Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33372e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e33372e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: SRDUjLDR2m2wAV6zEIUSYxBDC91/lGBcjKCICaNqr4A=
Subject key identifier: D1:1B:13:70:32:38:F9:44:AE:4E:C1:B6:F3:55:96:94:B9:02:F6:6D
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 17CF5BDF4DAA2FE97911026EC09B270B01FFEA6D
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33372e302f32342d3234203d3e203137383835.roa
Signing time: Thu 31 Mar 2022 07:00:00 +0000
ROA not before: Thu 31 Mar 2022 06:55:00 +0000
ROA not after: Thu 30 Mar 2023 07:00:00 +0000
asID: 17885
IP address blocks: 112.215.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:cf:5b:df:4d:aa:2f:e9:79:11:02:6e:c0:9b:27:0b:01:ff:ea:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 06:55:00 2022 GMT
Not After : Mar 30 07:00:00 2023 GMT
Subject: CN=D11B13703238F944AE4EC1B6F3559694B902F66D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:62:b1:d2:e0:2b:42:24:e9:cf:e5:69:cc:
c2:02:67:e1:e2:c0:ee:c9:40:e4:33:e2:1b:c1:1f:
23:62:ef:dc:6b:49:95:13:01:44:ef:72:ad:17:81:
ab:b7:a2:53:7d:28:f2:57:40:2e:45:df:fa:41:62:
a1:5c:7f:11:1c:62:bf:14:64:97:4d:fa:b2:d6:99:
65:e3:49:54:d6:d5:db:0a:4f:4c:08:02:73:c8:5f:
c2:c9:e7:93:f7:9a:16:f0:a7:af:fa:16:7a:1a:fd:
13:45:b5:5e:45:f6:7e:b2:83:0f:33:3a:aa:ed:80:
68:dc:e4:91:ff:b8:dc:8d:cd:2e:0d:17:4a:6b:ae:
02:ae:90:df:e9:db:e9:1c:a7:d7:fb:9a:43:0d:ff:
ff:74:67:9a:4d:af:fd:2f:25:52:46:af:7b:16:81:
7b:fb:62:2d:bb:70:47:ea:55:11:ac:7d:dd:96:79:
d1:85:eb:0d:14:92:73:9e:5f:4e:57:13:e2:de:cc:
43:d0:cc:0d:e4:3a:4d:e3:b7:d2:86:2e:28:0d:6b:
b2:a9:2d:8c:1d:b5:f7:08:d3:81:02:04:3c:c9:b3:
be:db:7a:c7:de:c0:2b:02:2f:c2:76:b0:b7:0e:60:
4a:59:db:10:c0:ea:69:a9:00:29:76:39:41:09:02:
36:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:1B:13:70:32:38:F9:44:AE:4E:C1:B6:F3:55:96:94:B9:02:F6:6D
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e33372e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.37.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:bb:5f:3c:04:b5:db:15:bc:41:4f:70:9e:e6:18:bd:87:45:
a5:0a:2a:bc:99:f0:ae:1f:e3:d0:7d:2f:0c:26:74:1e:bc:15:
b5:2e:bb:31:39:a1:f7:73:fa:62:aa:de:55:45:50:2e:d7:51:
97:bc:8b:c5:c9:8e:2a:04:10:31:f7:d8:8c:95:27:a3:71:68:
ff:8b:11:12:d9:69:0b:b3:44:06:bf:95:16:93:32:da:98:76:
1e:11:7f:3e:62:3f:e3:13:10:f0:a8:d1:af:ed:19:4f:e3:7f:
31:d5:99:7f:46:83:db:5a:d9:dc:b1:3b:bf:f9:99:de:91:be:
35:c6:7e:8a:c0:43:8f:6d:66:b2:2d:93:f2:ce:e6:22:96:ad:
68:4d:91:20:31:01:88:ab:df:86:2a:74:94:e7:f8:eb:b6:59:
8b:0f:60:60:38:9b:01:82:ad:cd:aa:ba:17:55:59:0f:09:67:
6a:39:89:a4:24:47:d9:a4:87:71:8d:38:52:6d:c8:22:df:f2:
e7:43:8a:95:14:36:47:16:e0:f5:7f:cb:d5:71:46:fd:57:f9:
84:d4:fd:93:f4:64:81:76:6d:dd:f1:f9:61:c7:52:d9:10:0f:
c9:5a:90:3d:b2:2e:ec:46:06:b0:48:6f:a0:5b:c3:2f:b6:96:
00:01:fb:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net