Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34362e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e34362e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: O9z+7TyIeZhSYDjziPjlXDt9n+v2iMFG3qV2vU3RvZo=
Subject key identifier: 91:9F:13:34:71:1E:93:25:C5:91:D1:8B:7F:66:1B:44:44:20:65:26
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 13E5D5121F2DCF3CC330CFC43A3E7DA2A23F4154
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34362e302f32342d3234203d3e203137383835.roa
Signing time: Sat 02 Apr 2022 04:00:00 +0000
ROA not before: Sat 02 Apr 2022 03:55:00 +0000
ROA not after: Sat 01 Apr 2023 04:00:00 +0000
asID: 17885
IP address blocks: 112.215.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:e5:d5:12:1f:2d:cf:3c:c3:30:cf:c4:3a:3e:7d:a2:a2:3f:41:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 2 03:55:00 2022 GMT
Not After : Apr 1 04:00:00 2023 GMT
Subject: CN=919F1334711E9325C591D18B7F661B4444206526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9c:58:73:55:7c:3e:9a:c6:09:f9:52:53:1e:
79:8f:35:c0:bb:64:cc:a0:58:ab:0d:7f:3d:b2:54:
1d:93:5f:76:d5:3c:60:95:bd:6d:92:5a:21:5c:7a:
f8:75:66:93:a8:74:55:0f:8b:11:f8:99:3d:0b:ba:
91:18:7d:3b:e2:10:75:49:77:aa:4e:dd:33:19:55:
57:90:de:bb:a6:18:3c:cb:8b:ec:b1:a3:59:0f:12:
dd:ce:01:2e:bd:39:5d:2c:07:3e:5e:92:d2:c5:4b:
c2:75:45:e8:c2:c1:ab:29:91:2c:c7:b7:e8:e9:c3:
8d:62:1b:fc:95:56:4d:07:c1:00:7f:87:b0:9e:a1:
ba:59:b2:15:87:ed:3e:26:99:d7:87:fd:67:c2:e3:
8a:38:25:ec:4b:22:ed:e2:e9:ac:39:3c:3d:7f:92:
86:cb:c1:e4:f1:ed:d8:89:bc:4c:ab:b0:31:67:7c:
9d:1d:9a:b8:d8:03:56:ea:f3:60:03:08:ba:e5:23:
b4:fd:2c:08:5d:23:69:61:a1:93:f1:ad:8f:20:f7:
59:45:d3:0d:4b:64:25:2e:f1:1a:eb:70:e6:b1:b6:
e7:b5:72:40:45:4c:0f:8a:a8:82:98:f5:0b:be:a5:
fb:df:b9:64:df:2c:a7:f1:c7:e1:13:02:46:f7:3e:
0c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9F:13:34:71:1E:93:25:C5:91:D1:8B:7F:66:1B:44:44:20:65:26
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e34362e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.46.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:e9:d5:93:a4:24:0a:f8:d9:9f:02:5c:82:9f:48:84:1c:de:
d5:7d:a7:f6:67:ac:04:93:ce:71:f8:cd:94:02:85:7e:4d:40:
da:b0:10:27:eb:a9:f9:35:50:61:32:67:80:b0:bb:6e:24:ae:
02:9c:e6:af:19:98:b3:66:f4:22:be:52:4d:75:b6:df:96:9c:
15:91:78:90:c8:ea:a2:2c:66:0d:45:e1:6d:26:c4:85:23:60:
59:7b:fe:70:a2:c6:01:16:93:40:2d:f4:69:32:76:56:0b:27:
9f:d5:f1:ec:5e:49:f0:03:93:6f:24:ea:4c:60:47:c2:a4:d3:
98:d5:d0:96:69:4c:e9:89:25:75:6f:bc:9f:80:ed:13:e5:c6:
d5:c9:34:b8:71:f4:7d:90:54:b9:b0:23:06:1e:12:7c:cf:d5:
b3:e9:a6:2a:f0:ed:9b:41:33:0a:67:ce:1f:ca:69:2c:be:f3:
5a:bd:8d:fe:d0:25:94:65:31:b7:e5:7b:dc:bc:19:6c:4e:50:
e5:fc:6d:dd:6d:11:e1:ec:99:00:7f:cc:ec:97:b9:10:f1:c2:
24:79:65:b7:ba:bf:4a:fe:52:84:a2:d1:b4:01:9d:84:cf:21:
0e:39:c8:b4:96:ea:c1:8e:c0:80:f5:b1:42:e5:a2:18:f6:3b:
31:13:a8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net