Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36332e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e36332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Nr+v2OMv7+B2aSQn+IfnyQrpKY9ALvhVXwX963TI2zs=
Subject key identifier: EA:BB:24:31:F8:6F:AC:DB:0B:5A:43:27:7A:B1:AA:16:B0:47:94:FE
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 24D467F2549F32DF21D543DE7112662C347A63B6
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 05 Apr 2022 06:00:00 +0000
ROA not before: Tue 05 Apr 2022 05:55:00 +0000
ROA not after: Tue 04 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 112.215.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:d4:67:f2:54:9f:32:df:21:d5:43:de:71:12:66:2c:34:7a:63:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 05:55:00 2022 GMT
Not After : Apr 4 06:00:00 2023 GMT
Subject: CN=EABB2431F86FACDB0B5A43277AB1AA16B04794FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2e:26:09:e2:0e:79:18:5a:ab:27:7d:b1:41:
4b:9f:08:b3:e9:c3:dd:d1:65:46:fe:77:ab:ae:06:
5f:8e:54:f0:ed:da:10:11:65:04:54:9c:66:31:dd:
61:ac:11:a4:89:76:ed:26:62:8a:03:20:32:de:3e:
db:92:19:ba:42:b6:35:8c:ef:51:03:0c:1a:6b:10:
2a:ef:ec:e9:28:42:a3:24:e7:1e:98:f3:ed:b0:1a:
d0:80:09:99:e9:41:b1:92:e6:78:f0:6b:2c:01:6a:
c0:83:0b:ec:4a:25:6d:6c:18:a5:f7:da:18:07:9e:
51:1c:c9:92:52:e0:a5:da:ca:e3:c0:0d:53:53:a4:
5b:89:ce:35:08:cc:cc:66:5d:30:7c:e5:da:4f:73:
0a:59:91:50:60:24:7f:05:dd:db:57:1c:19:1f:a7:
dc:9f:f5:bf:c0:b2:47:0f:0d:c4:bb:2d:af:8f:cd:
2d:6f:20:d9:86:e2:3c:ca:9a:59:51:06:85:6e:21:
67:03:75:56:0b:76:2f:10:54:2e:b9:50:85:10:af:
e4:d9:b6:71:6a:55:eb:8b:d3:22:30:59:04:57:76:
7f:1f:a0:d6:a0:ec:19:4b:cf:d0:de:f2:16:a5:da:
c4:0a:52:5c:e8:0d:ca:51:18:ec:9e:c4:99:9f:94:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BB:24:31:F8:6F:AC:DB:0B:5A:43:27:7A:B1:AA:16:B0:47:94:FE
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.63.0/24
Signature Algorithm: sha256WithRSAEncryption
74:cd:43:0b:d3:2b:f6:ac:ad:af:67:3d:eb:73:75:b1:78:24:
3d:2f:19:c9:5e:26:75:d5:43:9f:ce:c9:71:0a:a8:f9:e1:17:
9b:74:e1:32:ae:25:b1:ee:5b:87:c4:d4:b8:c2:b6:b2:4d:a9:
d6:66:c2:29:af:39:15:07:e6:d4:20:dd:9d:e7:4a:14:55:7c:
71:e5:b2:a9:02:56:e5:1d:2e:44:c0:46:02:4e:fb:12:b7:30:
e6:83:dc:75:2c:62:ed:b2:68:5d:4b:42:ca:ee:2b:ed:84:71:
cb:86:e9:ad:9c:1b:2a:11:db:dc:da:ad:7f:dc:21:41:d2:49:
1f:5b:9c:10:82:44:20:ae:f5:42:e9:19:31:eb:39:41:14:8e:
7f:b1:31:6a:27:dd:94:8d:77:07:13:43:41:71:bb:ec:fa:35:
41:56:c3:54:aa:9d:3c:04:79:9b:92:e2:9b:64:88:16:06:ef:
c9:1d:3e:36:c0:9e:63:f5:40:57:23:59:aa:b9:0c:22:69:43:
c3:d9:83:5a:db:58:5b:c5:3c:ab:e4:bd:7d:8b:db:5c:41:1d:
d2:49:2e:2d:fd:b0:eb:34:19:da:d9:b2:e0:98:ff:a3:6e:86:
3f:ba:b4:81:72:a5:3d:07:f7:ab:2c:6e:f2:78:a3:94:83:d4:
ad:27:04:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net