Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137352e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3137352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 2HxlGpdylFl7yB9Mdm4c90MhrYN+kH2g8/+8ppSY7Ys=
Subject key identifier: D4:DC:3A:57:8E:AB:BE:F3:AF:67:14:BC:19:D6:98:63:DE:B8:3B:68
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 7B90683B06C7D0468530797523AD661CFA0FA815
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137352e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 17:00:01 +0000
ROA not before: Thu 07 Apr 2022 16:55:01 +0000
ROA not after: Thu 06 Apr 2023 17:00:01 +0000
asID: 24203
IP address blocks: 112.215.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:90:68:3b:06:c7:d0:46:85:30:79:75:23:ad:66:1c:fa:0f:a8:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:01 2022 GMT
Not After : Apr 6 17:00:01 2023 GMT
Subject: CN=D4DC3A578EABBEF3AF6714BC19D69863DEB83B68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f1:d5:f1:9d:37:2c:c0:b4:10:01:ff:5e:77:
be:9b:c5:18:bc:17:54:5d:4f:41:77:54:da:7c:66:
b0:8d:d3:32:10:99:ec:f9:99:4a:07:bb:3c:66:8d:
d3:ab:03:c1:b7:a1:d7:d8:55:7b:04:1f:f5:a6:d7:
63:37:56:26:b8:8d:de:52:68:77:6c:2f:8b:6e:a5:
ae:ec:39:d8:87:e5:55:a7:00:c1:16:66:4c:ab:aa:
f7:c6:23:3a:82:0c:cd:08:83:40:4c:75:b7:3f:ff:
d2:82:f6:1f:95:ca:d4:a5:34:32:9e:11:c6:e5:89:
43:93:ec:51:d6:cc:c3:e5:d2:82:de:19:8b:71:78:
94:4f:73:3c:27:cb:bf:cd:6e:f4:ba:92:b7:06:b0:
24:10:20:9c:f8:e8:fb:a1:a5:f0:9a:56:b1:59:27:
12:f4:94:f4:af:dc:a7:14:c9:56:84:0b:f7:af:0a:
b4:0a:6d:1d:28:73:e6:80:3c:14:57:8e:3e:c5:f6:
ce:25:a5:67:da:b1:54:49:18:3e:f6:2b:7c:03:a5:
e7:51:58:0e:58:de:40:5b:3a:e0:58:d7:72:6b:e1:
47:b9:86:23:9f:26:34:fa:4d:d7:d2:c6:74:66:7b:
5b:c4:f1:5d:06:6b:67:16:2d:1e:53:ef:b5:05:79:
c2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DC:3A:57:8E:AB:BE:F3:AF:67:14:BC:19:D6:98:63:DE:B8:3B:68
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3137352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.175.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:d0:a5:0b:83:72:ad:3a:12:47:68:5b:e5:e7:b7:fe:b9:d5:
48:e0:e7:8e:e5:b1:7a:5d:1b:14:7b:69:90:0c:f2:77:1b:45:
2e:5c:8a:b7:c3:0e:3b:ff:45:f4:d7:89:34:3e:74:c2:d1:c7:
54:25:b3:10:65:b9:73:98:5a:75:45:ac:18:08:0f:57:18:bf:
30:81:ec:d2:08:e7:19:1b:8d:75:82:9d:8c:6d:f5:49:b7:49:
3f:5e:6a:ab:e7:a2:70:0a:a2:87:81:4e:7a:e4:f3:aa:ed:83:
1f:72:70:82:de:28:6e:76:bd:c2:07:0b:8d:b8:86:30:2b:15:
83:c4:d9:a2:4f:bc:4b:e7:fa:f8:89:0e:61:27:82:10:58:1f:
bf:b3:d7:cc:c5:dd:25:0a:0d:f7:b2:97:7c:4b:f4:80:69:6f:
1c:59:22:e8:6e:2e:95:10:fa:4f:65:b5:40:91:e4:1d:be:0c:
ed:49:bf:19:db:83:de:33:b3:f7:f4:df:f7:73:3f:bf:cb:74:
f8:8b:f4:ec:b1:10:ef:ff:4c:f2:95:95:c4:64:d0:5c:4a:d3:
9f:d0:88:89:16:07:84:1c:8d:5a:f8:64:29:11:66:40:dc:e0:
61:f5:b1:32:04:a9:56:70:d0:ac:39:12:87:77:0f:1f:52:eb:
03:88:a7:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net