Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139322e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139322e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 5O3ZfGgZAvwdHm1bdlHMIlp06syQwxqhgnHI5/Lkjzc=
Subject key identifier: AA:12:E9:83:1F:C5:37:A5:57:85:E9:50:31:12:BB:64:9F:0F:AE:75
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 265BF94E5824A98F60A71D1D51166E069E010EF8
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139322e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:02 +0000
ROA not before: Thu 07 Apr 2022 16:55:02 +0000
ROA not after: Thu 06 Apr 2023 17:00:02 +0000
asID: 17885
IP address blocks: 112.215.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:5b:f9:4e:58:24:a9:8f:60:a7:1d:1d:51:16:6e:06:9e:01:0e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:02 2022 GMT
Not After : Apr 6 17:00:02 2023 GMT
Subject: CN=AA12E9831FC537A55785E9503112BB649F0FAE75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:71:07:19:0c:16:f4:66:1a:bd:8a:c4:5c:a0:
0f:75:1f:67:45:e5:f2:2a:a2:4f:cd:a3:1b:2a:c5:
30:84:03:07:7c:6c:2c:de:76:25:a7:fb:e9:6f:77:
04:48:0a:81:16:48:6d:f7:42:ee:6a:b5:82:7d:ff:
b1:3d:36:65:1a:92:c1:d0:b0:9b:22:17:66:07:53:
51:0a:24:df:7e:81:dc:4d:8c:a9:3a:a5:e2:f8:6d:
f4:39:fd:06:72:3b:13:01:c6:c0:01:be:1a:99:89:
06:e0:39:3b:0f:ca:95:12:21:c1:4b:c7:dd:fa:2f:
9a:40:e0:53:b0:9b:fe:91:4b:83:5d:7d:c3:67:8c:
19:98:bd:0c:db:0f:c0:5c:21:f0:45:63:c7:e3:a5:
94:66:80:e9:21:2f:04:71:b3:fa:d6:d0:b7:21:e4:
6c:5f:8e:e6:aa:9b:af:36:b9:b5:71:ce:ac:aa:1c:
35:79:ec:b9:b6:d2:8d:2b:a0:c7:d5:8a:da:d4:19:
87:34:ef:8b:04:b7:35:a5:81:5f:76:04:f6:c1:a3:
b0:26:d3:62:34:fb:21:5a:e4:92:ba:7b:be:98:c0:
5b:22:01:ca:ad:9d:0f:c2:21:be:f8:d6:08:0a:d2:
06:82:58:aa:2e:65:42:8e:05:74:60:06:59:ec:c5:
66:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:12:E9:83:1F:C5:37:A5:57:85:E9:50:31:12:BB:64:9F:0F:AE:75
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139322e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.192.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:13:6e:a8:b0:67:8b:b9:19:16:52:db:de:de:1c:18:b7:fb:
73:af:e1:e9:df:f2:d1:40:4b:3c:24:af:86:82:6b:98:fb:67:
a1:1d:35:cc:14:41:4f:09:91:f8:12:8f:b6:02:0f:87:62:d1:
18:39:43:24:28:21:6b:6b:50:80:91:e6:05:49:97:c1:6f:5a:
cc:64:80:9b:b6:05:51:9f:c4:ef:31:08:c0:7a:22:94:20:2f:
f3:aa:45:db:81:e8:9c:67:fc:ab:dd:13:60:dc:80:10:aa:a4:
98:46:c1:ae:e3:20:ab:a0:18:00:88:b6:8f:3f:53:a8:d3:bc:
ec:c5:b9:d0:bb:f0:9e:9a:53:9e:51:b9:d3:22:7d:b3:eb:9e:
55:94:de:cb:0b:44:05:a6:3e:dd:90:15:f4:cf:48:4b:36:cb:
6f:8e:22:c5:a4:23:2f:a9:be:c8:ab:dc:7e:fe:1e:9c:53:0e:
1c:aa:20:0a:05:24:49:eb:51:b7:74:c3:67:97:51:41:a8:28:
3f:bc:65:24:8a:79:73:f8:b0:76:0e:de:ce:96:c2:d3:78:6b:
e5:39:e1:2e:38:51:7f:ed:19:ed:f6:2f:5f:6e:43:a4:95:4d:
ef:5d:aa:46:f9:c1:d9:01:df:f9:4b:cd:f6:1d:c1:f5:38:01:
8e:ea:51:e4
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUJlv5TlgkqY9gpx0dURZuBp4BDvgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcxNjU1MDJaFw0yMzA0MDYxNzAwMDJaMDMxMTAvBgNV
BAMTKEFBMTJFOTgzMUZDNTM3QTU1Nzg1RTk1MDMxMTJCQjY0OUYwRkFFNzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLcQcZDBb0Zhq9isRcoA91H2dF
5fIqok/NoxsqxTCEAwd8bCzediWn++lvdwRICoEWSG33Qu5qtYJ9/7E9NmUaksHQ
sJsiF2YHU1EKJN9+gdxNjKk6peL4bfQ5/QZyOxMBxsABvhqZiQbgOTsPypUSIcFL
x936L5pA4FOwm/6RS4NdfcNnjBmYvQzbD8BcIfBFY8fjpZRmgOkhLwRxs/rW0Lch
5Gxfjuaqm682ubVxzqyqHDV57Lm20o0roMfVitrUGYc074sEtzWlgV92BPbBo7Am
02I0+yFa5JK6e76YwFsiAcqtnQ/CIb741ggK0gaCWKouZUKOBXRgBlnsxWbPAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUqhLpgx/FN6VXhelQMRK7ZJ8PrnUwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMTM5MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNfAMA0GCSqG
SIb3DQEBCwUAA4IBAQA+E26osGeLuRkWUtve3hwYt/tzr+Hp3/LRQEs8JK+GgmuY
+2ehHTXMFEFPCZH4Eo+2Ag+HYtEYOUMkKCFra1CAkeYFSZfBb1rMZICbtgVRn8Tv
MQjAeiKUIC/zqkXbgeicZ/yr3RNg3IAQqqSYRsGu4yCroBgAiLaPP1Oo07zsxbnQ
u/CemlOeUbnTIn2z655VlN7LC0QFpj7dkBX0z0hLNstvjiLFpCMvqb7Iq9x+/h6c
Uw4cqiAKBSRJ61G3dMNnl1FBqCg/vGUkinlz+LB2Dt7OlsLTeGvlOeEuOFF/7Rnt
9i9fbkOklU3vXapG+cHZAd/5S832HcH1OAGO6lHk
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net