Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33342e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e33342e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: yIpbkzrFjIUIvzr2LCKFlWpvair219Ic2zPQswl+kHE=
Subject key identifier: 6D:51:6B:95:51:55:C8:4A:FB:E8:87:EB:1F:5B:C2:42:C9:66:6D:B4
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 39B7CF885786BBDE6FF9F464036323520A58BF
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33342e302f32342d3234203d3e203137383835.roa
Signing time: Sat 02 Apr 2022 03:00:00 +0000
ROA not before: Sat 02 Apr 2022 02:55:00 +0000
ROA not after: Sat 01 Apr 2023 03:00:00 +0000
asID: 17885
IP address blocks: 112.215.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:b7:cf:88:57:86:bb:de:6f:f9:f4:64:03:63:23:52:0a:58:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 2 02:55:00 2022 GMT
Not After : Apr 1 03:00:00 2023 GMT
Subject: CN=6D516B955155C84AFBE887EB1F5BC242C9666DB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:32:a3:da:38:9d:7a:90:42:44:3b:37:be:f4:
a0:3d:4e:58:c2:3c:e8:8b:e5:c6:7b:9c:93:57:56:
bb:c2:2b:ef:27:fb:6b:74:19:59:94:28:9f:f0:64:
90:d7:4c:67:84:b2:95:41:35:a9:0a:18:5f:8c:0c:
27:48:40:95:ef:1e:c0:d6:bd:e1:3c:45:fc:2b:d8:
05:6f:1b:32:5b:0f:99:17:b7:20:f3:66:d9:79:b5:
60:9a:51:41:52:b2:f5:4b:cb:bc:b7:eb:da:24:fb:
f5:d2:4f:58:65:b7:15:2d:7f:73:1e:2c:95:35:fe:
56:b3:be:6b:83:fc:a0:e5:7f:61:1e:93:0b:7b:2a:
13:4c:96:64:e0:8b:ac:14:b3:15:0d:54:1e:41:e0:
e5:2b:09:03:95:4d:b2:d9:03:dc:95:b5:63:8e:df:
5d:a3:b5:2e:ed:a6:de:c0:63:91:66:d4:16:3b:c6:
16:f2:a8:d6:56:e2:71:4f:d7:b5:27:29:ec:9a:0e:
af:e6:37:39:46:c7:65:3d:08:27:ca:ea:0d:b1:fb:
25:3b:9b:38:1f:d9:b8:3f:ed:31:d4:c9:c5:58:34:
da:55:36:bf:a2:73:ca:bb:bf:54:20:fc:97:d3:24:
cd:61:43:bd:95:1b:ec:37:2a:8d:a7:74:43:0d:7c:
f3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:51:6B:95:51:55:C8:4A:FB:E8:87:EB:1F:5B:C2:42:C9:66:6D:B4
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33342e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4a:16:7c:59:de:32:80:a9:28:3a:cb:1d:18:3b:ab:a6:cf:
5c:d1:29:54:fb:24:0d:a8:7e:d6:4b:77:42:ea:91:02:d0:61:
cf:47:50:5b:c5:70:be:3b:62:da:d1:70:3b:4b:6e:72:6e:91:
fe:ea:76:25:b2:35:fd:79:18:f9:f8:47:95:6d:fa:14:c9:e3:
e6:92:3b:63:86:fd:f8:31:0e:e7:e9:ba:47:4c:4b:fe:79:fe:
98:77:c1:1c:e7:06:2a:08:84:99:6f:25:45:91:79:c7:86:a6:
46:d5:08:c0:1a:d0:85:b0:7c:58:84:51:e5:40:67:1b:66:e5:
66:9b:e7:48:05:85:6e:05:a5:d4:77:f8:b0:7b:d1:c7:6e:50:
27:44:b6:a6:6d:9c:8a:80:76:c4:29:49:fa:e3:05:ec:ae:df:
31:84:4f:0d:96:5c:d9:53:24:75:69:c5:3d:57:c0:9f:c5:89:
20:5b:8c:b3:4f:65:66:d4:26:21:1d:3c:d4:2e:a0:90:2d:c0:
b1:a9:54:a7:65:3e:5b:d3:f9:10:21:1e:49:7c:21:3e:06:c9:
55:29:0a:3f:8f:44:80:6a:d2:0c:38:07:7a:c8:16:62:79:16:
f7:6a:68:69:3c:0c:1f:26:34:b0:d6:c7:49:c8:1a:8f:a9:0a:
e3:9b:13:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net