Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233352e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3233352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: NFeMi4eOSBMjrZ8QCKnd46GgJKL+WBY0MfbmTXHDuvI=
Subject key identifier: 82:AC:34:62:0F:45:1D:1F:CE:94:67:B7:F0:25:37:68:8C:4C:62:21
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 125E5782DBA31FAAEE8FB6FE6D410081B70A6E63
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233352e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:03 +0000
ROA not before: Tue 12 Apr 2022 08:55:03 +0000
ROA not after: Tue 11 Apr 2023 09:00:03 +0000
asID: 24203
IP address blocks: 112.215.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:5e:57:82:db:a3:1f:aa:ee:8f:b6:fe:6d:41:00:81:b7:0a:6e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:03 2022 GMT
Not After : Apr 11 09:00:03 2023 GMT
Subject: CN=82AC34620F451D1FCE9467B7F02537688C4C6221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c5:56:88:1c:21:00:f2:22:1f:8b:43:d4:7b:
3b:ec:ca:c0:93:28:27:c5:b3:ad:b6:d5:6a:a7:63:
0a:a3:af:d1:0d:15:a4:c2:e2:fb:41:d5:91:33:6f:
51:f3:30:d4:b6:ca:0f:1a:50:ec:12:03:77:7b:35:
66:a1:90:64:17:1c:e4:99:5b:26:7e:25:f0:d0:31:
31:46:a3:a1:99:eb:5e:3a:b0:53:cb:58:46:4a:7a:
35:24:41:df:c6:b6:c5:6c:a4:d6:27:45:9a:96:10:
10:d0:b8:d7:d4:fc:e2:6b:80:f7:19:3e:d0:b7:ef:
ae:9c:c9:ae:39:92:9d:55:8c:eb:fe:bd:23:e0:d4:
cc:cb:fc:3c:ec:5c:4e:ab:20:d8:0d:b7:30:f8:22:
c7:da:36:13:b9:95:58:c3:00:88:ab:a3:43:50:25:
93:be:6a:83:0c:64:1c:b1:62:94:b8:5e:b2:32:a0:
33:e5:4f:b7:64:23:54:d3:c8:cd:b4:d0:c2:8e:8a:
4b:77:fb:14:71:59:34:4d:7c:da:7d:9c:56:f9:f3:
9c:bc:b8:b2:68:69:f2:14:0e:12:b7:3c:66:50:3c:
ff:41:7f:a3:e2:ef:f7:f7:b0:8a:1c:fd:49:d2:c7:
8c:13:0b:63:df:9a:ce:32:f0:1e:55:d2:aa:02:7a:
e2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AC:34:62:0F:45:1D:1F:CE:94:67:B7:F0:25:37:68:8C:4C:62:21
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.235.0/24
Signature Algorithm: sha256WithRSAEncryption
42:70:29:36:2d:b7:30:aa:35:e5:1b:07:31:44:36:b7:56:f1:
89:55:87:82:ab:4e:6a:de:23:71:3c:ac:ed:e1:42:44:6c:d2:
01:f0:fe:90:e8:35:01:1e:88:da:1e:22:4f:96:8f:32:2a:3d:
64:21:19:90:b7:4a:8f:5f:ac:3f:6e:31:af:39:fe:58:33:38:
ba:4e:bb:12:1f:bf:57:f6:1c:cd:8f:5a:e4:1e:68:d1:73:0a:
a4:33:de:8e:5c:61:b7:df:6d:57:3e:6f:2c:6f:fa:11:84:ea:
7e:fe:60:04:5b:ff:95:dc:b6:46:b6:f8:04:2e:5a:78:cb:3f:
7c:af:80:7f:85:c3:b9:4d:e3:b5:a3:1c:4f:b1:44:c9:fc:dd:
5b:4b:d7:e2:b3:16:f5:ad:ac:38:3c:6a:b3:b3:53:4f:6e:a1:
7b:21:52:f8:ba:6c:5f:c2:35:a8:fc:1e:2d:e5:0c:11:e7:85:
62:68:f1:ce:62:48:51:a2:20:2a:8f:99:7f:de:69:9e:5a:0c:
9b:3d:b8:76:da:f2:62:ca:0d:97:fb:b7:b1:bf:ed:87:51:3d:
b7:8a:9e:3a:1b:f6:12:22:82:8e:c8:46:58:0a:33:e6:54:e0:
85:28:eb:40:6d:02:77:46:40:6d:59:08:98:78:f2:78:4f:0a:
36:37:a3:e0
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUEl5XgtujH6ruj7b+bUEAgbcKbmMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MTIwODU1MDNaFw0yMzA0MTEwOTAwMDNaMDMxMTAvBgNV
BAMTKDgyQUMzNDYyMEY0NTFEMUZDRTk0NjdCN0YwMjUzNzY4OEM0QzYyMjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPxVaIHCEA8iIfi0PUezvsysCT
KCfFs6221WqnYwqjr9ENFaTC4vtB1ZEzb1HzMNS2yg8aUOwSA3d7NWahkGQXHOSZ
WyZ+JfDQMTFGo6GZ6146sFPLWEZKejUkQd/GtsVspNYnRZqWEBDQuNfU/OJrgPcZ
PtC3766cya45kp1VjOv+vSPg1MzL/DzsXE6rINgNtzD4IsfaNhO5lVjDAIiro0NQ
JZO+aoMMZByxYpS4XrIyoDPlT7dkI1TTyM200MKOikt3+xRxWTRNfNp9nFb585y8
uLJoafIUDhK3PGZQPP9Bf6Pi7/f3sIoc/UnSx4wTC2Pfms4y8B5V0qoCeuI5AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUgqw0Yg9FHR/OlGe38CU3aIxMYiEwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMjMzMzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNfrMA0GCSqG
SIb3DQEBCwUAA4IBAQBCcCk2LbcwqjXlGwcxRDa3VvGJVYeCq05q3iNxPKzt4UJE
bNIB8P6Q6DUBHojaHiJPlo8yKj1kIRmQt0qPX6w/bjGvOf5YMzi6TrsSH79X9hzN
j1rkHmjRcwqkM96OXGG3321XPm8sb/oRhOp+/mAEW/+V3LZGtvgELlp4yz98r4B/
hcO5TeO1oxxPsUTJ/N1bS9fisxb1raw4PGqzs1NPbqF7IVL4umxfwjWo/B4t5QwR
54ViaPHOYkhRoiAqj5l/3mmeWgybPbh22vJiyg2X+7exv+2HUT23ip46G/YSIoKO
yEZYCjPmVOCFKOtAbQJ3RkBtWQiYePJ4Two2N6Pg
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net