Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38342e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e38342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8KJglCoAeRXTbcnUZcgwJjDN62e1t8BpB5tlrZrPAJ4=
Subject key identifier: 0D:53:2B:2E:7B:EA:5F:10:E9:86:BC:4F:B8:D0:02:E1:08:D6:18:71
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 4DA60E9FEF790F0540E6D98F41275AE39E6E1B02
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38342e302f32342d3234203d3e203234323033.roa
Signing time: Thu 31 Mar 2022 19:00:00 +0000
ROA not before: Thu 31 Mar 2022 18:55:00 +0000
ROA not after: Thu 30 Mar 2023 19:00:00 +0000
asID: 24203
IP address blocks: 112.215.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:a6:0e:9f:ef:79:0f:05:40:e6:d9:8f:41:27:5a:e3:9e:6e:1b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 31 18:55:00 2022 GMT
Not After : Mar 30 19:00:00 2023 GMT
Subject: CN=0D532B2E7BEA5F10E986BC4FB8D002E108D61871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:02:5d:c1:3a:03:4f:da:a7:bf:39:9a:f7:96:
3c:7a:a4:3f:d3:6a:0f:cc:7f:11:d4:81:16:9f:81:
23:6c:c5:e6:b5:18:55:f0:c1:e3:46:a4:ac:9b:29:
ab:ed:fc:2f:58:8d:cb:8c:1c:a3:7a:77:77:26:c8:
be:c2:cd:d4:14:d9:81:3e:f7:87:9a:f7:a9:f9:b6:
26:78:43:eb:a8:84:c3:2e:2c:80:e3:0f:48:cb:bf:
59:cd:fc:60:7e:fd:ec:19:ba:ea:12:ae:f6:a7:28:
dd:e3:df:50:a6:9a:c9:ac:55:a4:61:9d:65:7a:49:
a2:37:2f:ab:91:9b:76:af:54:6f:9b:dc:c8:59:90:
8b:c3:ae:0d:fa:3b:9d:b4:2c:e6:b8:5e:fb:53:40:
27:1b:58:76:00:93:12:a5:6e:b6:d4:5e:80:e7:99:
a9:78:7c:a6:cd:7a:2b:95:6b:83:15:9a:16:23:df:
6f:ae:06:80:33:90:5b:7e:1d:bc:92:7f:78:0f:aa:
de:0c:3c:9c:3b:82:59:10:ab:d0:d8:2b:bc:0c:12:
78:ad:59:a4:35:7c:90:fd:74:b1:8a:ba:b9:79:55:
03:32:9c:f6:b7:a2:8b:64:ad:a4:4c:b9:d7:5b:e8:
dc:45:b6:b9:b4:1b:8a:4c:2d:0a:4e:14:3e:81:c5:
3e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:53:2B:2E:7B:EA:5F:10:E9:86:BC:4F:B8:D0:02:E1:08:D6:18:71
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.84.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:03:eb:12:94:f3:74:1c:d1:a9:5a:83:23:65:fa:c5:7e:a9:
db:13:fb:52:49:37:59:2f:e7:c7:65:27:cd:4c:02:12:cd:59:
8f:39:c1:91:42:11:79:ba:8f:73:44:5b:91:d8:e2:50:9e:13:
d4:3a:37:dc:1e:0d:e1:15:3d:77:cc:91:9e:0e:1c:dd:fb:a8:
2d:9b:60:c6:ce:6e:a2:63:7f:4b:41:3e:7b:cc:1e:a6:ad:35:
64:1d:3b:e6:3d:88:70:b4:6c:df:42:0f:e8:f0:51:a3:0d:bc:
79:ad:de:c4:e1:80:3c:d6:3d:e6:61:7b:90:d5:fc:79:64:43:
66:ea:d4:e9:ac:a1:40:4d:b8:f0:aa:68:bb:b4:4c:09:35:85:
74:31:92:ab:d4:97:f9:78:91:71:7d:e5:df:f6:50:f1:ee:c5:
61:99:da:f7:4e:a6:a6:10:2e:3c:f6:9d:e1:f5:32:d2:e5:00:
8d:7c:79:b4:c7:06:88:4b:6d:f7:64:67:f9:f6:d3:dd:0a:21:
17:91:28:bd:c0:6e:68:05:6f:12:bc:2c:4f:13:a2:70:20:98:
51:ee:a0:1d:e1:16:4f:c9:8a:c7:34:00:02:33:d9:ef:11:87:
41:91:96:cc:3b:67:6d:99:ac:5f:f4:1f:a4:2b:1b:8a:7f:5d:
bc:48:ab:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net