Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36322e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e36322e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: zLOI+rvaLk2H4FFWISctoZoZ1GMdg5NfFwr7E95X6TU=
Subject key identifier: A2:2D:C6:4C:F0:3C:86:BD:5B:C6:99:4D:CF:AF:18:7A:25:18:9E:75
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 6608FE6741983BAE5B47CC26260047B987FA8E57
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36322e302f32342d3234203d3e203137383835.roa
Signing time: Sat 02 Apr 2022 07:00:00 +0000
ROA not before: Sat 02 Apr 2022 06:55:00 +0000
ROA not after: Sat 01 Apr 2023 07:00:00 +0000
asID: 17885
IP address blocks: 112.215.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:08:fe:67:41:98:3b:ae:5b:47:cc:26:26:00:47:b9:87:fa:8e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 2 06:55:00 2022 GMT
Not After : Apr 1 07:00:00 2023 GMT
Subject: CN=A22DC64CF03C86BD5BC6994DCFAF187A25189E75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:be:0e:42:ea:b9:93:4f:86:12:f2:b5:d0:8e:
63:56:38:03:3d:42:2d:ce:22:68:5d:e2:f3:2c:11:
a5:b3:70:e6:52:38:bb:dd:b8:21:a4:7d:91:fd:f5:
5b:6e:0a:52:c8:e3:ee:47:1a:1e:7f:8e:f7:f6:c3:
f8:73:12:bd:c8:0d:fd:59:f2:8c:76:74:82:24:ef:
00:d3:df:42:25:d5:1a:0c:0b:38:77:d5:8e:55:5f:
1d:10:7d:ba:33:39:cd:5d:7c:98:63:d9:2d:76:fb:
9e:1f:8a:7e:d1:54:5e:dc:88:08:4a:d4:47:4b:52:
92:d3:fe:b5:25:73:70:03:5c:6d:27:2d:81:c3:21:
0f:84:07:f8:05:89:03:78:60:f4:e6:73:08:f6:6b:
62:ae:4e:b9:7d:8b:4d:a5:84:7f:f8:d7:4d:e3:2a:
54:1e:02:85:8a:ee:53:09:e0:f4:31:38:a8:5a:b7:
d7:ec:10:61:1d:6f:26:53:50:22:93:23:23:76:a1:
61:c6:59:6b:dc:fb:99:60:c4:08:4e:96:21:e8:8b:
3b:a7:5d:0e:a2:c0:63:b7:4f:7c:ef:e0:11:0d:65:
2b:97:ed:4f:bc:57:4a:84:e0:2d:1a:e0:31:4d:34:
ed:22:5e:83:5a:c4:46:e6:57:2d:bc:d3:b2:ae:ed:
ef:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:2D:C6:4C:F0:3C:86:BD:5B:C6:99:4D:CF:AF:18:7A:25:18:9E:75
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36322e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.62.0/24
Signature Algorithm: sha256WithRSAEncryption
92:eb:2e:8f:e2:13:36:23:c6:4d:4f:9a:df:76:9a:9d:05:0c:
db:8b:0c:23:62:2c:d7:45:47:d9:c6:39:5e:e2:a4:fa:22:aa:
9b:74:0d:95:1d:b3:71:26:ab:43:50:4c:25:95:a8:86:90:ad:
85:31:ba:6d:40:16:85:67:de:49:86:92:51:c6:21:50:2c:65:
f5:56:18:f5:85:aa:52:18:cb:fd:2c:fc:e2:d6:f5:1c:9f:66:
9a:67:34:ea:5b:12:fe:8a:dc:03:13:77:df:a3:dc:57:79:44:
4d:7b:44:e1:b7:93:06:12:c2:63:8a:0d:e8:2c:41:fa:ca:7e:
7c:1d:29:4c:bf:23:53:08:07:10:2f:ed:3f:3b:5c:ed:e8:e4:
ef:ea:c7:6d:4c:c7:16:61:08:8c:a9:4d:7c:88:92:f3:bc:a1:
6d:0f:31:21:d1:dd:4d:cc:ba:36:e2:ea:2b:b6:f7:88:6b:18:
3f:83:96:8c:ae:52:59:d9:3a:fe:db:e5:3b:6e:e0:94:c7:2c:
79:f4:3a:3e:9e:5f:ca:95:9f:bb:7c:41:c2:1b:41:fd:e8:4c:
03:50:1c:0b:60:eb:91:13:15:89:81:a3:c7:96:75:11:03:eb:
39:cc:b7:f9:10:fb:a0:30:07:3c:57:fa:2f:d8:57:47:f1:86:
5d:8b:f8:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net