Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37332e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e37332e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: tMCxypZJcSNWhO0cQ4/lZrsqU+5ojTNRCcbXDTFNu9g=
Subject key identifier: 2A:D4:BA:FF:7A:E7:5F:48:EC:43:7C:21:1D:C3:69:C4:BC:02:6B:B9
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 65DDFF7BBC55207BEFF5CDD088182193C207A7A3
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37332e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 11:00:00 +0000
ROA not before: Tue 05 Apr 2022 10:55:00 +0000
ROA not after: Tue 04 Apr 2023 11:00:00 +0000
asID: 17885
IP address blocks: 112.215.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:dd:ff:7b:bc:55:20:7b:ef:f5:cd:d0:88:18:21:93:c2:07:a7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 10:55:00 2022 GMT
Not After : Apr 4 11:00:00 2023 GMT
Subject: CN=2AD4BAFF7AE75F48EC437C211DC369C4BC026BB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3f:4b:c6:bc:bb:39:9e:8f:2b:f1:bd:02:00:
84:2d:1c:bf:e6:03:15:f5:e1:56:5b:a3:f3:cc:e2:
0e:cc:0d:95:32:06:1e:26:f0:20:2d:0e:dd:65:19:
76:0c:4f:78:50:b3:7c:ed:51:80:02:48:66:2a:68:
e4:fb:7b:e6:ce:e1:f6:19:2a:69:27:03:dc:fe:17:
1a:2e:65:92:34:f8:1a:7e:01:47:e2:f7:fa:75:6f:
39:a6:aa:36:11:61:25:d6:bc:de:a6:bb:fd:8d:37:
7c:fb:05:2f:5b:4a:0a:c1:a2:7b:39:7d:23:39:6f:
d1:26:88:f8:fd:50:82:f1:7a:bd:30:63:2c:1f:76:
6a:ca:b2:4a:62:be:14:03:e4:d7:fc:1a:1c:15:1a:
de:fa:fb:db:50:95:75:dc:bb:56:71:7d:01:22:2b:
b1:a4:f5:2e:cd:cb:1d:f3:86:7f:10:86:b8:5b:7b:
45:48:da:86:f1:de:bc:e0:fc:be:0a:c3:e1:63:be:
f5:fd:6a:7d:68:78:90:30:c7:ad:16:2d:e4:53:50:
95:d2:2d:11:e1:11:06:33:a0:f4:f3:ac:01:a8:f9:
ef:52:2b:25:44:ff:e9:b0:ed:e7:a4:1a:8f:a0:22:
32:65:05:0c:46:8e:45:6c:1d:de:89:f9:c3:c2:9e:
c3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D4:BA:FF:7A:E7:5F:48:EC:43:7C:21:1D:C3:69:C4:BC:02:6B:B9
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37332e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.73.0/24
Signature Algorithm: sha256WithRSAEncryption
58:94:af:f3:cc:9c:2c:1b:ab:89:6b:81:81:a1:00:f0:f0:e1:
4b:f6:19:64:ac:f2:cf:81:79:02:af:ef:56:33:40:32:8e:aa:
40:1e:c8:db:ca:ef:25:65:cd:d7:2e:b2:b2:71:23:ec:bf:5b:
c2:1b:77:ad:81:f6:12:8f:31:bd:8a:f6:2b:a9:f3:fc:f6:95:
64:9c:7e:43:18:f8:a7:dc:f1:32:d6:d4:2f:0a:a5:ea:b2:cf:
cd:6d:c8:86:2d:d5:1a:5a:3b:6d:ab:b3:dd:2e:1e:6e:f0:58:
d0:62:de:25:25:d1:43:0b:6d:4d:35:64:f2:73:ab:41:48:01:
a7:7a:1c:c4:f8:a5:19:9b:82:b9:1a:66:8e:3e:46:82:d6:e9:
3c:5b:f6:fe:f4:32:30:74:36:42:1f:f7:bd:60:0b:e3:a3:68:
39:fe:71:05:d8:b4:ac:d4:fc:16:26:d9:29:93:4c:cd:fc:31:
b8:89:f5:45:3b:5a:bf:33:91:f0:ef:f1:e8:05:76:a7:33:36:
b9:c2:f1:7b:51:69:0c:e9:55:5e:cb:a2:1b:e5:8e:8d:3c:8d:
10:ee:96:2f:3f:99:1e:40:0f:aa:08:43:ae:78:76:87:8c:4b:
1c:be:e9:64:b7:42:16:ca:93:b5:d4:6c:bf:ff:b5:4d:1d:a0:
1b:87:52:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net