Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38312e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e38312e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: ft/FCBuCjUGoOHSF8rK7mtur8qpBKtVTzUwyl6lbYKE=
Subject key identifier: A1:50:53:AD:7C:AF:68:86:E7:17:4C:5E:2C:C2:7B:51:16:7A:9C:87
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 595F10F4F6AD7A99503D4DDFCF93D5067B8D646D
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38312e302f32342d3234203d3e203137383835.roa
Signing time: Thu 31 Mar 2022 19:00:00 +0000
ROA not before: Thu 31 Mar 2022 18:55:00 +0000
ROA not after: Thu 30 Mar 2023 19:00:00 +0000
asID: 17885
IP address blocks: 112.215.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:5f:10:f4:f6:ad:7a:99:50:3d:4d:df:cf:93:d5:06:7b:8d:64:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 18:55:00 2022 GMT
Not After : Mar 30 19:00:00 2023 GMT
Subject: CN=A15053AD7CAF6886E7174C5E2CC27B51167A9C87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f8:b2:83:7e:4e:33:72:1c:7a:33:a1:65:18:
b1:4e:bd:7b:09:ad:8d:99:c1:d3:22:16:1b:35:0d:
6b:ba:e2:4a:41:64:a6:4b:e5:5b:ef:b3:0f:11:92:
33:40:8b:3b:39:3a:f6:af:69:c9:b0:79:ca:23:d8:
0e:0c:56:31:77:ce:ea:93:34:62:7c:16:52:f2:0e:
83:71:55:d7:de:75:e4:17:12:fa:e9:24:a1:33:12:
10:60:0c:5d:41:16:d2:c4:d3:08:62:8d:fc:a3:0f:
55:38:d4:6f:38:31:ee:ad:9e:c4:ce:b9:2d:4f:42:
94:59:ea:6e:f1:06:f6:51:64:4b:03:b0:b0:52:cd:
77:ca:23:ff:cc:ed:16:d3:c6:23:8d:5f:de:9d:65:
e9:de:a1:2e:27:96:21:8c:29:20:05:6f:67:89:93:
a7:a1:78:ff:9c:b8:60:7b:ff:ee:79:72:97:de:3c:
e6:e3:6d:03:44:f5:d0:ee:15:9c:a3:e0:44:40:0f:
2c:6a:ae:e8:6d:5c:04:cd:e4:06:d3:0b:68:d1:bc:
a5:85:e5:97:e0:e1:4d:df:b4:c3:4d:e5:e9:97:2d:
70:c5:b0:d7:04:90:23:10:90:bd:be:f8:ba:80:1f:
2d:2c:87:c1:57:0b:62:04:64:d0:b5:1b:3f:4c:f8:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:50:53:AD:7C:AF:68:86:E7:17:4C:5E:2C:C2:7B:51:16:7A:9C:87
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38312e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.81.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:25:ef:70:af:94:7d:0e:67:de:34:6a:4b:fd:90:11:e5:a1:
6d:dc:d2:ec:af:a8:ea:49:f5:37:ea:29:0a:64:5c:fc:b1:95:
7f:43:46:fc:9a:8f:55:d1:8f:12:f2:f5:a2:52:c8:cd:85:6a:
4d:5f:86:0e:d0:0d:83:6f:82:ba:b9:0d:24:bb:c9:30:9b:96:
88:c8:0e:e7:f0:ec:54:51:d9:cb:85:3d:6a:48:0d:7c:1c:32:
1f:a2:a2:41:03:8a:d7:d3:ad:84:a5:0c:76:e9:bc:52:4e:5d:
e1:e6:d3:62:56:54:b2:f7:79:60:b8:ef:ab:33:3f:7b:2e:f8:
fa:f0:9a:80:6d:95:33:40:c8:50:e1:cd:66:e9:85:cf:35:fa:
f9:8d:5f:e0:39:41:0e:5a:ed:fa:67:c4:9e:fb:aa:c4:e1:96:
1f:f0:f4:cd:f0:13:1e:3a:f2:6a:7b:33:cc:fb:05:16:d0:44:
cd:dd:d2:1f:f7:d3:4c:9d:dd:c5:e0:b0:99:24:c9:2a:b8:7c:
5c:45:d7:c9:e0:6d:86:97:fb:08:73:5f:e5:db:ea:b6:c0:0d:
7b:23:5f:30:93:8e:96:63:07:48:81:97:a2:34:bf:0f:19:73:
ad:ed:ea:57:e8:99:2b:bd:75:bc:ae:a5:30:e5:a2:60:d6:af:
e6:d7:60:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net