Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234382e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3234382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 7hL/CyhO8R/8YI2BFhILSn6nSJ20/wu9l/sqXd8UoRA=
Subject key identifier: 3E:C3:97:6A:87:13:0B:F4:9A:9F:A3:3B:B6:14:5A:A5:D5:ED:C6:F2
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 60BB3392CD9E894696569C2E3349BCF1A02311BD
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234382e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:04 +0000
ROA not before: Tue 12 Apr 2022 08:55:04 +0000
ROA not after: Tue 11 Apr 2023 09:00:04 +0000
asID: 17885
IP address blocks: 112.215.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:bb:33:92:cd:9e:89:46:96:56:9c:2e:33:49:bc:f1:a0:23:11:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:04 2022 GMT
Not After : Apr 11 09:00:04 2023 GMT
Subject: CN=3EC3976A87130BF49A9FA33BB6145AA5D5EDC6F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b2:80:1e:1d:85:d5:a5:c0:a3:55:a1:b2:fa:
33:ad:9f:49:ac:af:6b:30:50:90:da:ad:aa:9c:5c:
8e:fc:46:3e:9a:e0:0c:53:64:f6:f0:55:7f:b0:9b:
40:d6:1a:2f:dc:9a:39:cb:b6:05:8a:34:97:12:e3:
44:6b:48:00:73:69:af:35:b8:dd:c2:79:67:e6:d3:
13:ca:43:6a:13:d9:de:9b:d1:1e:3a:66:e9:38:56:
c0:9b:81:01:02:87:76:ab:1d:62:1a:ef:c8:9b:41:
0b:81:ab:8a:77:16:e2:02:db:3f:ec:82:0a:64:e7:
8b:97:eb:e2:11:4f:85:8c:04:ee:e1:ef:06:aa:cb:
ca:b6:48:46:00:51:5a:95:ef:ca:43:71:5a:50:a6:
6c:18:7a:e0:20:71:b0:3c:da:25:eb:23:3d:da:df:
e4:09:86:02:71:6a:fc:8b:a1:f8:4a:69:ce:b8:52:
d5:c5:32:17:4e:5c:40:20:05:e9:ee:f9:aa:44:89:
c1:54:51:82:94:c3:ca:19:65:ef:c4:8b:7b:c5:a8:
67:7f:f5:de:a7:76:c4:7f:9e:a0:ff:dc:ba:e0:07:
49:88:a3:85:15:37:7c:25:53:77:05:34:68:d1:8e:
3b:71:7f:2c:83:da:fd:5b:56:38:cc:17:b8:87:2a:
cb:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C3:97:6A:87:13:0B:F4:9A:9F:A3:3B:B6:14:5A:A5:D5:ED:C6:F2
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3234382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.248.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0e:8e:54:2e:77:3a:19:af:d2:b1:ae:56:bd:1c:5d:49:9c:
6e:a2:0a:21:af:80:39:c6:1b:8f:0c:8f:a9:b3:01:5b:db:33:
a7:23:43:39:db:2a:e4:2c:fb:34:1b:34:f8:9a:8f:b6:e1:3e:
2a:1d:c1:b0:d1:a9:39:f9:a3:5e:fb:82:23:00:e9:e4:3a:fd:
12:c7:f5:00:26:78:d8:13:3a:53:e6:1c:6c:d5:ff:fe:84:7e:
56:e4:aa:a0:9d:72:75:1a:12:60:fa:c7:1d:84:4a:ba:be:6b:
cf:0d:8f:5c:ba:11:4a:73:a0:e3:82:62:46:bc:dd:42:f1:fb:
4c:eb:ef:60:e8:15:4c:9f:46:bb:55:c8:c1:aa:8e:8a:7a:cc:
99:26:ef:09:21:4b:04:a6:13:2e:13:b7:1c:c6:5c:1d:08:db:
29:be:c6:73:43:cc:b0:94:15:53:8f:23:ad:95:8a:60:cd:5b:
03:16:4d:c3:eb:bc:53:3e:5e:e9:81:60:4e:53:63:c6:c2:3e:
89:d1:46:98:77:b3:8e:2d:2b:e5:dc:4b:db:8f:b8:8b:11:2a:
cd:40:59:6b:0a:7e:84:a0:2b:37:aa:34:a7:96:ba:75:5d:b9:
95:e4:97:4d:01:11:e3:fa:a2:b7:80:f4:34:11:90:7d:4d:af:
e0:a8:d0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net