Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3235332e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3235332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: DRBkiZDZcrery2aeQebuRaw6jhvJcL3nDWDcwjeEy0c=
Subject key identifier: CF:E9:01:18:63:D8:FF:2B:8E:D5:CC:41:D4:6D:8C:3F:AF:2E:9F:66
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 63387BDD5792D6D2264A13992FEAF61CC83487E1
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3235332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 12 Apr 2022 09:00:01 +0000
ROA not before: Tue 12 Apr 2022 08:55:01 +0000
ROA not after: Tue 11 Apr 2023 09:00:01 +0000
asID: 24203
IP address blocks: 112.215.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:38:7b:dd:57:92:d6:d2:26:4a:13:99:2f:ea:f6:1c:c8:34:87:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:01 2022 GMT
Not After : Apr 11 09:00:01 2023 GMT
Subject: CN=CFE9011863D8FF2B8ED5CC41D46D8C3FAF2E9F66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a1:46:76:d9:a8:5b:52:07:81:7e:c2:2d:19:
d5:81:fa:1f:52:41:ad:ad:d6:3b:83:24:cb:60:e8:
7a:ab:07:03:ef:b7:73:bb:d3:8b:cd:d0:bf:e2:d4:
4f:c5:a4:e9:b9:a1:6f:dc:18:83:b0:43:f8:f2:4b:
3b:85:7b:95:7e:41:5f:f0:5a:6c:10:ef:27:57:9f:
a0:5b:24:c2:70:d6:2b:ab:f7:c0:26:05:10:44:31:
46:a1:d9:81:4b:0b:c8:87:37:cc:39:1d:28:2e:b1:
d2:26:5d:fc:d6:7b:c0:bf:6a:53:84:1a:a9:4e:a9:
aa:74:da:91:36:0a:3e:45:20:e6:17:05:f1:a2:bb:
c7:93:b3:a6:62:a6:fe:c6:75:2e:aa:bb:e5:25:9b:
02:82:9c:3b:0f:4b:ff:a2:d4:db:ac:a2:68:41:64:
b4:9e:5c:95:31:00:10:3c:df:eb:aa:dd:fe:5e:4b:
b9:1b:6a:f7:81:fd:23:53:85:9b:28:f0:6d:ff:0c:
f3:a4:8e:85:8e:38:7c:68:3e:3b:89:61:54:06:b3:
b0:27:8c:9f:ed:17:42:35:6f:84:da:7d:90:69:ac:
51:fb:c0:83:6a:34:41:fd:d2:31:f4:f1:bc:28:21:
f1:ab:73:ed:9f:ae:c8:45:b6:db:72:8f:42:f8:b0:
c8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E9:01:18:63:D8:FF:2B:8E:D5:CC:41:D4:6D:8C:3F:AF:2E:9F:66
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3235332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.253.0/24
Signature Algorithm: sha256WithRSAEncryption
34:85:ac:89:b3:ae:f7:b1:da:46:1c:25:01:1b:a2:ab:c9:74:
b1:58:c3:bc:33:b7:e4:9e:ac:fe:ae:be:5b:fb:7a:ee:45:bb:
1c:ff:2b:68:c2:98:c8:d3:97:86:44:6a:8b:97:93:67:e3:f9:
44:fd:c6:11:86:74:2e:c4:bf:a7:7b:0b:ec:da:26:4c:59:9a:
78:91:1d:ce:04:b8:8e:90:8e:74:62:be:45:55:f4:cc:b2:3a:
68:dd:16:a0:bb:89:57:bd:38:b4:0c:34:0c:4b:d9:e7:b0:64:
68:09:b1:0f:66:d8:d0:a4:20:3b:be:10:7b:4b:ea:0a:c3:5c:
55:b9:e0:2b:43:05:e3:81:91:0a:5e:9a:55:51:b7:58:87:cb:
82:a5:99:56:d0:fb:de:ae:1a:f8:7a:b5:b0:7f:35:4d:3f:82:
57:a5:a4:d6:09:e2:63:4f:f6:de:16:e8:8c:74:f7:e3:d9:9c:
be:b1:21:76:a3:40:b1:d1:f3:3b:3d:49:c2:27:be:8b:52:66:
c5:17:06:cb:c8:4b:78:9c:9b:3f:e8:b8:b9:fc:e1:ff:2c:43:
5e:8a:17:60:9f:d0:2d:f9:0b:c5:b8:6b:4f:19:cb:b6:e5:a6:
1d:41:e2:2f:8d:a6:15:27:33:a5:d6:12:38:49:a4:64:79:68:
21:1d:1a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net