Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139352e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: +mLEBM+EiLc1rLH/0HzfJebKsejsJXk4ER3PqjCSgxc=
Subject key identifier: 84:06:43:A7:3C:14:FF:36:FF:FA:86:C0:8B:22:83:65:30:81:C4:8C
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 4EB56A0A51982FCAD3979690BC1910AEC21A1CAF
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139352e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:01 +0000
ROA not before: Thu 07 Apr 2022 16:55:01 +0000
ROA not after: Thu 06 Apr 2023 17:00:01 +0000
asID: 17885
IP address blocks: 112.215.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:b5:6a:0a:51:98:2f:ca:d3:97:96:90:bc:19:10:ae:c2:1a:1c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:01 2022 GMT
Not After : Apr 6 17:00:01 2023 GMT
Subject: CN=840643A73C14FF36FFFA86C08B2283653081C48C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b5:07:19:bf:3b:3d:13:1d:ed:f4:5f:59:2d:
00:6a:be:3b:b4:b1:02:69:f6:fc:a6:37:0b:d8:ce:
c8:59:36:58:2e:76:e4:e2:7f:65:9a:0e:80:64:8b:
cd:57:9e:23:7d:7f:0e:54:8a:38:10:18:bc:11:25:
89:e4:82:a4:00:57:63:b5:87:78:8b:ff:9f:2c:54:
b0:0b:75:7a:28:72:77:51:9d:d8:d1:b1:6c:21:11:
4e:11:fd:7b:ba:00:a8:a0:dd:8f:2a:8e:0e:f0:22:
5c:d3:96:e1:69:db:23:19:d7:41:de:3f:a9:6a:33:
c7:81:19:e4:2a:b6:d8:29:4f:74:88:9e:10:71:c3:
e4:04:27:9f:79:b7:74:58:69:42:5b:5e:ca:7b:60:
18:03:c1:1b:fa:cd:d5:ea:e7:07:d5:90:36:0f:71:
8c:fa:bc:34:a6:bc:ab:c6:62:94:5b:7c:96:38:02:
c4:0e:0f:52:ae:9a:da:de:73:b4:0b:b4:10:55:b5:
1a:39:6e:44:0a:69:cd:d8:b2:e7:3c:d5:ee:de:2d:
5c:e9:a3:22:e6:75:22:b7:31:36:77:cb:88:60:1d:
22:77:2a:1d:95:88:53:a2:02:f8:e6:38:84:b7:ce:
d9:dd:25:d0:9e:60:5f:45:0a:17:56:20:ec:e5:45:
0e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:06:43:A7:3C:14:FF:36:FF:FA:86:C0:8B:22:83:65:30:81:C4:8C
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.195.0/24
Signature Algorithm: sha256WithRSAEncryption
46:81:67:f0:b6:90:a9:ee:8c:5b:da:68:61:ff:fa:af:5d:64:
81:a2:10:63:5a:57:ca:2f:4d:b9:19:37:fc:6d:c3:35:5c:fc:
5d:2f:f3:e7:a8:96:dd:71:f5:11:4b:67:46:ee:98:7b:8c:3a:
fc:8b:8d:07:19:2a:5d:70:16:c1:bc:77:32:9c:41:18:5b:da:
a0:59:fd:0b:91:21:d6:e0:83:10:80:0c:f5:d6:a2:91:12:50:
6d:bd:46:29:a1:20:6e:57:c3:57:12:a7:06:c3:c0:fe:7f:08:
1a:cd:d5:d7:e4:75:dc:52:b1:e3:ec:8e:60:3b:76:11:52:00:
4c:1c:d5:ef:a2:f3:32:56:ac:04:c9:e1:c3:83:c0:88:8c:82:
57:ca:17:d4:d9:cc:ac:38:d5:b9:8f:b2:45:c3:fa:0c:95:f4:
ac:34:80:b2:82:0b:c7:ba:2f:48:e2:21:6b:47:13:e9:92:f1:
60:95:39:6c:f0:a1:f4:13:4f:4e:16:e7:6c:d9:06:3b:43:d7:
c0:16:a1:81:18:03:ff:40:4f:3b:c3:39:4a:03:95:ab:e8:84:
e4:22:e2:81:f7:0f:ea:00:d9:aa:e5:d6:86:fd:c4:25:0a:e8:
6c:3d:c5:7b:65:46:e2:34:e2:1e:4e:e9:2b:f4:50:6d:3f:6f:
bf:e5:37:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net