Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e32322e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e32322e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: SHr+eurrjUVyZrJY9cNjuR/q/+d3Hw+sIdqK2Aefdyk=
Subject key identifier: DE:30:73:4C:84:55:D7:75:76:C1:2E:2A:06:3B:3A:E8:E6:B5:E9:1F
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 11385FB64D6D23D84EA25E09270E99515CFE6029
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e32322e302f32342d3234203d3e203137383835.roa
Signing time: Sat 02 Apr 2022 03:00:00 +0000
ROA not before: Sat 02 Apr 2022 02:55:00 +0000
ROA not after: Sat 01 Apr 2023 03:00:00 +0000
asID: 17885
IP address blocks: 112.215.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:38:5f:b6:4d:6d:23:d8:4e:a2:5e:09:27:0e:99:51:5c:fe:60:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 2 02:55:00 2022 GMT
Not After : Apr 1 03:00:00 2023 GMT
Subject: CN=DE30734C8455D77576C12E2A063B3AE8E6B5E91F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:2c:0e:a1:4b:d6:24:f1:10:54:63:c4:e2:
f4:3e:7d:01:69:49:59:d4:cc:73:1d:29:63:86:84:
bf:08:50:4c:5c:25:58:2b:3b:30:a7:ba:a8:ec:68:
cc:cf:dd:fc:3a:74:60:ce:38:50:7f:20:c6:73:d3:
25:61:81:26:a3:79:71:7b:61:c7:90:4e:5e:b9:26:
53:f7:55:53:ce:b2:f0:0f:b7:a7:d5:10:fc:46:c1:
3c:2d:c6:e2:c4:0e:17:cc:d0:94:8f:8b:2a:75:38:
f5:d3:20:cb:52:a4:14:e0:ac:e2:4e:43:27:a6:c2:
14:56:3a:93:91:cf:c8:66:ee:d1:49:0f:ca:72:6c:
bb:f8:b7:34:ad:df:91:7d:05:01:4f:4c:f4:21:43:
59:02:29:79:72:e5:43:75:f7:41:a3:0f:5b:9c:0d:
2a:b4:dc:da:63:6d:e6:28:bf:78:27:43:ab:1b:95:
47:21:9a:ed:ef:8b:de:61:14:49:7d:67:4f:5a:3f:
c6:5a:5d:61:61:93:57:11:60:0e:6f:48:e0:15:b6:
c7:23:8c:12:52:1d:61:2b:91:1c:2f:59:4d:1f:80:
20:04:51:7e:9f:f6:2d:bd:4e:ae:75:c2:47:7f:26:
66:69:c7:ff:34:fa:6c:b0:55:cc:2d:4c:3a:d5:f3:
be:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:30:73:4C:84:55:D7:75:76:C1:2E:2A:06:3B:3A:E8:E6:B5:E9:1F
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e32322e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.22.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:f3:37:35:ae:35:ae:02:e4:37:d3:c8:4e:a7:61:67:ef:15:
4a:aa:a6:62:a1:e8:3b:26:0d:89:66:c0:15:a8:cf:8f:81:29:
1f:1f:b5:42:64:a7:7c:b0:31:3f:5d:ee:2c:ed:33:a9:0c:a8:
5d:ed:5f:6d:f1:96:88:be:c3:21:4f:e4:46:f9:1b:8e:69:7a:
50:1c:68:ef:c9:11:2a:11:15:ea:6f:63:8a:df:53:a9:f3:ad:
a8:e3:25:da:ba:3a:1f:64:25:33:37:b6:a8:3f:ab:72:3b:53:
8c:0e:4e:ce:bf:50:fb:e4:c5:af:3e:9e:66:3e:72:7c:6c:a5:
e2:1d:d4:55:95:2f:3b:1e:e4:00:7d:37:0a:83:73:ec:05:12:
3b:38:ba:71:02:c5:53:be:94:5d:27:7e:76:32:42:60:f8:6a:
ad:ab:5b:bb:b7:af:35:2a:d9:43:51:f8:6d:06:c6:b5:80:35:
cc:5e:81:49:58:71:59:a2:12:dc:61:5f:72:e6:01:e2:48:59:
9a:d1:4e:da:8a:76:e5:a8:ab:78:1a:78:95:78:b9:3b:02:44:
e5:58:3f:63:0e:52:4d:ba:f9:7b:de:aa:70:08:d8:bb:c0:1d:
aa:68:a6:48:93:2b:5f:46:1d:ce:c5:89:01:32:5f:ee:eb:79:
36:da:e5:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net