Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33362e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e33362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: jtPD9wQbUVOegivpyAWbglXEGyQ6DtJ96hM4QBgWN4s=
Subject key identifier: 21:0C:54:E5:D8:2A:48:E5:3B:07:7F:6A:58:55:44:81:BE:67:F1:BE
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 6DDFDCEC620153E75FE9B79472798D96489FE15D
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33362e302f32342d3234203d3e203234323033.roa
Signing time: Thu 31 Mar 2022 10:00:00 +0000
ROA not before: Thu 31 Mar 2022 09:55:00 +0000
ROA not after: Thu 30 Mar 2023 10:00:00 +0000
asID: 24203
IP address blocks: 112.215.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:df:dc:ec:62:01:53:e7:5f:e9:b7:94:72:79:8d:96:48:9f:e1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 09:55:00 2022 GMT
Not After : Mar 30 10:00:00 2023 GMT
Subject: CN=210C54E5D82A48E53B077F6A58554481BE67F1BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3d:15:16:22:45:34:01:08:0b:30:e6:d3:1d:
c2:5f:83:39:aa:be:e4:70:2c:4d:6b:15:32:25:6c:
53:91:ad:43:dd:75:34:d8:c9:cd:69:34:1f:20:36:
19:dc:25:2e:2a:0e:11:18:60:07:ae:9d:57:f6:4e:
c5:d9:f0:35:4b:78:f3:36:37:cb:c9:7e:74:c6:0f:
77:ac:29:86:eb:6f:db:e0:ee:ef:a4:a1:12:be:5d:
f6:c3:a6:3e:c3:da:66:a0:78:51:47:fc:5b:04:0c:
4e:f8:e9:af:6c:a3:b7:86:0f:6c:ec:1f:1f:99:3d:
bc:5e:d4:bd:17:12:d5:52:63:f4:a6:8b:f2:22:3e:
85:91:c2:6b:d3:05:b6:24:c8:71:39:f1:81:05:e4:
47:0b:db:fc:3f:c4:8e:4f:30:82:aa:50:f6:8e:c4:
31:33:c9:e4:2d:6b:c2:7e:d0:b4:08:e0:e5:ed:bf:
f3:60:66:c9:e5:7e:c2:d7:a6:15:b3:c1:d4:bd:47:
76:39:a9:79:1b:9e:71:94:3a:a9:3e:32:03:0f:30:
d5:ac:4a:a1:b1:32:56:2d:da:1b:c9:fc:f3:b7:af:
ae:3e:f3:4d:fb:1c:e0:cd:0f:db:ab:81:fd:c5:8e:
22:17:fd:04:42:2f:d8:de:a9:56:df:ba:97:7f:d9:
80:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0C:54:E5:D8:2A:48:E5:3B:07:7F:6A:58:55:44:81:BE:67:F1:BE
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.36.0/24
Signature Algorithm: sha256WithRSAEncryption
91:a5:ad:eb:46:f3:51:1b:47:fd:31:27:6f:77:72:d9:c8:dc:
b2:d8:20:b1:d4:89:51:05:e0:f4:ce:f8:9e:50:41:1e:f6:69:
5d:5f:65:79:d2:20:7b:94:10:a2:9c:41:47:ab:73:74:6e:c3:
cd:de:cd:54:61:96:87:81:90:f8:9a:98:a6:86:f7:90:bf:ac:
ad:5b:a8:db:78:1f:5f:1d:57:62:d3:fe:91:84:6c:97:61:3a:
9f:2d:5c:3c:50:28:31:80:f0:f5:03:51:85:1c:ce:be:d2:69:
cd:b3:5f:b2:61:32:e1:e8:07:c2:1f:38:2d:3d:a9:8c:4e:09:
a9:e3:a0:fe:ba:e0:63:18:4c:bc:02:03:e1:1e:60:c5:b7:11:
95:98:b5:ca:ba:42:94:65:7c:4b:d5:cc:a5:5d:56:aa:b2:ae:
39:2a:12:64:4c:7d:f2:ad:28:fa:ad:ec:eb:f4:3b:8b:88:70:
fc:35:83:81:3f:9f:a0:e6:81:95:fb:b1:50:9a:bc:8e:dd:69:
fa:14:e5:96:27:bd:a7:84:49:f2:ac:30:1a:2e:f6:9e:88:2a:
8a:3d:18:c6:ac:2a:4f:16:ed:f8:9f:76:a8:3b:3f:88:20:43:
fc:48:08:72:2d:34:16:d5:2e:c7:51:7e:19:ab:65:2a:65:c6:
54:84:d4:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net