Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139342e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139342e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: DSoi1udj6nHTH/Nxfsg/032Cxd32cOiUwXX+fgt2NRs=
Subject key identifier: D9:B8:A5:22:0F:76:26:D0:73:C4:90:96:1B:9F:EF:24:DC:81:F3:32
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 01474C90F25E70C5298809C36AFD14C81DE699AB
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139342e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:03 +0000
ROA not before: Thu 07 Apr 2022 16:55:03 +0000
ROA not after: Thu 06 Apr 2023 17:00:03 +0000
asID: 17885
IP address blocks: 112.215.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:47:4c:90:f2:5e:70:c5:29:88:09:c3:6a:fd:14:c8:1d:e6:99:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:03 2022 GMT
Not After : Apr 6 17:00:03 2023 GMT
Subject: CN=D9B8A5220F7626D073C490961B9FEF24DC81F332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7b:71:33:a2:4a:92:be:c2:40:bf:a6:25:6a:
e1:f9:8d:ba:f1:b6:7e:37:7c:31:41:df:68:6b:0f:
8a:80:1c:fb:56:6a:72:49:90:db:b5:1e:8f:35:0c:
a0:f0:a4:9a:f6:1f:c1:e7:51:f8:44:86:6b:09:98:
4a:ad:f5:ec:ee:61:97:50:ae:ab:f0:e3:38:5e:0e:
c6:0d:35:eb:ae:d3:ae:6a:d7:65:85:d3:0d:25:08:
76:15:0d:f9:52:16:33:8e:55:53:0a:43:83:f0:86:
b7:9c:b7:4b:11:46:be:80:50:42:15:72:d4:4b:78:
dd:9a:e5:56:79:3f:f4:48:8e:f1:07:5e:68:44:9b:
da:21:9b:55:f4:18:a3:e0:51:ce:65:56:49:97:a8:
e0:51:dc:6c:b7:8c:c2:9c:34:36:66:88:49:bf:fd:
e8:f0:ea:5c:a1:ea:7a:2d:ef:ef:61:ba:dd:27:e5:
f3:9a:27:92:27:79:e2:0c:95:af:e8:38:4b:ea:4a:
e7:e0:ae:e5:a6:62:06:b9:12:a4:15:03:04:90:70:
2b:68:cb:a7:d5:ba:c4:01:1f:57:c6:9c:67:96:d4:
d2:4d:25:e0:c3:97:e0:b0:22:aa:fd:9a:47:3f:18:
5d:7b:d7:6c:58:db:80:7a:15:83:21:81:62:9a:64:
ca:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B8:A5:22:0F:76:26:D0:73:C4:90:96:1B:9F:EF:24:DC:81:F3:32
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139342e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.194.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:61:f1:16:44:49:c9:69:52:ed:eb:ee:68:b3:0c:27:f8:6b:
3e:f5:d5:51:e2:86:d8:13:05:30:b2:05:58:b2:fb:a4:06:93:
9e:6b:4e:b9:4e:3b:1e:fa:8a:7a:96:a2:48:3e:e5:e4:a4:b7:
c2:ba:cd:7a:ff:03:e7:df:8e:a5:9a:72:2f:33:be:1d:01:35:
c0:e8:0b:76:d9:6c:21:8f:0e:ee:94:21:8f:f1:d9:00:b4:da:
f4:8f:ad:b6:2c:29:33:86:45:77:20:6f:4f:83:15:e9:23:9f:
07:50:e7:17:d8:f8:fe:db:c0:d9:56:86:64:79:b1:d8:2c:ba:
56:fb:0e:c4:ac:bb:61:93:7e:ee:91:bf:18:80:26:50:aa:0f:
f7:c3:93:1b:34:9f:89:ef:1b:3f:c5:33:5c:7d:e7:6b:98:ee:
eb:3f:73:e2:d6:14:e3:39:ad:c8:ff:66:52:c8:68:07:7d:dd:
f1:38:4c:a1:d0:7f:76:94:96:4b:89:87:f5:6c:83:09:5c:9e:
bf:e5:71:0b:ce:cf:10:8d:5d:9d:9c:f3:2c:c5:45:58:24:6c:
9e:2a:00:47:5d:aa:24:20:52:1b:37:ac:f0:83:10:d5:6f:3d:
78:5b:51:b5:b8:2f:2f:d4:4f:ba:23:9f:aa:4c:5f:63:73:97:
86:5e:cf:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net