Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3231312e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3231312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: D3NCz5Bj6mU8srKNXHdQSxiDIfPBr1UoEKboBSkfNVY=
Subject key identifier: 56:8A:8E:4A:AD:B8:E0:5E:E4:83:92:9A:A6:C3:29:E6:7A:3B:94:B0
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5D0854EA2C5713F9E59839243594B98F13E0875F
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3231312e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 08:00:00 +0000
ROA not before: Tue 12 Apr 2022 07:55:00 +0000
ROA not after: Tue 11 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 112.215.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:08:54:ea:2c:57:13:f9:e5:98:39:24:35:94:b9:8f:13:e0:87:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 07:55:00 2022 GMT
Not After : Apr 11 08:00:00 2023 GMT
Subject: CN=568A8E4AADB8E05EE483929AA6C329E67A3B94B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:27:85:a9:bf:07:a3:7c:7c:27:13:8e:04:37:
af:7c:f7:76:06:1f:a0:bf:40:41:72:14:8e:6f:da:
36:ce:4d:b6:e3:26:d3:47:d3:58:05:ac:8b:39:8f:
32:c7:ce:36:3f:c5:92:e7:db:02:c2:a3:c4:58:ef:
ed:d4:32:33:df:c3:14:ec:95:d0:28:31:09:44:05:
0e:cd:14:3e:3c:7e:7e:67:88:a9:5f:34:9d:7c:5a:
7c:fd:92:b9:28:79:bb:ae:33:1d:7f:fb:71:5b:a9:
cc:f1:7c:90:52:7c:27:2f:c4:b5:3e:96:58:f3:ca:
f4:73:46:dc:d1:89:cf:4c:70:f3:56:3c:88:ef:3f:
f2:21:89:81:eb:17:b2:b2:f0:38:25:5f:31:ef:0c:
ba:9c:6c:02:eb:50:90:ce:44:1d:26:09:a9:40:63:
b1:8c:2d:b5:c6:2e:4c:48:81:5f:91:42:25:3d:1b:
cd:43:c4:bb:b8:91:f6:c9:8c:98:e2:9d:1d:90:28:
f6:fb:4a:ad:55:f8:c7:c7:67:41:5d:99:ea:de:fb:
0c:70:22:06:49:e2:f4:2a:e7:5d:fa:b6:49:00:90:
6b:2a:22:ac:b8:7b:66:24:6e:9f:a7:a7:75:f7:8a:
e4:31:5d:9f:a0:08:02:f6:4e:57:55:ec:da:d1:a2:
9f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8A:8E:4A:AD:B8:E0:5E:E4:83:92:9A:A6:C3:29:E6:7A:3B:94:B0
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3231312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.211.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:7f:ef:38:66:60:c1:45:ff:e5:46:c7:9f:14:be:43:5d:72:
b3:f3:6c:51:51:30:44:aa:02:7a:6e:81:3d:dd:3d:95:0e:cb:
b5:b9:2c:84:f0:6c:f3:10:ff:69:72:4b:d7:dd:e8:55:30:46:
a0:d7:7d:13:53:40:d8:2f:ab:b1:87:71:9b:61:41:cc:26:e9:
65:1d:be:4f:6a:c8:1b:aa:05:a0:08:0f:22:5b:95:ed:eb:1b:
62:ef:1c:19:12:d0:1a:06:03:b9:e4:5d:77:20:bf:49:07:e0:
9d:b9:79:ec:4e:73:dc:1e:20:1a:f8:02:b6:72:e9:23:a9:13:
15:52:5a:60:47:b7:e7:a3:01:a9:67:cb:ca:c4:ce:12:ae:62:
93:ad:fc:5b:35:88:88:a3:a5:b1:54:85:4c:cf:0d:f1:c1:2c:
e9:18:33:be:be:42:3d:c6:2d:68:f2:75:7f:7e:81:eb:c1:20:
4e:2e:ac:50:06:5a:39:96:1c:a6:27:81:f4:81:58:e3:c7:37:
85:b8:8a:25:33:37:62:2c:fe:45:08:a9:d5:43:c8:6a:fa:41:
03:ac:0e:85:db:66:9a:2b:92:b6:0d:16:cb:6e:fb:2b:c4:a6:
a7:3b:0e:48:d4:cb:4b:9a:c4:41:0b:de:e7:ea:99:37:32:5f:
e7:d1:85:9b
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUXQhU6ixXE/nlmDkkNZS5jxPgh18wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MTIwNzU1MDBaFw0yMzA0MTEwODAwMDBaMDMxMTAvBgNV
BAMTKDU2OEE4RTRBQURCOEUwNUVFNDgzOTI5QUE2QzMyOUU2N0EzQjk0QjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXJ4WpvwejfHwnE44EN69893YG
H6C/QEFyFI5v2jbOTbbjJtNH01gFrIs5jzLHzjY/xZLn2wLCo8RY7+3UMjPfwxTs
ldAoMQlEBQ7NFD48fn5niKlfNJ18Wnz9krkoebuuMx1/+3FbqczxfJBSfCcvxLU+
lljzyvRzRtzRic9McPNWPIjvP/IhiYHrF7Ky8DglXzHvDLqcbALrUJDORB0mCalA
Y7GMLbXGLkxIgV+RQiU9G81DxLu4kfbJjJjinR2QKPb7Sq1V+MfHZ0Fdmere+wxw
IgZJ4vQq5136tkkAkGsqIqy4e2Ykbp+np3X3iuQxXZ+gCAL2TldV7NrRop+bAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUVoqOSq244F7kg5KapsMp5no7lLAwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMjMxMzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNfTMA0GCSqG
SIb3DQEBCwUAA4IBAQBvf+84ZmDBRf/lRsefFL5DXXKz82xRUTBEqgJ6boE93T2V
Dsu1uSyE8GzzEP9pckvX3ehVMEag130TU0DYL6uxh3GbYUHMJullHb5PasgbqgWg
CA8iW5Xt6xti7xwZEtAaBgO55F13IL9JB+CduXnsTnPcHiAa+AK2cukjqRMVUlpg
R7fnowGpZ8vKxM4SrmKTrfxbNYiIo6WxVIVMzw3xwSzpGDO+vkI9xi1o8nV/foHr
wSBOLqxQBlo5lhymJ4H0gVjjxzeFuIolMzdiLP5FCKnVQ8hq+kEDrA6F22aaK5K2
DRbLbvsrxKanOw5I1MtLmsRBC97n6pk3Ml/n0YWb
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net