Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e31392e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e31392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: ssDki6mIs4tkPsuU9t34hJZsWpgXn0OR4i6oATBoXgk=
Subject key identifier: 96:12:2C:C3:59:A2:57:6C:95:3D:50:A5:8B:5A:11:32:B0:83:95:CF
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 66CDAB85A2FECEAC8417D6051508F29119A1A30E
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e31392e302f32342d3234203d3e203234323033.roa
Signing time: Fri 25 Mar 2022 06:00:01 +0000
ROA not before: Fri 25 Mar 2022 05:55:01 +0000
ROA not after: Fri 24 Mar 2023 06:00:01 +0000
asID: 24203
IP address blocks: 112.215.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:cd:ab:85:a2:fe:ce:ac:84:17:d6:05:15:08:f2:91:19:a1:a3:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 25 05:55:01 2022 GMT
Not After : Mar 24 06:00:01 2023 GMT
Subject: CN=96122CC359A2576C953D50A58B5A1132B08395CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b9:b7:ce:5a:d9:9c:19:26:5a:08:d6:e9:86:
c2:6a:45:3f:6f:fb:25:bc:88:b6:26:38:59:86:d8:
c7:8b:8d:a8:23:28:7b:06:d6:35:73:36:79:d4:50:
6f:5b:10:e6:79:2d:98:c8:f2:b4:f1:d3:51:02:80:
57:38:9e:7f:06:5c:02:76:52:08:aa:90:88:10:f0:
8c:e2:c1:7d:df:b6:12:85:d9:c1:3e:9b:c7:96:85:
73:d7:5e:f5:83:22:3c:cb:4c:23:e3:25:4c:9a:43:
96:51:3a:e4:25:b0:e5:93:2f:7c:77:f3:5f:90:c4:
86:d8:a1:60:31:5a:d6:d6:22:c4:64:20:2f:c9:1f:
64:58:45:3f:13:fd:3b:4b:df:34:4b:32:ba:7d:42:
e2:04:6d:47:bf:df:62:12:a8:b7:5a:3c:66:b0:68:
9d:da:09:d2:1c:7c:04:2b:5a:9b:f8:94:ff:57:09:
9e:04:5f:8c:bf:cc:35:e7:72:86:f4:df:87:66:38:
58:be:ab:3b:ac:2f:89:29:ec:a7:81:64:1e:12:c7:
07:9d:42:3a:a4:d9:b9:4e:81:90:c8:d1:65:19:9d:
2b:ef:62:c6:74:53:92:7a:03:76:66:26:13:7b:6c:
0b:c1:a4:ad:62:f6:d4:7b:3f:89:03:6e:12:11:b1:
7d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:12:2C:C3:59:A2:57:6C:95:3D:50:A5:8B:5A:11:32:B0:83:95:CF
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e31392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.19.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:49:53:19:40:04:c0:96:ef:a9:7d:22:25:06:d1:82:fe:c2:
dd:c4:6e:53:49:3e:7d:77:70:11:42:b7:0a:87:e4:60:09:36:
96:88:bf:d7:d1:5b:cc:35:eb:67:79:06:b7:3f:ee:97:a3:6a:
60:d3:21:c6:a9:0d:5d:fe:54:96:e8:6d:5a:c0:8f:a9:37:4b:
c6:ae:cc:21:ab:59:d1:ae:a2:81:53:96:e6:81:8e:f0:4a:c3:
c8:26:bf:bd:41:d5:d6:f0:06:d9:52:75:cc:e3:cb:e3:fe:03:
c7:01:a4:48:f7:5c:cb:ae:5c:77:2f:38:df:39:90:ae:9d:09:
d7:e9:a1:25:ab:c8:a7:34:02:93:49:da:e2:cb:a6:29:6b:4f:
70:a3:f9:aa:ba:bd:7f:04:dc:bf:aa:1a:5f:d8:ab:07:b2:36:
83:3e:2b:28:e4:f2:4f:c2:73:39:4c:17:14:1e:8e:69:1e:1d:
7f:5d:e2:1a:73:0a:cb:d4:dc:7e:a0:32:9f:f4:64:06:ee:36:
48:a3:c2:7b:f9:40:76:12:37:a1:aa:be:51:e6:92:7b:c0:7a:
7a:36:97:c2:01:84:ed:2b:17:cd:77:b5:96:f3:9a:ff:ed:21:
64:3c:9a:28:78:9e:ca:23:8a:b4:4f:f5:64:b1:0b:7c:73:48:
7b:e7:cc:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net