Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233382e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3233382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: JpeVG7gAatbFt0jcJv3EMyr1C3lL1qCxCKG951SfMAg=
Subject key identifier: 79:FF:A6:CC:C5:A3:8E:B3:3A:36:5C:08:2A:96:0D:61:8A:88:0A:0F
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 2B7480C32DA10E138BFEFB22F014152C0CB2FC9E
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233382e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:04 +0000
ROA not before: Tue 12 Apr 2022 08:55:04 +0000
ROA not after: Tue 11 Apr 2023 09:00:04 +0000
asID: 24203
IP address blocks: 112.215.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:74:80:c3:2d:a1:0e:13:8b:fe:fb:22:f0:14:15:2c:0c:b2:fc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:04 2022 GMT
Not After : Apr 11 09:00:04 2023 GMT
Subject: CN=79FFA6CCC5A38EB33A365C082A960D618A880A0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3d:ca:17:0f:2f:28:9f:2e:f3:fc:e5:82:75:
3e:80:51:78:39:45:47:ec:c2:9b:fb:72:dc:ba:a7:
dd:c4:27:3f:b7:0f:ac:b9:ca:18:c4:95:a2:52:2b:
fe:74:d9:fb:c6:b1:75:f7:b1:fa:55:20:3a:b8:fc:
d8:c9:17:6e:05:24:a9:c3:25:d1:67:73:6c:68:10:
35:dd:2c:87:a9:1d:0b:56:fc:02:20:20:80:4d:03:
cc:66:b8:06:9f:a5:05:4f:5e:84:b0:22:b0:0b:4c:
76:57:ca:1b:f1:c5:9c:a0:ae:51:f4:de:72:c4:7c:
ea:dc:22:1a:0d:88:15:aa:03:dd:c0:5a:d9:14:7f:
b1:42:2a:5a:d2:80:77:fd:a1:f8:77:03:a9:3c:0d:
52:ac:d4:ea:42:49:ae:ef:e7:fc:39:1e:81:08:61:
14:af:b1:4f:ea:eb:14:37:6b:c4:69:32:1f:11:84:
02:07:69:77:a0:10:c6:61:57:4f:1e:7c:9f:2a:d5:
9d:0c:c7:78:cb:d2:0f:49:db:c9:a2:7e:18:d3:a0:
1f:8a:94:a2:da:35:4e:fc:c8:b2:e7:7a:c2:cb:8e:
21:b0:88:95:cc:e1:db:82:54:d7:83:2e:a1:ef:2d:
d0:43:8c:0d:09:4a:82:07:92:65:f5:4b:dc:e5:7d:
b9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FF:A6:CC:C5:A3:8E:B3:3A:36:5C:08:2A:96:0D:61:8A:88:0A:0F
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3233382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.238.0/24
Signature Algorithm: sha256WithRSAEncryption
40:2f:74:9c:f0:72:b8:ab:0e:34:1c:88:b8:f2:de:29:e0:e9:
a6:38:5b:ab:7f:93:14:cb:80:d5:3c:fc:e4:c8:93:0a:a9:f0:
d1:e6:47:b9:18:a6:64:24:4a:47:a9:5a:36:81:59:fb:30:08:
0d:52:0e:cd:66:3f:57:56:43:fb:49:44:66:15:1c:0f:72:59:
87:0c:63:84:da:54:0b:b6:91:3c:6e:23:59:fb:4b:df:14:22:
dc:d8:03:0a:e3:ac:7b:6a:f9:e9:1c:36:db:3f:cb:33:4e:8b:
af:1e:2b:b3:e1:9d:6a:69:fa:b0:e5:14:fc:a8:91:17:2f:15:
00:b5:29:c0:d5:8a:1d:cf:30:20:94:e0:1e:d6:df:cb:e7:3e:
1a:6d:e0:33:96:db:ba:a1:a6:c5:a9:cc:46:95:86:27:ce:11:
bf:8f:32:47:71:df:0d:e5:f9:46:10:4b:7a:6c:43:61:8f:ac:
ae:bc:dc:9b:71:ea:6d:39:68:24:9b:2a:2f:27:b7:a0:a9:59:
89:a9:46:f5:58:23:ac:07:61:0a:9a:9e:b2:23:66:4e:3e:28:
af:e8:03:9a:87:cd:70:df:45:04:2f:c5:5f:d2:82:34:87:e0:
dc:4e:ca:16:4f:46:b9:f7:2c:7d:c1:e3:95:da:7f:e4:78:1f:
24:f0:49:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net