Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34352e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e34352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: N48R9swcEv5qxT6Tos3Y1Hp4+5fio+QFTaslWhjOPp0=
Subject key identifier: 1D:5D:A7:F5:10:96:21:A8:3A:99:3F:0B:6D:F5:D3:D3:4F:85:E6:B6
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 4B45B96E71F17CB016CCB99B09CADF16C12E170E
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34352e302f32342d3234203d3e203234323033.roa
Signing time: Thu 31 Mar 2022 20:00:00 +0000
ROA not before: Thu 31 Mar 2022 19:55:00 +0000
ROA not after: Thu 30 Mar 2023 20:00:00 +0000
asID: 24203
IP address blocks: 112.215.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:45:b9:6e:71:f1:7c:b0:16:cc:b9:9b:09:ca:df:16:c1:2e:17:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 19:55:00 2022 GMT
Not After : Mar 30 20:00:00 2023 GMT
Subject: CN=1D5DA7F5109621A83A993F0B6DF5D3D34F85E6B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a1:d6:ad:9b:df:29:17:1f:16:92:1e:6d:a4:
c1:9a:0d:ac:ac:f7:3e:4a:a3:62:f6:3f:9b:f7:53:
a3:a8:27:e9:85:4c:d1:af:30:fb:3c:ca:6b:1f:e7:
45:02:30:f4:30:6e:b0:75:ed:ed:b1:d5:6c:ae:77:
ee:26:1e:1d:8b:05:89:c0:e9:2b:ed:d1:8b:0b:2a:
50:d0:c9:5c:8e:99:79:5b:d3:8a:ec:53:12:be:61:
68:d8:04:f4:56:37:84:ff:a4:61:0b:67:30:d9:a7:
a5:75:e3:69:5c:d9:d7:71:af:9b:57:ab:7d:f8:95:
3d:c6:5a:b0:99:9e:bd:56:8c:cf:25:2c:23:74:ae:
90:25:45:d8:4d:c3:e3:e8:52:6f:c8:b8:af:28:74:
c7:10:76:55:88:ca:4d:7a:05:7b:4e:89:36:bb:f0:
a3:66:2e:9f:94:4a:da:26:be:12:b3:cb:78:13:59:
0f:7c:e4:8f:7a:46:cf:1f:f2:55:3d:b2:56:69:99:
1b:f6:6a:25:b0:9d:6a:a3:03:38:f5:a8:69:1b:65:
1d:9c:d3:e9:24:db:d6:72:12:50:bf:31:66:db:fc:
ab:e4:f3:81:b1:b6:ec:b0:1b:48:1c:35:f0:32:55:
a7:16:3a:b6:0b:9f:84:5f:c6:60:7d:e1:5e:ea:48:
b5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5D:A7:F5:10:96:21:A8:3A:99:3F:0B:6D:F5:D3:D3:4F:85:E6:B6
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.45.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:3b:9a:42:2b:a5:e5:a2:5c:58:8f:68:0c:cf:78:71:5c:8f:
35:cd:e9:a4:63:43:2c:17:eb:09:39:19:81:1d:84:b5:43:7d:
92:63:3c:b1:8d:e2:f4:fb:3a:32:c6:98:5b:a0:eb:8a:d2:a2:
8b:3f:7f:96:24:78:95:fa:69:82:d8:e8:37:ae:a4:c6:de:eb:
f9:8f:ff:f9:be:ad:9f:2a:09:0d:d6:df:18:ea:86:ba:7c:b5:
42:7e:e5:b6:5c:16:ba:8b:f9:dc:f0:92:49:b9:0a:c9:18:f0:
6c:ae:74:a2:3a:09:a6:ec:64:8c:63:c7:ea:a0:fe:14:76:29:
f5:8d:f0:c3:a2:29:17:57:9c:6f:d3:77:76:a3:87:d9:ec:8f:
09:6a:fc:b8:c1:75:73:66:15:37:a7:d9:c0:9b:ce:e1:85:50:
f8:4c:52:96:c4:f9:2b:94:ff:8f:7f:58:1a:1b:da:34:2c:f1:
e6:40:02:02:46:fe:d5:fd:14:2f:05:98:e8:74:3b:ed:7d:d0:
68:1d:50:ff:da:80:14:2d:76:fb:85:28:95:0c:78:52:5d:5a:
64:34:ce:ef:98:31:39:1b:e7:1d:0d:73:15:fa:83:19:38:d6:
c1:d8:14:c3:3a:91:ca:6d:58:7a:e5:7e:5d:f9:1a:95:97:fa:
1c:e9:b7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net