Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34322e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e34322e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: BuDeCGzZq4TkPjs3MjLO8squT7t3aU7rotH7RjHzax4=
Subject key identifier: 93:64:AF:F8:27:DC:BE:0A:F8:A3:B3:81:C5:4E:A0:F6:5F:39:F7:9F
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 2DB2EE184BFFBA92EC3BB94DCD19E0339091F71C
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34322e302f32342d3234203d3e203137383835.roa
Signing time: Sat 02 Apr 2022 04:00:00 +0000
ROA not before: Sat 02 Apr 2022 03:55:00 +0000
ROA not after: Sat 01 Apr 2023 04:00:00 +0000
asID: 17885
IP address blocks: 112.215.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:b2:ee:18:4b:ff:ba:92:ec:3b:b9:4d:cd:19:e0:33:90:91:f7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 2 03:55:00 2022 GMT
Not After : Apr 1 04:00:00 2023 GMT
Subject: CN=9364AFF827DCBE0AF8A3B381C54EA0F65F39F79F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:06:65:59:4a:f5:1a:16:e3:91:6b:b6:6a:2e:
a4:44:1e:43:02:e7:87:cc:fe:09:f6:6c:01:ef:d2:
e7:a1:24:65:84:2a:55:4f:43:5c:67:59:49:25:58:
cc:05:ff:a2:91:3e:59:2b:3a:f9:a9:ef:4c:21:88:
e8:d3:96:d5:21:91:39:60:41:88:44:c9:19:c1:f3:
1f:d5:22:f3:23:da:2d:2f:21:1e:9b:16:31:0c:9c:
a4:89:31:d4:e4:39:b5:b0:fd:46:f0:eb:61:e7:d2:
c5:5c:8e:e0:3d:22:48:a1:f1:4d:c0:3f:dc:03:8f:
f8:a2:f4:d1:90:6f:5e:31:c0:68:1b:7a:b6:81:54:
15:72:a2:b2:e9:29:ca:bf:8c:23:66:66:60:49:b7:
ed:11:42:00:9f:da:6a:4a:81:8b:ba:46:14:41:39:
89:cf:21:31:59:de:1c:80:48:42:2c:5b:48:e4:0e:
c6:e8:85:37:c7:e5:ad:b7:40:45:e4:ff:bb:2e:94:
41:5a:da:7e:53:be:2e:22:1d:74:86:2f:fe:d4:ac:
25:88:90:5e:28:71:46:23:e6:1c:f2:7b:50:93:14:
02:54:b4:b3:71:16:33:e6:89:ec:26:86:8a:80:a3:
06:a2:03:5d:19:98:ae:ab:d3:de:a6:8f:72:76:ed:
8e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:64:AF:F8:27:DC:BE:0A:F8:A3:B3:81:C5:4E:A0:F6:5F:39:F7:9F
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34322e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.42.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:89:08:91:33:d9:7a:c7:97:17:43:fc:99:a9:99:9f:29:ce:
95:3b:4d:7d:3b:24:6d:c4:f6:74:ca:0f:c1:7c:e5:8f:fe:fd:
7c:4e:60:b4:82:d8:c9:10:7a:6c:05:5f:75:f2:75:42:46:47:
de:18:76:1a:2d:e6:e6:bc:4d:26:b5:35:64:a3:6d:82:55:76:
ad:4e:77:1b:ff:db:d0:f9:be:14:a3:6f:a9:83:c8:36:2b:09:
96:93:6c:da:7f:2e:06:c9:77:3d:6c:0a:b7:13:9d:6a:9e:96:
b8:d9:af:f6:12:5c:4c:d9:96:fb:c2:c9:c1:4f:e1:2b:cf:4e:
44:ec:c5:74:d4:e3:d2:6a:1b:34:87:e7:bb:08:ad:9f:05:d3:
16:c9:b4:65:3c:df:f2:c1:4d:fb:4e:47:4f:fe:59:5f:5f:c3:
ec:fd:0b:43:dc:d4:66:fd:e2:f9:c2:f7:d5:ac:56:c8:bb:ad:
02:f1:9e:72:ef:4d:da:d9:af:fe:46:bb:2b:ac:cf:1f:c9:e0:
51:cb:6c:81:49:43:99:61:be:2e:fa:a3:12:02:67:6f:fb:d2:
79:e3:27:2e:78:c1:25:aa:d7:84:87:83:3f:80:87:90:61:40:
24:8b:b9:85:1d:f7:b7:89:06:a3:c8:3e:02:83:cd:2b:e9:ae:
bd:37:7d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net