Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34302e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e34302e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: CiGq8A6UdO6cNzujXyr6YgRJpNIuQtMfZQ6MwGHw5OQ=
Subject key identifier: 4A:F3:92:BD:32:D8:D2:4C:90:B4:75:30:D4:A3:CA:AF:35:48:A3:CE
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 359D351D7600C62AE72E537337A27D832BCA956A
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34302e302f32342d3234203d3e203137383835.roa
Signing time: Sat 02 Apr 2022 04:00:00 +0000
ROA not before: Sat 02 Apr 2022 03:55:00 +0000
ROA not after: Sat 01 Apr 2023 04:00:00 +0000
asID: 17885
IP address blocks: 112.215.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:9d:35:1d:76:00:c6:2a:e7:2e:53:73:37:a2:7d:83:2b:ca:95:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 2 03:55:00 2022 GMT
Not After : Apr 1 04:00:00 2023 GMT
Subject: CN=4AF392BD32D8D24C90B47530D4A3CAAF3548A3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:aa:11:11:b1:ba:5d:6e:4d:c8:3d:ba:f7:3d:
0a:2a:16:b7:c4:df:48:7f:ba:d9:62:35:60:a1:db:
8a:9e:6e:5b:1b:d1:d7:6a:74:74:89:28:2a:fa:b2:
69:8d:71:47:e8:d3:ba:55:19:e8:5c:e5:42:35:10:
dc:3b:f2:df:fe:d1:4e:a6:36:b1:59:a6:86:59:af:
50:bc:38:81:49:85:a1:64:39:3d:0e:8f:fd:81:04:
13:b6:26:8d:e9:58:69:e8:79:eb:bc:ea:7f:bb:96:
f2:ba:09:1e:2a:22:71:71:4a:55:80:9e:51:03:0d:
d3:fc:51:99:66:80:63:5c:67:16:d8:16:d3:e7:08:
a8:31:ac:f5:a5:a5:9c:60:d4:2d:59:23:25:d1:74:
8e:eb:28:0b:93:38:ae:4b:d8:1f:0f:09:eb:fb:6b:
ce:1e:89:7b:40:34:1d:c0:ed:67:c4:32:74:87:70:
59:2d:ba:25:84:c7:26:56:a2:29:da:9c:5a:92:bf:
5b:41:cf:56:d8:20:ab:58:7a:3c:24:67:dc:d9:0d:
ad:0f:46:0b:d6:3a:99:3e:a0:0a:0b:98:2e:c1:40:
d4:0d:d1:b3:6e:60:ee:73:52:b5:6f:da:1b:57:16:
cd:de:2c:5e:c1:6f:04:3e:1a:8c:88:0e:c4:c1:66:
df:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F3:92:BD:32:D8:D2:4C:90:B4:75:30:D4:A3:CA:AF:35:48:A3:CE
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34302e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.40.0/24
Signature Algorithm: sha256WithRSAEncryption
32:cb:94:e0:49:2b:ee:19:f8:c4:98:ec:37:ae:41:2b:6f:d3:
80:8d:75:45:f6:c6:51:92:f8:3b:26:c3:ea:3f:10:a9:54:e0:
d0:2d:f3:c9:8c:b3:ec:a9:f3:36:64:86:a5:89:08:e7:4f:ce:
8a:90:5e:33:91:85:58:39:40:d8:f7:38:ed:5f:ef:ec:8a:dc:
0a:fd:77:6e:9f:f9:6b:a0:1f:ac:0b:99:c5:64:6b:dd:78:4d:
67:c8:4e:7f:5b:27:70:13:fc:b1:48:ce:ce:ac:40:77:20:49:
ef:f4:d8:ee:3d:47:7e:44:b6:64:5e:cc:83:ad:e0:8e:bb:02:
64:a9:b4:74:c4:c6:73:bb:be:d8:3b:5c:a0:11:7c:17:cd:4f:
e6:ee:0e:dd:5e:1d:3e:4f:0a:f1:8c:76:b2:01:87:4b:c2:0d:
13:fc:02:be:7f:8e:1d:fc:80:12:04:44:b9:f2:08:57:f1:ff:
92:8f:75:31:0b:4a:6d:7f:d2:13:22:d9:22:30:f0:b5:62:a4:
ac:d3:1b:ed:7d:63:0c:db:1f:e7:ff:f1:32:57:18:88:9b:64:
56:d2:81:5b:67:26:96:9a:37:c9:6d:3e:6f:cf:42:10:27:fc:
ff:41:12:1a:8c:4f:b4:eb:b0:88:bb:b3:52:15:e4:1f:8d:c1:
86:64:a5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net