPs0zne/gN182Rub7gMnkPtgJfYLTnu2sKK9yrwD3pEwnt+2y+s1Qb0idkp+0TQ
mMZ0X70PbqibjqOf+9lgK4P3nKPKUEtXqjZZlLHUPBuQzdK2PZbflsg99HoK/Q8s
J6H2lzYCmWiYEm0jOd9qu01E5E3PO6lp74xRwkGmYX32PaCENS2Y6kMkk5p1jjJm
lZtc6NTKxnkEXIlLhWPbK99rBTipDmWi9P4WsJc6ZIxLL9aBoyCqnAfaivTA4WXJ
y7UsLj1l/Ac/bFEpKW2H6LfdxDDu+GXHfYKRnplk
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net