Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233362e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3233362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: gd7OW2HmCBk3hzcl2CRg/x+KQmrkCOwjeMjPOV9517g=
Subject key identifier: 57:47:C0:4A:C7:9C:16:6B:7C:11:FB:35:B1:6B:70:18:CF:78:7B:70
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 76A34E688D6511C927A3D4DDB676E739B7582531
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233362e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:00 +0000
ROA not before: Tue 12 Apr 2022 08:55:00 +0000
ROA not after: Tue 11 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 112.215.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:a3:4e:68:8d:65:11:c9:27:a3:d4:dd:b6:76:e7:39:b7:58:25:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:00 2022 GMT
Not After : Apr 11 09:00:00 2023 GMT
Subject: CN=5747C04AC79C166B7C11FB35B16B7018CF787B70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6c:db:68:11:b8:12:7b:34:bb:77:65:3c:cf:
f2:38:4e:37:7d:35:cc:43:4b:d3:7e:16:5f:71:8b:
05:1f:32:2c:a1:6b:65:e5:3b:2b:d9:9d:5a:f3:b6:
17:b1:1c:56:52:b1:1b:68:a6:b8:25:39:20:b5:9d:
99:ec:41:56:16:93:0c:24:4b:a0:be:d3:77:a8:00:
c8:03:4e:b3:b0:63:f1:3d:ff:1b:68:1e:71:17:2f:
11:8b:27:96:d2:f6:0c:d4:bf:0e:49:39:75:af:35:
22:38:83:8b:f6:3f:fc:2d:74:55:16:0d:10:36:82:
75:75:9b:d9:ac:53:92:ee:b5:5b:63:7f:99:90:7f:
53:af:18:71:ab:e1:ed:de:1b:d9:b5:1d:4c:db:7e:
99:df:85:98:fe:4d:da:b3:3b:ff:37:43:7f:9c:a9:
f9:eb:4f:a8:4c:8e:3b:ea:50:a6:2f:ee:3b:b9:2f:
39:5d:cc:81:d4:c0:aa:5e:89:74:11:2a:8e:3d:0c:
ee:d0:fa:17:bd:1b:38:b4:13:cb:80:6b:d7:51:91:
c9:bb:36:b0:95:bd:01:85:40:c0:4f:3a:03:b6:82:
35:70:1f:0d:b2:3f:8d:98:d1:cb:10:1f:0f:a4:af:
48:36:a6:1e:a4:49:d4:2a:d5:e9:90:f0:5f:3d:28:
11:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:47:C0:4A:C7:9C:16:6B:7C:11:FB:35:B1:6B:70:18:CF:78:7B:70
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.236.0/24
Signature Algorithm: sha256WithRSAEncryption
af:cf:34:a7:93:e6:34:7d:4e:44:76:12:17:c5:97:5d:ae:88:
cb:79:50:5d:0e:4c:d5:27:4b:a6:cc:29:a2:b5:37:0c:c9:41:
d2:e8:2e:2d:c7:e3:80:4f:03:0f:db:6b:ef:81:fa:7b:5c:91:
b6:85:73:86:55:2e:47:23:5a:11:f9:27:d6:3f:47:77:ec:d6:
80:40:07:f4:9c:31:64:45:5b:71:32:c0:2f:c1:78:c6:a0:82:
34:c5:46:cd:29:71:6c:f6:05:4d:ff:38:a7:38:1a:de:22:03:
01:70:f4:1b:98:30:64:45:24:98:ed:bb:70:62:6d:93:df:fd:
4d:c9:58:67:d8:72:d1:67:f3:f8:36:dc:3c:4e:ce:bf:87:f7:
8a:a5:8b:27:eb:58:fa:f7:95:5d:d0:9f:82:43:0a:fd:50:97:
7a:5d:d3:3e:85:a9:53:27:61:f2:77:73:b5:a2:63:19:b5:ca:
c9:d4:e3:9d:a9:68:76:c1:9e:18:24:79:3f:5d:05:bc:7a:8c:
d4:1f:0b:7d:f6:dd:c6:32:a5:f6:53:bf:1a:0c:ca:dd:68:57:
21:46:eb:f7:d2:14:02:33:f7:b8:a2:68:42:5a:ec:ca:8c:99:
c0:9d:09:e5:d6:08:b3:47:5a:a4:27:92:75:67:44:27:d0:c7:
66:04:40:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net