Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3230352e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3230352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: mW7c786UjCoHm7iHV/PQx24hOGzFv1NsFrUf4exJyjI=
Subject key identifier: 00:D1:28:C1:E0:74:F1:2B:A6:8F:E0:ED:BA:91:D1:1A:C7:EA:62:76
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 0884CF23753771D82E009BE8400EF5C233C28ED1
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3230352e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:00 +0000
ROA not before: Thu 07 Apr 2022 16:55:00 +0000
ROA not after: Thu 06 Apr 2023 17:00:00 +0000
asID: 17885
IP address blocks: 112.215.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:84:cf:23:75:37:71:d8:2e:00:9b:e8:40:0e:f5:c2:33:c2:8e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:00 2022 GMT
Not After : Apr 6 17:00:00 2023 GMT
Subject: CN=00D128C1E074F12BA68FE0EDBA91D11AC7EA6276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:fc:51:44:6d:3f:3d:59:86:07:01:0a:fc:
b4:fa:ed:d9:89:8c:dd:bf:3a:90:45:99:5d:1a:83:
4a:7b:28:d3:c0:ed:16:c6:bc:66:ea:cb:78:61:5e:
de:eb:d9:85:60:05:c3:4a:67:17:11:a5:f9:1b:db:
4a:ac:ec:32:7d:0b:a2:85:83:6d:58:d2:13:b6:6a:
6c:b7:e7:c7:b6:48:36:31:40:95:ad:2e:03:c0:a8:
ed:ec:a6:dd:91:c6:f3:3c:d4:fb:65:b3:6f:bf:65:
7c:ee:89:e1:71:fa:d2:19:ab:fc:e2:9f:55:1d:15:
cf:c3:36:c7:16:66:c9:10:04:51:2c:b9:bc:78:99:
49:d3:4a:7b:e8:81:cc:99:42:0f:14:ee:0d:f8:0c:
74:f0:a1:be:f6:2d:1b:d7:60:9d:5f:49:e0:35:78:
24:eb:83:25:ec:5c:46:e6:f4:3c:b9:6f:7a:5d:90:
bb:ce:29:03:cd:91:04:c6:d8:31:81:1f:e1:da:85:
22:c4:40:59:10:5e:3b:6e:9e:37:8e:8c:ac:c8:24:
3a:9f:83:6c:d0:0b:40:39:75:21:4d:d1:df:8f:0f:
1c:ca:06:d4:5d:a4:be:32:d3:b7:09:5e:4a:38:72:
ee:f8:05:13:5f:89:e7:cb:d7:d3:0f:39:81:c6:41:
ab:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D1:28:C1:E0:74:F1:2B:A6:8F:E0:ED:BA:91:D1:1A:C7:EA:62:76
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3230352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.205.0/24
Signature Algorithm: sha256WithRSAEncryption
02:e3:a6:ab:99:86:e0:04:97:d4:c5:08:64:71:08:b7:65:c8:
95:1f:d7:b1:92:48:5f:cc:1b:3a:de:7d:73:e3:41:a5:89:fe:
7a:99:25:d8:55:ab:49:36:8b:b4:7c:bc:5f:c6:2e:49:a6:08:
5c:50:73:49:2f:45:81:c5:cc:65:c9:0b:8a:4a:be:b3:fe:0a:
a7:2c:f3:af:bf:51:76:f3:02:4d:24:04:e8:55:16:89:7f:29:
8f:d2:f3:e6:d8:68:97:ce:62:fc:f4:c9:24:f9:8c:b2:24:0b:
30:72:89:b4:18:bf:0f:f6:99:b2:37:d0:98:76:eb:9f:01:af:
f2:fe:65:ab:30:c5:f4:51:1a:9a:ce:9e:b0:96:e9:e8:b5:d2:
4c:db:73:ef:38:96:8f:6f:b2:f7:7e:53:df:36:62:d5:fc:96:
78:58:75:2c:8b:47:e0:39:19:30:8b:d1:ea:f6:7d:b0:25:a5:
28:45:9e:4d:3b:b6:7e:ed:d3:fc:97:b6:72:d0:7c:a1:cb:a5:
b7:e7:6a:c5:fa:c5:34:dd:40:ba:28:3a:17:23:c7:18:e9:69:
63:5f:64:26:1d:60:c3:36:fa:81:fb:ce:14:36:c8:8e:9d:0e:
7a:4e:91:58:04:fc:3a:27:30:dc:1b:29:f7:43:d9:27:31:4e:
d9:d8:99:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net