Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234352e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3234352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: /wW3g6VFyfArqfDF2gQjyODkFUBriOBVJFzkFjWGu+o=
Subject key identifier: 6D:ED:14:5A:87:F2:DB:DD:31:B5:0F:18:38:16:20:80:91:FF:F4:EA
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 3545619F7766BC4F37C50E0B9B52C7127A2C8782
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234352e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:04 +0000
ROA not before: Tue 12 Apr 2022 08:55:04 +0000
ROA not after: Tue 11 Apr 2023 09:00:04 +0000
asID: 24203
IP address blocks: 112.215.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:45:61:9f:77:66:bc:4f:37:c5:0e:0b:9b:52:c7:12:7a:2c:87:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:04 2022 GMT
Not After : Apr 11 09:00:04 2023 GMT
Subject: CN=6DED145A87F2DBDD31B50F183816208091FFF4EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f7:c6:75:84:96:21:5a:c6:4e:0f:07:e2:e3:
88:10:57:07:e9:d2:f4:82:9d:01:ce:8b:4b:1d:a2:
1a:30:d0:42:69:e6:b3:ed:30:32:a1:b5:c2:c4:12:
14:b2:a4:66:32:6c:93:42:f4:b9:4e:b8:5a:ef:9f:
b5:60:f1:e6:56:79:97:41:3f:8a:8b:36:13:07:e1:
89:09:19:d8:69:a5:88:4e:45:0b:ba:79:43:a7:b8:
f8:ab:ab:56:e5:fb:fc:02:47:a0:85:b9:23:28:a1:
a5:36:c3:5e:07:d6:00:df:e8:99:34:45:b7:59:93:
04:9f:a1:81:5c:64:4f:58:3e:94:77:21:80:48:77:
eb:79:5a:19:5f:67:f8:08:dd:56:b3:9f:c4:fa:21:
f7:4c:4e:fc:5b:e5:c7:3f:6d:7e:15:68:a1:ab:fd:
71:a1:77:ab:c0:75:56:a9:53:aa:a7:e4:90:54:ba:
93:b7:47:89:56:4a:06:e2:34:4e:6c:44:06:0d:fa:
2c:23:92:48:f6:c4:11:b7:1a:c5:35:ed:1c:59:8a:
22:e5:f4:e2:76:9b:22:ba:bd:c7:79:c6:1f:65:8d:
ed:e8:64:ee:8c:97:01:45:c3:27:f4:38:32:a7:60:
a9:c0:ef:80:28:7a:f0:cc:eb:87:28:b0:96:dc:b1:
43:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:ED:14:5A:87:F2:DB:DD:31:B5:0F:18:38:16:20:80:91:FF:F4:EA
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.245.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:aa:ae:d6:59:4a:73:60:72:15:9d:db:79:38:c7:16:01:17:
8a:05:23:82:07:d8:48:09:15:34:bc:86:65:a0:99:a1:fc:dc:
2c:48:ac:f2:d1:10:b1:9f:d6:b1:c2:cc:f8:69:82:3f:15:ec:
ca:5f:45:19:68:b3:75:be:1e:d2:fa:9f:8b:ce:d7:b6:f4:79:
f8:1a:fe:98:39:a3:e5:fb:6f:f2:21:1a:f8:91:4e:3b:4e:9c:
94:ea:65:52:00:6a:b8:16:de:35:3a:ed:62:58:87:70:f9:d5:
72:1d:99:83:81:38:16:9a:93:8b:91:e4:b7:4d:ac:04:da:20:
5f:a2:46:3e:60:d2:ff:a7:b4:08:d8:e2:5b:2e:a1:88:1d:db:
8e:dd:8c:09:0b:03:c1:f6:aa:01:97:b1:58:cb:db:2c:13:b5:
db:85:76:b6:75:33:75:b5:6a:72:6c:41:26:05:bd:72:17:86:
37:67:b6:bc:98:23:87:4e:96:48:95:b4:81:8b:67:81:05:29:
66:84:81:38:b4:52:ed:fd:08:dc:0a:e3:e5:4f:36:18:11:b8:
ef:8c:03:64:82:50:78:4e:08:d8:49:8f:c6:1c:56:dd:24:74:
c7:8a:3d:d6:e5:3b:09:52:01:0d:de:f0:d4:13:21:2c:fa:63:
c3:d6:3d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net