Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37312e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e37312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8bK0pD/Bd4CQC5umOuvTC7Z8fXnjqUn0y0Vi1va2/Xc=
Subject key identifier: B3:F3:24:98:9D:F5:7D:3B:D2:F6:D0:C2:D0:62:A6:3F:71:84:86:C5
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5DAF26D89A58ECD01E123DD68DD176E59CD2ED66
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37312e302f32342d3234203d3e203234323033.roa
Signing time: Thu 31 Mar 2022 12:00:00 +0000
ROA not before: Thu 31 Mar 2022 11:55:00 +0000
ROA not after: Thu 30 Mar 2023 12:00:00 +0000
asID: 24203
IP address blocks: 112.215.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:af:26:d8:9a:58:ec:d0:1e:12:3d:d6:8d:d1:76:e5:9c:d2:ed:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 11:55:00 2022 GMT
Not After : Mar 30 12:00:00 2023 GMT
Subject: CN=B3F324989DF57D3BD2F6D0C2D062A63F718486C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:dd:19:16:01:c0:fd:fe:b7:a9:9d:4a:53:7f:
7e:32:d8:13:8a:fd:46:4e:6c:70:f4:70:58:bb:0f:
6f:b6:89:c9:0d:5c:8a:e8:fe:7d:f8:bb:29:e2:bc:
43:bc:25:5f:47:48:78:75:4c:4c:8a:98:3b:aa:45:
b1:a7:49:cf:c3:61:11:4c:30:82:d5:36:c8:82:df:
2b:61:39:b9:3b:54:0c:c1:b5:32:92:31:cc:c5:b4:
d3:2a:0f:30:d6:d7:e7:08:10:57:c4:5d:ea:aa:57:
0d:ab:9b:9b:9c:9d:6b:8a:2d:c1:70:54:d3:bb:be:
e2:cf:de:44:0d:f5:8a:d1:0c:81:36:81:7c:91:5d:
90:3f:61:f9:55:9a:3b:12:d3:d3:a3:80:60:06:9d:
e7:11:62:ed:7d:54:3e:eb:1c:29:87:32:08:ab:07:
34:b7:3e:80:3a:28:25:cd:6b:ff:76:6e:fe:e3:a4:
29:7c:76:86:36:b7:31:5b:ad:7c:c9:d2:b2:c9:b7:
40:38:8f:11:83:b9:43:67:53:bd:ff:7f:0a:68:af:
b8:0c:3e:57:d4:54:b9:62:7c:de:fa:53:64:15:68:
ea:02:7f:35:68:1d:d9:d4:83:dd:03:28:86:1c:32:
7a:1a:c5:6c:1f:10:5e:f3:8f:e5:a5:cd:b8:aa:3c:
38:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F3:24:98:9D:F5:7D:3B:D2:F6:D0:C2:D0:62:A6:3F:71:84:86:C5
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.71.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:1f:14:3f:7a:0c:8f:d5:b3:01:02:d8:a4:88:8c:ac:3c:48:
69:a4:59:7b:00:11:8b:e0:b8:e1:8b:7c:1f:f2:1b:d4:ed:2a:
00:9f:a4:d5:9b:8a:a7:c9:ac:68:95:6f:07:28:8a:ab:2a:c6:
0e:66:ae:65:39:98:c1:cd:4d:c5:f0:13:a7:e2:07:5d:24:2e:
1f:70:ee:ff:1f:da:39:a2:0c:ba:c5:b8:2c:87:8a:d1:2d:7d:
4e:d8:a3:ca:8c:b6:ea:c8:08:ca:66:0f:9e:a4:93:76:ea:26:
65:ba:40:c1:c1:96:ba:91:29:26:dd:df:84:e9:22:81:7c:03:
58:85:09:ba:33:d5:00:a8:d7:fa:00:6c:b9:84:f1:e6:6e:47:
a3:6f:85:05:7d:77:f1:c7:93:39:31:b1:d8:72:1a:f0:3b:4e:
33:71:58:68:aa:04:25:36:5a:8c:b6:a6:b6:04:47:54:1a:a9:
89:28:a2:c9:42:fb:57:46:14:e6:2a:4a:2d:cf:3f:ca:2a:9c:
4d:5a:c5:48:11:30:25:31:b9:d3:f9:9c:46:40:34:b1:8e:6f:
3e:68:a1:ab:73:01:b4:1a:e3:1b:dc:0d:cf:a9:20:cc:73:cf:
1c:7a:61:06:47:22:85:85:bb:b5:b0:6d:e3:10:43:4f:fb:77:
71:3a:70:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net