Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234332e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3234332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Se8zmi3VkybNwsxLa1g2/kGT4Jlhn1RqkAnlDWz2D7Y=
Subject key identifier: 64:DB:47:11:66:FD:31:E0:F6:AB:1D:CA:21:5D:74:56:90:3B:89:2D
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 16E22528655A6A1D3EA9395D634E9CA033BDD570
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:00 +0000
ROA not before: Tue 12 Apr 2022 08:55:00 +0000
ROA not after: Tue 11 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 112.215.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:e2:25:28:65:5a:6a:1d:3e:a9:39:5d:63:4e:9c:a0:33:bd:d5:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:00 2022 GMT
Not After : Apr 11 09:00:00 2023 GMT
Subject: CN=64DB471166FD31E0F6AB1DCA215D7456903B892D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8e:3c:a5:37:f0:ef:52:34:96:12:0e:9b:ae:
ac:3b:08:ab:fd:75:cd:c5:fc:0a:14:fd:c8:51:8e:
0a:2e:32:e3:5f:f5:85:04:b3:f6:cf:0c:2a:e9:14:
32:78:5c:d0:88:d4:ba:76:bb:1c:a9:40:2d:72:97:
3e:4a:4f:9f:6d:b9:ad:87:73:f7:2e:6e:35:aa:56:
88:d4:b1:59:c0:0f:17:c6:e9:ef:b3:80:b3:3b:2d:
9b:24:da:b1:bb:ee:cd:cf:3a:8f:a5:93:03:49:7b:
04:11:9b:50:76:56:ed:5b:79:18:85:39:f5:ac:a2:
35:47:71:61:3e:40:6e:a2:28:ae:a0:61:fa:a5:12:
ae:00:28:3e:ff:44:2f:b7:7e:17:1a:d7:bb:14:61:
2d:54:58:7c:ef:6a:5a:14:34:26:a8:3e:9b:ff:fb:
f6:71:c4:36:d6:fd:49:d1:8a:2b:71:ba:97:30:0e:
a4:66:a4:25:fb:a9:07:32:15:25:ae:4f:c4:d1:fb:
03:02:08:11:22:91:67:61:5f:ff:e1:fc:ba:94:a7:
64:38:30:09:63:4f:10:4c:24:c8:6f:03:14:b3:55:
64:4e:f9:a1:57:11:ed:61:c8:89:87:26:d6:1c:5c:
b3:48:f3:d6:cc:5b:66:03:51:bf:af:b7:f3:aa:92:
d2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DB:47:11:66:FD:31:E0:F6:AB:1D:CA:21:5D:74:56:90:3B:89:2D
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.243.0/24
Signature Algorithm: sha256WithRSAEncryption
48:cb:74:76:cd:1e:92:80:c8:d5:e0:f3:b3:99:e2:85:b9:3c:
86:7e:38:80:ac:11:6b:03:32:2c:be:a5:06:0b:e6:38:6b:cd:
7a:31:1b:10:47:1a:cf:a8:8f:04:b0:e9:16:16:32:b7:c2:91:
31:f2:af:e6:a5:02:93:15:21:39:bc:34:3a:e6:c6:36:9a:02:
d2:c7:19:24:c4:95:8a:38:63:41:27:a0:89:72:ee:92:b6:91:
8a:3b:20:96:85:3f:7c:14:b3:61:70:f8:09:cf:86:4b:13:a3:
93:b9:2b:3c:bd:e5:af:ca:ff:a7:51:d2:9f:76:a7:22:f4:fc:
93:76:0f:19:e9:9c:83:c9:da:59:6a:67:2d:39:ee:6f:b9:dd:
5e:d9:48:5f:fd:71:6d:d2:2a:e7:06:28:8f:4f:75:c7:d5:80:
9f:e4:1a:b7:8c:96:84:46:dd:9e:ec:32:bb:27:68:55:e5:c6:
48:74:2e:15:cc:6c:70:6a:4c:fc:58:4b:f1:f0:f5:70:d4:8e:
01:34:60:5f:99:74:dd:d8:e7:f8:29:88:45:d2:0c:1a:2a:42:
17:0b:f3:d8:40:d6:9f:23:ec:c3:9b:f7:ce:43:eb:8a:61:14:
55:19:28:b9:27:ae:bc:cf:ef:83:e9:d6:c0:9b:e6:49:7b:78:
dc:a4:01:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net