Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234322e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3234322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8ffuTgrjSQS97X8MI2Ma38l1KBAIyY+dV/pvuZqKh2Q=
Subject key identifier: 9D:71:29:C9:8E:F9:06:5C:14:68:CE:62:AD:80:F5:56:71:E4:EE:3B
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 30DCC38D1365548E38E005FFFF184B1BA9A9687A
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234322e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:01 +0000
ROA not before: Tue 12 Apr 2022 08:55:01 +0000
ROA not after: Tue 11 Apr 2023 09:00:01 +0000
asID: 24203
IP address blocks: 112.215.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:dc:c3:8d:13:65:54:8e:38:e0:05:ff:ff:18:4b:1b:a9:a9:68:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:01 2022 GMT
Not After : Apr 11 09:00:01 2023 GMT
Subject: CN=9D7129C98EF9065C1468CE62AD80F55671E4EE3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:bc:a8:70:da:1e:18:06:46:2b:09:41:41:
e0:4e:ec:50:26:e0:69:6c:c1:ce:4f:66:f4:27:e9:
3c:cd:5e:c7:a4:70:83:54:51:12:a7:85:ab:b2:2d:
bd:10:2b:a0:b8:9d:f8:d3:17:fc:a2:1b:0e:62:dd:
85:ae:fe:36:c9:01:e8:49:5f:22:c1:0f:e1:cf:08:
4c:72:69:bd:22:c6:7a:55:6f:60:ef:a3:e0:54:0d:
5a:ef:28:6c:cf:1f:31:38:de:d7:ad:5e:28:6e:d9:
35:e4:69:e0:b1:bb:94:e2:02:c0:04:33:56:02:1f:
00:e4:14:6b:70:e1:c9:17:90:ca:e7:22:d6:12:62:
96:c1:3b:c2:95:35:92:be:96:fd:a0:e7:7b:c1:cc:
67:86:81:69:64:97:a0:8e:5e:57:ec:d0:b1:80:e1:
2a:9a:d2:5e:19:22:d2:20:ce:b9:6f:81:d0:50:d1:
07:38:e7:4c:3a:89:9f:56:ad:4d:74:24:49:c5:fa:
56:a1:a2:66:32:97:88:58:a9:12:9d:93:c4:1c:61:
47:b8:05:81:b4:29:cc:92:05:8f:d7:c0:f4:e1:e4:
13:ce:11:a1:70:4c:c8:30:f9:66:77:41:b5:43:03:
80:f9:a0:08:80:60:55:23:7e:b0:f8:77:76:8b:66:
a3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:71:29:C9:8E:F9:06:5C:14:68:CE:62:AD:80:F5:56:71:E4:EE:3B
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.242.0/24
Signature Algorithm: sha256WithRSAEncryption
94:4d:82:96:44:55:72:ec:aa:27:f8:60:5b:56:7a:da:2a:0a:
87:7f:b0:f8:48:fe:da:dd:bc:f4:fb:83:9c:8f:5c:63:65:61:
48:74:fd:81:67:55:0b:c1:29:b8:52:57:dd:4b:2b:23:51:80:
07:c0:6a:cc:65:30:0e:5f:3b:00:6c:27:ca:ea:a5:10:8c:dc:
ad:58:91:51:33:51:a2:b7:1c:9d:83:ee:7b:67:be:7e:b6:50:
2c:d1:f1:f2:50:a7:6b:73:ac:82:9a:f4:91:63:9d:46:aa:e4:
5b:ac:c0:de:ff:1f:6c:49:be:61:a9:81:8d:42:e1:e5:23:ca:
ce:f7:24:d3:7a:85:91:21:c0:82:b7:fb:de:e2:94:fc:fd:6a:
41:80:5b:5f:d6:74:94:ef:70:7c:b2:4b:f0:1f:9c:a0:95:ab:
8d:89:7e:6f:97:33:80:d8:eb:66:15:56:6c:6f:20:57:c8:99:
5a:67:d4:83:55:4f:d7:30:0d:ff:df:3b:67:1d:82:c2:50:4d:
34:bf:1a:c3:2c:88:08:88:6e:36:58:36:fa:29:31:50:72:c6:
2e:e1:ac:83:98:3d:22:73:45:fc:8f:bf:89:9c:83:ae:cb:87:
da:5d:7d:15:be:57:ad:42:46:dc:51:fb:a2:a3:aa:10:55:64:
32:bf:69:42
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUMNzDjRNlVI444AX//xhLG6mpaHowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MTIwODU1MDFaFw0yMzA0MTEwOTAwMDFaMDMxMTAvBgNV
BAMTKDlENzEyOUM5OEVGOTA2NUMxNDY4Q0U2MkFEODBGNTU2NzFFNEVFM0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0NLyocNoeGAZGKwlBQeBO7FAm
4Glswc5PZvQn6TzNXsekcINUURKnhauyLb0QK6C4nfjTF/yiGw5i3YWu/jbJAehJ
XyLBD+HPCExyab0ixnpVb2Dvo+BUDVrvKGzPHzE43tetXihu2TXkaeCxu5TiAsAE
M1YCHwDkFGtw4ckXkMrnItYSYpbBO8KVNZK+lv2g53vBzGeGgWlkl6COXlfs0LGA
4Sqa0l4ZItIgzrlvgdBQ0Qc450w6iZ9WrU10JEnF+lahomYyl4hYqRKdk8QcYUe4
BYG0KcySBY/XwPTh5BPOEaFwTMgw+WZ3QbVDA4D5oAiAYFUjfrD4d3aLZqNrAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUnXEpyY75BlwUaM5irYD1VnHk7jswHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMjM0MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNfyMA0GCSqG
SIb3DQEBCwUAA4IBAQCUTYKWRFVy7Kon+GBbVnraKgqHf7D4SP7a3bz0+4Ocj1xj
ZWFIdP2BZ1ULwSm4UlfdSysjUYAHwGrMZTAOXzsAbCfK6qUQjNytWJFRM1Gitxyd
g+57Z75+tlAs0fHyUKdrc6yCmvSRY51GquRbrMDe/x9sSb5hqYGNQuHlI8rO9yTT
eoWRIcCCt/ve4pT8/WpBgFtf1nSU73B8skvwH5yglauNiX5vlzOA2OtmFVZsbyBX
yJlaZ9SDVU/XMA3/3ztnHYLCUE00vxrDLIgIiG42WDb6KTFQcsYu4ayDmD0ic0X8
j7+JnIOuy4faXX0VvletQkbcUfuio6oQVWQyv2lC
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net