Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139312e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139312e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: nPnUldKp/sIuUysGkvuApabTz9ephLmMKZWYohIy690=
Subject key identifier: E3:08:8C:FC:3E:B1:F8:9E:20:BF:71:60:F4:96:73:8A:8E:84:37:04
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 49B2DF47567CDDCE1C43995D5537ED82B2D64F81
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139312e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:00 +0000
ROA not before: Thu 07 Apr 2022 16:55:00 +0000
ROA not after: Thu 06 Apr 2023 17:00:00 +0000
asID: 17885
IP address blocks: 112.215.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:b2:df:47:56:7c:dd:ce:1c:43:99:5d:55:37:ed:82:b2:d6:4f:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:00 2022 GMT
Not After : Apr 6 17:00:00 2023 GMT
Subject: CN=E3088CFC3EB1F89E20BF7160F496738A8E843704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:41:69:31:3a:18:e3:49:ea:7d:f8:41:2e:25:
ba:a1:1d:34:ef:13:49:18:14:60:16:8d:97:5d:c7:
a3:cf:00:0c:98:63:7c:3f:eb:a8:22:fc:da:d3:d3:
27:a8:cf:b7:c7:03:95:84:d2:fd:a2:d8:8a:08:1f:
77:9b:7d:cd:5a:b4:2d:75:e6:c1:2a:9f:9d:24:b4:
a2:0f:58:2e:89:f3:15:d9:10:31:ac:ac:ab:35:b9:
76:8f:a4:2b:11:b2:e3:45:d4:e7:1a:c8:df:e2:aa:
eb:85:f3:b1:d2:43:ff:27:99:be:65:26:34:39:51:
63:ce:f1:fe:44:a9:e0:c1:d2:27:75:67:62:8a:69:
da:db:1d:c0:2b:bd:8c:47:b7:66:71:f3:6f:74:f7:
53:14:39:d1:89:0c:cf:35:a5:60:bb:2b:36:9d:53:
e3:e0:25:c3:4a:15:e8:f3:8a:7b:7b:70:99:d2:38:
7b:36:ed:55:ff:3e:e9:d4:dd:07:59:16:58:f9:de:
30:3a:f4:69:26:aa:2a:b8:53:37:bb:8d:d7:20:06:
fa:1a:56:0f:cf:4c:5d:9c:10:b3:20:03:b0:1c:45:
0d:91:d0:6b:b3:e4:fc:02:7c:40:ad:0c:85:3e:7f:
5a:15:c4:03:f0:f6:a4:bc:e0:96:cc:86:3e:f9:e0:
95:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:08:8C:FC:3E:B1:F8:9E:20:BF:71:60:F4:96:73:8A:8E:84:37:04
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139312e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.191.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b0:0a:66:9a:a4:bc:14:d8:a8:55:0f:60:da:0e:49:62:ce:
46:ab:4a:7e:8d:cf:42:84:50:fd:d4:29:7b:fb:d7:fc:d7:14:
fb:26:3b:df:46:3e:c3:3c:79:93:54:02:4d:ba:8d:16:44:90:
de:95:b6:b8:bb:31:3a:71:2e:5c:c1:1d:a3:8d:40:82:9c:f6:
b0:15:3f:8a:33:dd:10:22:b6:b4:83:10:fe:68:1c:fe:16:fc:
7d:9c:c2:c5:90:bb:83:66:ec:dc:d6:db:fa:3d:cd:f9:a5:ba:
f8:7d:17:75:74:fd:c5:bf:c6:70:f0:d9:21:ac:36:a3:c6:e3:
47:5b:fe:b0:7c:b6:6e:7e:39:26:bc:32:43:c4:62:32:9d:e4:
a6:2a:ed:36:43:63:4e:5c:80:3e:23:db:fd:ed:b1:b7:cc:f4:
64:c3:4b:30:d0:b4:a4:65:b0:4b:d1:b7:48:ac:e4:32:7a:6f:
1f:15:da:29:11:e6:e0:6f:59:28:e9:a4:43:0a:33:15:45:12:
92:8e:51:e3:20:ad:40:5b:46:be:65:30:93:0a:b0:a8:7d:94:
8c:0f:6c:5b:ec:1d:88:22:72:ea:aa:34:89:f4:79:0c:b3:3a:
e6:0f:ab:76:6d:ca:bc:5f:e4:77:99:74:7b:9c:7a:d8:4b:06:
9c:95:95:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net