Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36342e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e36342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: vYzR6gjwrk8kVELr1rigVpz2ex4fgrpwWeJ7puyQaK8=
Subject key identifier: BA:AD:F2:BB:0E:7F:96:5F:37:BF:27:6C:E7:96:CE:CB:DB:C6:C7:E2
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 741598B328E06ACAC95587365A1AB1AA783F894F
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36342e302f32342d3234203d3e203234323033.roa
Signing time: Tue 05 Apr 2022 06:00:00 +0000
ROA not before: Tue 05 Apr 2022 05:55:00 +0000
ROA not after: Tue 04 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 112.215.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:15:98:b3:28:e0:6a:ca:c9:55:87:36:5a:1a:b1:aa:78:3f:89:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 05:55:00 2022 GMT
Not After : Apr 4 06:00:00 2023 GMT
Subject: CN=BAADF2BB0E7F965F37BF276CE796CECBDBC6C7E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bf:08:ae:5d:de:35:3f:29:fe:a3:40:02:c2:
28:f2:e7:f3:86:ce:2f:82:27:3c:e3:a3:eb:f9:6b:
de:11:f6:cb:aa:fa:21:42:cb:a1:f1:8d:42:b5:07:
b4:9a:99:d4:6d:43:93:bc:aa:75:ac:78:91:df:e5:
63:d3:7a:a7:0d:dc:f2:85:fc:1a:01:74:73:b9:b6:
4a:a6:8f:61:76:a8:6a:a5:37:c3:b6:b8:7b:de:14:
0e:da:35:1c:ea:c3:9e:64:ed:17:43:43:ee:dd:84:
e6:df:c4:2d:f7:4a:5c:b9:9b:97:43:3d:3a:46:b7:
ed:b3:59:7b:2a:2b:b7:c2:a4:fb:60:5c:ef:b2:26:
2d:21:ca:43:04:b2:62:d4:23:3c:8c:9a:f6:a8:d1:
b9:93:5d:16:1b:da:d2:87:95:54:61:d4:31:7c:8b:
5d:5b:83:08:7d:8f:24:b2:4d:64:e5:e0:2d:c0:1f:
2a:2b:27:e1:f5:7d:b7:03:0f:ce:49:30:f3:87:23:
ce:6f:40:33:81:20:9e:0e:00:dd:26:2a:25:e3:f2:
ae:88:a6:48:4a:38:da:c6:d9:1d:db:fe:8c:78:e9:
73:55:8c:24:5d:d2:86:58:8c:86:c4:f8:46:1a:fd:
e9:e8:f8:02:2e:95:06:93:6e:54:61:76:6d:2f:a2:
64:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AD:F2:BB:0E:7F:96:5F:37:BF:27:6C:E7:96:CE:CB:DB:C6:C7:E2
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e36342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.64.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:89:15:ff:99:eb:59:e8:e7:4c:d9:f8:54:eb:b9:6b:b3:d6:
41:8a:86:50:26:01:e2:98:33:b4:be:f5:ec:86:f0:8d:99:91:
cc:0f:a5:f0:49:db:de:00:fb:70:9c:f1:b5:5f:f6:79:35:00:
eb:8c:f7:03:f7:77:36:74:23:4d:8d:a8:4a:5a:6d:dd:3a:53:
3d:d8:56:6a:58:1a:4e:4c:57:2b:cf:ea:e6:73:86:bb:2a:6a:
3d:d2:9b:53:e4:ef:a9:f4:83:af:f3:24:ee:62:78:46:f1:79:
db:57:f6:4e:94:63:90:c9:29:7e:1c:d1:dc:c1:19:de:0e:75:
ad:b9:ca:9c:2d:e2:07:45:aa:8f:94:5a:b3:fe:6e:74:e2:4e:
87:17:59:85:3c:ce:7f:4c:a8:1a:09:da:60:f2:75:f5:f0:76:
47:e2:71:87:af:98:63:eb:3b:ae:96:e6:3a:a5:b7:ab:0e:d0:
30:03:62:4e:f6:58:b1:5e:24:a8:f1:d5:f7:3b:68:e5:04:28:
b3:00:05:6a:df:04:6f:f7:12:ad:eb:9a:04:11:08:93:b7:ed:
21:9e:0a:c0:42:bc:de:86:90:fd:15:db:3e:8b:b4:8e:4e:00:
3e:52:23:27:8b:c1:8d:d8:72:26:67:34:be:94:70:1c:43:e5:
0c:93:4b:69
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUdBWYsyjgasrJVYc2Whqxqng/iU8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDUwNTU1MDBaFw0yMzA0MDQwNjAwMDBaMDMxMTAvBgNV
BAMTKEJBQURGMkJCMEU3Rjk2NUYzN0JGMjc2Q0U3OTZDRUNCREJDNkM3RTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClvwiuXd41Pyn+o0ACwijy5/OG
zi+CJzzjo+v5a94R9suq+iFCy6HxjUK1B7SamdRtQ5O8qnWseJHf5WPTeqcN3PKF
/BoBdHO5tkqmj2F2qGqlN8O2uHveFA7aNRzqw55k7RdDQ+7dhObfxC33Sly5m5dD
PTpGt+2zWXsqK7fCpPtgXO+yJi0hykMEsmLUIzyMmvao0bmTXRYb2tKHlVRh1DF8
i11bgwh9jySyTWTl4C3AHyorJ+H1fbcDD85JMPOHI85vQDOBIJ4OAN0mKiXj8q6I
pkhKONrG2R3b/ox46XNVjCRd0oZYjIbE+EYa/eno+AIulQaTblRhdm0vomT1AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUuq3yuw5/ll83vyds55bOy9vGx+IwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzNjM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHDXQDANBgkqhkiG
9w0BAQsFAAOCAQEALYkV/5nrWejnTNn4VOu5a7PWQYqGUCYB4pgztL717IbwjZmR
zA+l8Enb3gD7cJzxtV/2eTUA64z3A/d3NnQjTY2oSlpt3TpTPdhWalgaTkxXK8/q
5nOGuypqPdKbU+TvqfSDr/Mk7mJ4RvF521f2TpRjkMkpfhzR3MEZ3g51rbnKnC3i
B0Wqj5Ras/5udOJOhxdZhTzOf0yoGgnaYPJ19fB2R+Jxh6+YY+s7rpbmOqW3qw7Q
MANiTvZYsV4kqPHV9zto5QQoswAFat8Eb/cSreuaBBEIk7ftIZ4KwEK83oaQ/RXb
Pou0jk4APlIjJ4vBjdhyJmc0vpRwHEPlDJNLaQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net