Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3232312e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3232312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: nXuqFIqgtmAZzJCZ6cVNnUlQtx1dkE+h8bSmMssq6Rg=
Subject key identifier: 23:94:0E:12:6C:BA:67:95:9F:E8:BD:2C:1B:5C:35:A3:0B:CB:5D:2C
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 21FDCBF5E8ACBEE42E91924EE6B6F2E47728EB83
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3232312e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 08:00:00 +0000
ROA not before: Tue 12 Apr 2022 07:55:00 +0000
ROA not after: Tue 11 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 112.215.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:fd:cb:f5:e8:ac:be:e4:2e:91:92:4e:e6:b6:f2:e4:77:28:eb:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 07:55:00 2022 GMT
Not After : Apr 11 08:00:00 2023 GMT
Subject: CN=23940E126CBA67959FE8BD2C1B5C35A30BCB5D2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0f:30:59:78:b3:89:ac:ce:b2:a2:40:72:6f:
88:0d:82:43:5c:c4:28:3c:8c:e3:d5:7c:98:7b:60:
a7:20:29:9a:bb:b5:ff:69:5d:62:e5:b9:43:e1:b5:
de:ce:d3:2b:0c:ce:2f:fd:71:74:f9:e9:d2:61:77:
c1:78:8f:6f:33:0b:8b:e5:63:f6:29:37:e1:a7:7c:
05:e3:bd:95:8f:14:ab:70:97:41:9d:01:c2:a0:2b:
64:9a:17:b7:d2:1f:6b:02:78:a7:bd:85:11:9d:a1:
e4:81:92:19:9c:31:c7:f5:cf:b9:d5:93:b7:e3:63:
71:fe:58:de:c8:9e:75:4d:5a:32:9e:19:34:67:4f:
53:32:28:4d:23:25:34:96:ef:71:24:13:68:39:19:
2e:1d:27:0b:3d:96:a5:7c:d6:6d:54:23:d3:c4:ee:
54:5b:7e:37:ae:98:e5:ab:61:20:2a:2e:4d:66:6c:
08:4d:eb:65:63:96:9f:20:7b:e0:5b:f9:7d:88:79:
72:e3:2e:32:99:c9:9f:17:9c:a3:b9:69:2a:0e:70:
0f:1b:4d:ec:f5:b4:98:d1:4c:4f:59:8e:9d:14:75:
92:87:86:aa:e3:eb:0c:7d:5c:96:c1:85:9a:22:6e:
34:33:a6:2a:90:6c:56:80:1c:6c:af:b8:26:76:ce:
51:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:94:0E:12:6C:BA:67:95:9F:E8:BD:2C:1B:5C:35:A3:0B:CB:5D:2C
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3232312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.221.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:55:a5:b0:57:2e:8d:4a:b5:ef:75:09:81:2b:25:27:b1:ab:
b1:d5:1c:07:3e:86:67:d8:be:de:a3:f0:6a:dd:72:c1:84:68:
b8:38:f3:45:ae:1b:76:76:dd:f2:6c:76:8f:18:a6:6d:cd:65:
8f:19:c5:b9:e7:9c:66:17:f6:3a:e9:a7:68:b2:94:63:10:38:
92:3e:b8:ac:d4:0c:a2:17:6a:b0:f6:71:df:0b:69:0a:b4:6a:
dd:17:1a:fd:3d:ea:42:f3:c7:84:1b:9c:7f:d3:3b:fa:a6:3f:
4f:96:8b:30:ee:b8:29:2c:2b:96:00:c3:0b:59:1b:4e:7f:55:
5b:15:5d:cf:69:b3:0c:4a:5c:ed:f6:e2:b7:a5:db:3c:d5:9b:
d4:7b:c8:0b:a2:ef:5e:1e:51:57:0d:00:1a:ee:63:3b:5a:36:
82:cd:d3:5f:0e:a4:81:ba:6e:ed:db:0c:2d:24:b2:25:70:7b:
c3:11:92:54:5b:97:76:8b:df:05:18:45:92:fb:ab:bb:6e:63:
e5:a4:6e:56:ee:41:0f:ca:b7:41:0e:21:c2:cd:75:e2:ae:25:
0c:7f:f1:aa:0c:e8:56:33:8e:ee:f9:86:5a:87:be:cd:12:e1:
7e:e1:f9:85:37:93:62:65:15:35:ed:50:ac:12:d1:b9:5d:4e:
91:49:d9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net