Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37392e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e37392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8QMpf/Pu14gGDQBCd9zfJtuz/CUjOy+QEfrI89Wp9P4=
Subject key identifier: C7:D7:98:32:D0:72:41:7D:D8:6E:97:72:4D:70:7E:25:A9:74:41:A2
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 2CE14874A9607212E10D4113AF3AAF29D64C2132
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37392e302f32342d3234203d3e203234323033.roa
Signing time: Thu 31 Mar 2022 19:00:00 +0000
ROA not before: Thu 31 Mar 2022 18:55:00 +0000
ROA not after: Thu 30 Mar 2023 19:00:00 +0000
asID: 24203
IP address blocks: 112.215.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:e1:48:74:a9:60:72:12:e1:0d:41:13:af:3a:af:29:d6:4c:21:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 18:55:00 2022 GMT
Not After : Mar 30 19:00:00 2023 GMT
Subject: CN=C7D79832D072417DD86E97724D707E25A97441A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a3:f6:cf:8f:d4:24:58:31:4c:e8:02:12:f6:
d2:cf:26:0e:98:18:41:c7:19:15:3d:35:d8:90:fd:
fe:e4:f5:3d:fb:51:7e:d8:7d:55:51:c2:21:d7:22:
83:d1:00:31:31:ae:d3:69:98:88:2d:a7:95:bc:af:
42:bf:b6:24:8a:f0:f9:08:f3:5f:cd:95:dc:88:81:
fb:68:2e:f0:5e:1d:3b:52:6a:40:bf:fc:23:8a:b1:
86:d6:92:3b:6d:fd:6f:34:80:db:bf:4c:38:8a:48:
f2:7c:e4:da:5f:1a:32:96:31:20:4c:3c:2e:f9:42:
79:e3:c4:3c:e9:55:e8:14:29:81:39:3c:9e:16:09:
2a:b9:77:0b:a8:2f:9f:50:19:75:df:10:96:51:bd:
12:76:ac:2e:8b:80:0b:7c:35:39:6c:5d:3b:b8:08:
4f:97:60:56:1e:49:02:0f:c2:7d:f3:e1:27:00:92:
7a:cf:04:68:81:8f:32:df:3e:b3:b9:f4:1d:10:e4:
13:00:91:4c:5b:98:f3:b0:31:c4:40:62:d3:80:f2:
f0:49:c1:73:32:a8:cb:24:3f:2d:0f:20:6a:7f:bb:
32:d6:16:a5:9a:71:23:ff:67:e3:b9:db:c0:46:67:
32:92:36:cd:cc:14:fc:9f:ae:c4:e5:02:18:d0:64:
e2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D7:98:32:D0:72:41:7D:D8:6E:97:72:4D:70:7E:25:A9:74:41:A2
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e37392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.79.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c5:13:f0:1d:7a:9c:82:22:94:a4:85:8c:52:37:9c:b3:86:
a5:b2:c5:3b:6d:b1:fb:a1:8f:8b:bb:41:ab:f1:0a:42:86:61:
4b:d8:ac:4b:53:a1:a2:05:46:fc:36:bb:0d:46:eb:2e:12:58:
05:a5:fc:37:b2:60:6e:67:e7:e8:fc:2c:c4:d3:31:fd:1d:ef:
38:f1:fc:c3:77:05:be:70:ad:7e:4d:65:58:bb:90:72:82:06:
69:33:39:b8:05:18:23:11:01:13:48:aa:19:c8:6a:bb:e9:2f:
41:9b:8e:7f:7a:59:5a:9a:aa:dd:25:3e:bb:35:97:fb:86:fd:
82:71:a2:ea:42:ee:07:e8:2d:da:a1:24:d6:f5:d2:54:98:02:
c3:24:09:a7:82:a7:e7:13:81:17:a8:89:46:21:76:a5:e5:ac:
76:38:56:16:17:ac:e8:ec:94:ee:b8:8d:b5:c5:06:e6:65:a1:
dc:e3:a2:79:5a:ec:4c:81:ce:ab:19:3b:25:8d:de:a1:ea:f5:
8f:dc:41:53:db:36:25:b2:fb:ca:19:b0:c9:1b:ed:e2:28:8a:
3c:a0:b1:4f:51:76:23:93:34:68:e4:c8:94:28:0a:6c:09:5f:
af:e4:f6:bd:5d:9b:41:48:e7:9d:cd:7b:b2:b0:fe:71:35:55:
e2:ec:25:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net