Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139302e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139302e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: OVHcPQachG+0RVNEaWvi/Ken0i0W9czLx6n9e2W/25k=
Subject key identifier: 55:8F:B5:36:1A:86:E5:54:2B:D6:A9:61:A6:AA:2F:68:1E:A1:40:34
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 2DE9E84AD0AED25EB54D4A58C80842BC94466C10
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139302e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:00 +0000
ROA not before: Thu 07 Apr 2022 16:55:00 +0000
ROA not after: Thu 06 Apr 2023 17:00:00 +0000
asID: 17885
IP address blocks: 112.215.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:e9:e8:4a:d0:ae:d2:5e:b5:4d:4a:58:c8:08:42:bc:94:46:6c:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:00 2022 GMT
Not After : Apr 6 17:00:00 2023 GMT
Subject: CN=558FB5361A86E5542BD6A961A6AA2F681EA14034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f9:9e:f9:dc:9b:ca:70:ca:bf:a1:67:97:c1:
bf:34:e9:41:85:a4:37:02:7a:16:90:ee:a6:e4:c4:
42:ca:eb:d2:a3:7c:06:8c:9f:e3:eb:67:5b:90:d0:
9f:da:60:cd:a3:46:fa:81:58:16:70:f9:48:14:27:
be:30:c9:ca:f1:f2:01:f7:77:9b:42:97:ff:76:21:
dc:12:e8:b4:ab:6d:d8:d6:96:69:3c:3f:41:d3:8d:
a4:66:bf:c3:99:59:78:3e:68:c1:cf:ad:ad:90:1a:
5d:38:58:f4:b8:f9:82:fc:b0:58:b5:83:ac:dd:55:
39:af:f1:ce:27:02:d4:f2:c2:4b:28:40:b2:49:9e:
ef:24:46:0b:36:db:0a:10:7c:48:d5:05:38:b6:94:
64:1e:40:df:d8:f6:0c:54:21:7e:55:53:6f:6b:10:
e8:7c:61:a0:d1:de:40:19:bc:c9:a9:3d:ab:ca:c6:
2b:0a:2b:4e:3e:dd:96:db:15:c2:5c:d2:45:ef:49:
64:7b:2c:85:3d:3e:e0:8e:c7:1e:6c:fb:c6:aa:26:
58:31:c0:4b:50:a4:e5:b5:89:f9:bd:da:cf:ab:41:
ca:bc:7b:eb:82:39:cb:88:bf:28:7e:9f:75:1f:6e:
3c:40:3a:e7:7d:4e:03:89:fe:f3:00:f9:be:e0:62:
4d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8F:B5:36:1A:86:E5:54:2B:D6:A9:61:A6:AA:2F:68:1E:A1:40:34
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139302e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.190.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c4:22:2a:b3:c1:4e:f0:85:47:08:2d:3b:d7:29:34:9e:68:
d6:08:1d:f4:35:04:f0:69:67:ef:3c:7f:00:7b:8f:a8:a1:0c:
e2:74:19:52:0b:62:88:b3:db:ac:2e:be:86:4f:41:e8:bc:ab:
82:5c:d0:e8:c0:37:af:8c:c9:6e:59:c2:e2:56:e7:8b:03:8b:
ea:d6:1e:13:bd:58:1b:76:c0:9a:8d:09:70:ca:6d:81:e8:9b:
ac:61:c7:17:81:5a:26:ba:53:a7:0f:3d:3a:04:18:e9:e0:07:
81:5e:1f:aa:0b:80:7c:89:78:50:fe:1a:34:fc:58:fe:59:5e:
90:48:14:64:e3:68:62:a8:b1:36:e5:2e:8c:47:d0:5f:d5:d8:
92:47:3a:a9:18:9a:79:8c:ee:96:09:3a:a6:fb:85:e3:ab:ae:
84:51:11:a0:0c:dd:32:2d:05:a5:55:cf:b6:c6:44:31:a2:3c:
0f:be:6b:aa:2a:3e:0c:d4:31:d9:1a:be:e9:44:3d:01:83:dd:
65:46:2f:f9:f1:17:49:7c:2c:f6:47:f3:a7:0e:56:19:0e:7b:
da:86:18:1b:0e:63:0f:41:8d:0a:0a:2e:3b:58:4b:51:2d:64:
0a:68:85:35:5a:02:a1:9a:ac:0f:55:e8:f0:ff:ef:8e:54:2c:
89:7e:6b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net