Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38392e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e38392e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: mU2utnXUbonbcNEKTVqo3UwSbQJHByu/i1k1IpUytHY=
Subject key identifier: 21:D0:7F:CE:5B:D3:C4:82:20:0C:75:3E:F2:21:7A:40:8A:CB:72:B1
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 43CB3A81AAAEB13F8BAB9C9337EF72313DFCA8BA
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38392e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 11:00:00 +0000
ROA not before: Tue 05 Apr 2022 10:55:00 +0000
ROA not after: Tue 04 Apr 2023 11:00:00 +0000
asID: 17885
IP address blocks: 112.215.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:cb:3a:81:aa:ae:b1:3f:8b:ab:9c:93:37:ef:72:31:3d:fc:a8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 10:55:00 2022 GMT
Not After : Apr 4 11:00:00 2023 GMT
Subject: CN=21D07FCE5BD3C482200C753EF2217A408ACB72B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ae:76:cc:53:7c:af:00:4e:1d:50:98:7c:97:
e5:8f:a9:61:48:0e:2b:ba:3f:46:56:bd:60:c0:9f:
52:d5:f5:e0:e7:88:eb:9b:80:83:9a:0b:30:b5:0e:
d3:dd:1b:6f:67:75:d1:77:0c:a8:aa:7c:77:15:39:
b4:c6:95:86:f6:53:69:4d:a3:34:de:d3:64:e7:26:
a9:d0:01:34:63:0c:c3:4c:18:a2:c5:4a:95:91:1b:
7a:40:11:04:12:ec:8c:24:68:dd:12:90:36:fa:4d:
9c:a5:cd:f4:63:72:bf:c4:b7:b6:9a:aa:29:c6:fd:
e3:00:a3:9f:70:4f:c0:75:ee:51:fd:ed:7c:96:c9:
25:f8:0e:09:be:15:8d:7e:59:83:d1:24:b1:c6:8d:
43:6f:c4:a9:69:9d:1f:02:19:89:4a:2b:e0:89:23:
f6:6f:1a:46:7c:c0:6f:4e:b9:68:7b:9d:01:17:98:
4d:8c:97:74:1c:41:13:95:71:a9:1a:7c:16:2a:9a:
c0:39:93:4d:34:eb:7b:9b:b4:6f:ed:59:e1:86:f2:
ee:74:f8:76:7b:b8:1f:88:e0:45:a5:5f:32:7b:83:
98:da:6a:90:f4:12:f3:42:c8:19:f7:33:0a:a2:56:
8c:cf:9c:ce:b0:c1:d9:e9:c9:e0:dd:a6:20:47:dc:
8b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D0:7F:CE:5B:D3:C4:82:20:0C:75:3E:F2:21:7A:40:8A:CB:72:B1
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e38392e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.89.0/24
Signature Algorithm: sha256WithRSAEncryption
36:08:c3:5c:5b:25:8f:1a:a3:c3:ca:16:1d:7f:e9:4d:4a:c4:
ed:6b:5a:8c:42:31:bd:91:8b:33:93:87:9f:ba:3d:38:cd:a7:
d9:48:10:5d:a3:a4:3d:a7:91:b1:c7:a3:38:8f:8e:7a:60:98:
15:7e:ea:29:21:60:c5:a6:c5:f4:8e:5c:df:22:83:af:23:23:
0c:fd:c8:c3:0f:ab:d6:f0:c1:60:ad:41:c8:7b:7c:57:6d:66:
14:d4:bc:ee:e0:66:61:b6:9e:bf:cc:95:b2:39:51:a9:fe:eb:
1d:13:ae:f2:d0:31:8d:e6:a1:b9:8e:49:8b:50:43:70:42:3c:
a9:a3:c7:de:c8:49:95:ad:d3:0f:c0:5e:f8:85:a6:6e:20:c8:
91:d5:1c:36:b0:ad:21:ed:6a:5b:25:bc:11:3d:e2:18:4a:e2:
f6:9e:9d:c1:4e:bd:df:42:65:61:83:78:82:68:1d:f4:92:6c:
82:f3:42:70:f8:43:89:d1:f3:cf:da:64:f2:b2:f0:a9:0e:e4:
07:23:73:8d:bc:a5:08:7d:34:53:c2:6b:6e:eb:8c:72:e1:4b:
20:5b:72:10:84:a5:37:c8:00:20:a4:f6:83:b5:32:0a:2b:b3:
e8:ad:35:74:24:5e:61:4d:f4:e9:9c:9c:d2:d1:fd:f4:e6:ce:
ab:17:a9:cd
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUQ8s6gaqusT+Lq5yTN+9yMT38qLowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDUxMDU1MDBaFw0yMzA0MDQxMTAwMDBaMDMxMTAvBgNV
BAMTKDIxRDA3RkNFNUJEM0M0ODIyMDBDNzUzRUYyMjE3QTQwOEFDQjcyQjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMrnbMU3yvAE4dUJh8l+WPqWFI
Diu6P0ZWvWDAn1LV9eDniOubgIOaCzC1DtPdG29nddF3DKiqfHcVObTGlYb2U2lN
ozTe02TnJqnQATRjDMNMGKLFSpWRG3pAEQQS7IwkaN0SkDb6TZylzfRjcr/Et7aa
qinG/eMAo59wT8B17lH97XyWySX4Dgm+FY1+WYPRJLHGjUNvxKlpnR8CGYlKK+CJ
I/ZvGkZ8wG9OuWh7nQEXmE2Ml3QcQROVcakafBYqmsA5k00063ubtG/tWeGG8u50
+HZ7uB+I4EWlXzJ7g5jaapD0EvNCyBn3MwqiVozPnM6wwdnpyeDdpiBH3ItJAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUIdB/zlvTxIIgDHU+8iF6QIrLcrEwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzODM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNzM4MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHDXWTANBgkqhkiG
9w0BAQsFAAOCAQEANgjDXFsljxqjw8oWHX/pTUrE7WtajEIxvZGLM5OHn7o9OM2n
2UgQXaOkPaeRscejOI+OemCYFX7qKSFgxabF9I5c3yKDryMjDP3Iww+r1vDBYK1B
yHt8V21mFNS87uBmYbaev8yVsjlRqf7rHROu8tAxjeahuY5Ji1BDcEI8qaPH3shJ
la3TD8Be+IWmbiDIkdUcNrCtIe1qWyW8ET3iGEri9p6dwU6930JlYYN4gmgd9JJs
gvNCcPhDidHzz9pk8rLwqQ7kByNzjbylCH00U8JrbuuMcuFLIFtyEISlN8gAIKT2
g7UyCiuz6K01dCReYU306Zyc0tH99ObOqxepzQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net