Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139332e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139332e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: CXp5xtl7tQ79iKkCx9s05iu31MrssSIPp9WWyZe03Os=
Subject key identifier: D7:E8:05:AE:AC:26:5F:CF:21:4B:65:B9:4D:57:3F:1C:BC:BA:6A:97
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 71A7A0EC50BE4E788D129D006BC6E2DA937B1EB2
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139332e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:00 +0000
ROA not before: Thu 07 Apr 2022 16:55:00 +0000
ROA not after: Thu 06 Apr 2023 17:00:00 +0000
asID: 17885
IP address blocks: 112.215.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:a7:a0:ec:50:be:4e:78:8d:12:9d:00:6b:c6:e2:da:93:7b:1e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:00 2022 GMT
Not After : Apr 6 17:00:00 2023 GMT
Subject: CN=D7E805AEAC265FCF214B65B94D573F1CBCBA6A97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5b:c4:f7:46:70:4c:e1:18:c1:69:ca:a5:09:
18:8d:0c:ae:df:1f:6b:fa:22:ce:9d:88:7b:84:be:
9e:a0:4e:6c:90:21:1a:e2:ba:e4:81:90:b3:07:63:
04:7d:57:43:d0:76:15:c7:4a:b6:0a:fb:60:ab:39:
0a:28:cf:c1:dc:01:7a:10:41:dd:44:54:a1:8d:82:
1b:2f:3d:bf:07:d1:94:95:f2:71:33:43:62:47:5e:
12:f3:6e:2c:80:7d:fb:ac:b4:c1:d1:dd:46:5b:04:
fe:ad:2a:2f:a5:88:82:dc:3f:5f:c1:b8:f3:a1:b2:
b4:19:43:b2:dc:9a:9a:bb:c1:09:24:e5:a5:4e:ca:
ca:dc:e6:53:0a:e5:7e:f6:d5:fd:af:3a:b5:e3:76:
b9:a5:a8:e9:ad:01:8f:dd:2e:d5:bb:8f:51:61:66:
ce:24:3a:ec:c6:3c:93:f1:bf:45:ef:ee:85:48:33:
32:5d:f4:97:9b:12:4d:df:ad:20:f8:65:02:18:d7:
64:39:0e:4c:83:32:7d:95:3c:b9:fa:40:35:8e:f4:
9b:23:78:fe:50:25:fc:8c:88:ce:52:bb:3b:c8:2c:
76:e3:17:33:12:ac:b5:8b:49:e9:8e:e9:58:6d:83:
02:27:3c:17:8b:95:91:d9:1f:60:d4:d1:63:d6:95:
df:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E8:05:AE:AC:26:5F:CF:21:4B:65:B9:4D:57:3F:1C:BC:BA:6A:97
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139332e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.193.0/24
Signature Algorithm: sha256WithRSAEncryption
55:60:41:8b:06:37:92:95:be:de:a1:52:f4:bd:cb:ba:b7:07:
fa:01:b8:2d:c0:58:33:b1:c3:aa:2d:23:3c:33:3b:2c:21:63:
fb:44:5d:c1:6b:3b:1a:2b:ae:2c:3b:60:4a:e5:ba:20:78:c6:
94:31:66:82:f3:79:b7:d9:ab:8a:fd:b6:98:a9:78:ab:f3:c1:
9f:30:e7:27:10:f8:be:11:95:15:c5:b0:c1:37:a3:e6:70:39:
00:a7:a0:c0:e3:11:c5:c5:6c:cb:5e:78:4b:7b:56:0c:0b:92:
2a:a8:ad:94:1e:82:55:c2:da:fa:49:e7:49:e8:59:2b:68:f2:
3f:a0:25:05:c6:5a:5a:47:4f:e3:61:48:63:8d:2c:d6:41:66:
38:39:45:5b:9a:97:a6:00:b9:35:03:78:4f:8f:4b:3a:31:8b:
08:70:10:35:b2:14:4b:23:a9:fa:1d:5d:97:d8:2f:8a:9b:95:
cc:17:2c:c7:05:47:17:85:ba:1f:98:46:c6:e9:c3:76:79:bc:
04:2f:82:bf:86:53:b0:b2:ae:18:b4:89:0a:47:8b:d6:6c:0d:
5a:19:42:f8:d9:a5:bc:9b:4f:6f:60:25:62:b0:eb:5a:39:d8:
5b:0a:da:bf:2e:b2:b5:53:2f:1c:9b:61:56:7f:18:17:fb:33:
1d:f4:b0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net