Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37382e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e37382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: dxnnP2ADDkPeLuzUPUc7tt3O2gpt4sfmKWH3hat50+c=
Subject key identifier: BC:AA:BE:55:B3:3C:70:3A:CA:B2:45:6F:3C:D7:83:1F:B3:9B:6A:A4
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 27804DA18C6CC940A2B8B3884387AD0973032ADE
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37382e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 11:00:00 +0000
ROA not before: Tue 05 Apr 2022 10:55:00 +0000
ROA not after: Tue 04 Apr 2023 11:00:00 +0000
asID: 17885
IP address blocks: 112.215.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:80:4d:a1:8c:6c:c9:40:a2:b8:b3:88:43:87:ad:09:73:03:2a:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 10:55:00 2022 GMT
Not After : Apr 4 11:00:00 2023 GMT
Subject: CN=BCAABE55B33C703ACAB2456F3CD7831FB39B6AA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:19:c7:08:93:03:e3:77:78:d5:e6:a1:0a:31:
62:4b:dd:35:85:d1:4d:8e:ce:9e:fc:18:5f:36:98:
d5:73:35:55:52:84:61:91:c7:76:58:35:6a:b5:82:
38:9a:32:48:78:79:b4:e3:7e:bc:68:cb:39:70:ed:
09:34:15:39:b0:ea:52:53:da:a0:b4:dc:76:c8:f2:
0a:cb:2b:35:62:9e:4f:fb:91:a4:2c:25:e5:c9:5b:
83:09:41:e4:b4:05:9f:6e:25:8f:b3:03:e0:05:33:
b2:ad:3c:36:6c:11:0d:0d:f9:69:78:44:a4:5f:36:
23:d8:1b:08:ad:c8:37:33:55:00:52:59:62:85:2d:
a3:90:8e:ed:ac:94:bb:e1:a3:68:90:c7:03:d7:ed:
86:65:5b:cc:47:dc:2a:d5:a6:ef:a0:39:6f:1e:10:
a9:51:8f:94:2b:5c:59:24:6e:39:d6:28:6c:c3:cd:
d0:89:b8:87:d9:a2:4a:a2:39:5d:d1:85:2a:a1:7e:
36:f2:96:3e:1f:31:57:b3:08:9e:5c:9f:68:96:b5:
7e:b6:12:90:72:d5:8b:c0:b9:b9:09:f3:be:ea:a5:
b0:cb:5d:ee:9c:86:cb:72:83:4b:46:e8:7c:de:30:
0c:8c:7c:16:07:70:7e:df:83:29:2e:44:e9:9a:f5:
92:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AA:BE:55:B3:3C:70:3A:CA:B2:45:6F:3C:D7:83:1F:B3:9B:6A:A4
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:df:53:77:97:db:30:5b:1a:96:ef:e0:01:fb:d0:2b:2e:82:
4c:74:80:95:2a:16:4d:47:83:28:70:f9:ac:4a:48:d4:44:57:
5c:f7:2e:6d:c8:34:b5:65:87:35:01:54:4f:70:6f:30:9f:49:
07:69:65:c7:24:26:89:f0:69:b1:1a:60:ec:01:c5:dc:6a:8d:
82:75:ac:5f:5b:05:a9:63:c8:d5:f8:e9:cd:1a:54:41:74:c4:
d6:38:de:33:99:6c:85:cb:45:13:4e:05:0c:ec:51:4d:39:68:
9d:64:2c:b7:b9:11:fb:60:30:03:fa:3c:fb:3e:0a:aa:1b:76:
2a:cd:05:9a:4b:11:96:09:15:76:2d:31:fc:1a:86:c6:3d:03:
99:e2:e0:1b:a4:46:27:ab:d1:f4:5c:09:33:c4:c8:ef:f3:cf:
6d:83:7c:39:81:22:82:7b:a3:c8:d9:bb:be:8c:7b:23:5e:8e:
cf:92:d5:10:0b:9c:6a:7d:50:2e:ab:ab:2e:40:75:21:62:7a:
3c:c3:39:e4:5f:5b:dd:a1:25:7c:54:50:95:0a:2a:c4:00:5b:
3b:e0:f2:1f:0b:8d:e9:7f:02:67:8c:04:b5:05:2c:54:30:27:
fb:74:c4:5d:61:a5:95:62:07:52:a0:5c:26:2d:db:09:3a:0d:
13:78:79:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net