Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233322e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3233322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: E8uzDlE9YybZ0z1Mh0y7BGJK/fsdHbxNxghS2tpSaqo=
Subject key identifier: 18:D7:BB:E4:60:F9:3F:3B:CF:C7:47:2D:B6:1E:94:78:6C:9A:4A:A3
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 711328192863FA9A9DDB579AAB92F764D410DCD7
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233322e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:05 +0000
ROA not before: Tue 12 Apr 2022 08:55:05 +0000
ROA not after: Tue 11 Apr 2023 09:00:05 +0000
asID: 24203
IP address blocks: 112.215.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:13:28:19:28:63:fa:9a:9d:db:57:9a:ab:92:f7:64:d4:10:dc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:05 2022 GMT
Not After : Apr 11 09:00:05 2023 GMT
Subject: CN=18D7BBE460F93F3BCFC7472DB61E94786C9A4AA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8f:da:76:07:ae:b2:45:03:6f:4a:ab:b6:90:
a9:80:15:66:66:46:42:f0:0d:bc:1d:d2:46:d7:54:
ba:46:e9:60:ff:07:9e:86:60:ee:e5:2e:e3:43:e2:
59:1e:d6:51:44:7b:27:f8:28:7c:ce:61:06:42:ae:
ac:47:a2:35:f6:8b:7d:7e:36:bf:7d:23:10:3a:40:
07:c5:89:07:f5:51:b8:88:20:51:ce:06:b2:46:4d:
e5:c7:cb:80:65:be:68:93:04:b3:35:0d:57:48:8f:
32:09:f9:e3:60:4a:f7:d1:66:2d:53:a3:45:a8:46:
ec:63:2a:08:30:59:ef:ea:ad:69:fb:dd:30:44:55:
8f:98:cd:f2:48:82:23:eb:04:7b:e7:09:65:a6:29:
f6:d0:81:30:2a:44:f6:20:ea:13:dc:93:44:cb:24:
ce:f9:56:49:af:d8:dc:1f:f5:9a:27:43:ba:6e:93:
0a:78:e7:eb:97:bd:2b:36:7a:73:a2:d2:7f:d8:c0:
ac:86:ce:8f:63:c1:8b:49:34:06:c0:cc:25:98:f8:
29:f9:c9:5a:d7:8a:4d:24:e7:fd:cd:54:cc:85:8f:
57:82:e3:be:c8:f8:f2:aa:88:64:14:e8:12:59:42:
7e:4e:4d:2f:1a:82:bd:10:21:4c:4e:05:c1:fb:56:
44:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D7:BB:E4:60:F9:3F:3B:CF:C7:47:2D:B6:1E:94:78:6C:9A:4A:A3
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.232.0/24
Signature Algorithm: sha256WithRSAEncryption
19:15:78:dd:52:b4:3f:e8:0b:60:d7:9a:0a:74:8e:ee:74:01:
95:a0:af:49:02:26:e0:ba:59:6f:37:cc:04:04:bf:d1:54:6a:
47:1b:af:58:88:53:65:74:a5:58:ed:25:8a:03:71:64:5f:2f:
70:87:ba:8a:7a:ec:c9:f1:fd:d2:28:99:87:17:6e:f8:a8:3e:
e7:1c:4b:c2:c9:cc:81:95:66:e2:20:3c:0d:4b:8e:e4:a3:69:
3b:1d:4d:7d:be:71:37:c3:2f:c1:45:70:99:e4:09:75:17:a0:
47:cb:cc:90:ad:73:6e:87:25:95:4a:df:5f:5c:de:92:ca:76:
40:aa:c7:cd:39:50:73:c2:76:d0:07:33:7f:de:42:ad:64:8b:
cf:9c:4d:26:61:de:e6:06:74:32:cb:26:c6:8d:d8:b2:eb:3d:
75:88:b5:09:ae:14:08:8b:c7:92:ed:13:34:a9:e2:e3:78:d0:
3e:1d:bf:6e:7c:1a:01:ac:ea:41:a8:45:c5:20:46:56:04:28:
2d:3c:bc:33:29:8b:49:dd:73:b8:64:91:94:37:42:3f:f4:7f:
49:f7:52:77:9f:fa:9d:f4:35:25:63:68:38:32:6b:68:b4:97:
34:a6:f5:4a:39:99:91:aa:b7:b8:ea:79:2e:18:8a:b6:81:cf:
95:d9:e7:20
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUcRMoGShj+pqd21eaq5L3ZNQQ3NcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MTIwODU1MDVaFw0yMzA0MTEwOTAwMDVaMDMxMTAvBgNV
BAMTKDE4RDdCQkU0NjBGOTNGM0JDRkM3NDcyREI2MUU5NDc4NkM5QTRBQTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNj9p2B66yRQNvSqu2kKmAFWZm
RkLwDbwd0kbXVLpG6WD/B56GYO7lLuND4lke1lFEeyf4KHzOYQZCrqxHojX2i31+
Nr99IxA6QAfFiQf1UbiIIFHOBrJGTeXHy4BlvmiTBLM1DVdIjzIJ+eNgSvfRZi1T
o0WoRuxjKggwWe/qrWn73TBEVY+YzfJIgiPrBHvnCWWmKfbQgTAqRPYg6hPck0TL
JM75Vkmv2Nwf9ZonQ7pukwp45+uXvSs2enOi0n/YwKyGzo9jwYtJNAbAzCWY+Cn5
yVrXik0k5/3NVMyFj1eC477I+PKqiGQU6BJZQn5OTS8agr0QIUxOBcH7VkQBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUGNe75GD5PzvPx0ctth6UeGyaSqMwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMjMzMzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNfoMA0GCSqG
SIb3DQEBCwUAA4IBAQAZFXjdUrQ/6Atg15oKdI7udAGVoK9JAibgullvN8wEBL/R
VGpHG69YiFNldKVY7SWKA3FkXy9wh7qKeuzJ8f3SKJmHF274qD7nHEvCycyBlWbi
IDwNS47ko2k7HU19vnE3wy/BRXCZ5Al1F6BHy8yQrXNuhyWVSt9fXN6SynZAqsfN
OVBzwnbQBzN/3kKtZIvPnE0mYd7mBnQyyybGjdiy6z11iLUJrhQIi8eS7RM0qeLj
eNA+Hb9ufBoBrOpBqEXFIEZWBCgtPLwzKYtJ3XO4ZJGUN0I/9H9J91J3n/qd9DUl
Y2g4MmtotJc0pvVKOZmRqre46nkuGIq2gc+V2ecg
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net