Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e39342e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e39342e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: hDM7NNpEnCXBXk9ieR1M7sQt/Mc8TIZ+JYqbi25uPrA=
Subject key identifier: 4D:84:11:51:37:79:33:34:57:A1:4C:5F:B5:D7:F5:02:34:AE:1F:10
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 72033D5A50978BE47E17BB791412DC0FDECA17E3
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e39342e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 11:00:01 +0000
ROA not before: Tue 05 Apr 2022 10:55:01 +0000
ROA not after: Tue 04 Apr 2023 11:00:01 +0000
asID: 17885
IP address blocks: 112.215.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:03:3d:5a:50:97:8b:e4:7e:17:bb:79:14:12:dc:0f:de:ca:17:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 10:55:01 2022 GMT
Not After : Apr 4 11:00:01 2023 GMT
Subject: CN=4D8411513779333457A14C5FB5D7F50234AE1F10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0b:97:f0:66:fe:26:cf:af:7a:1f:1c:62:7e:
de:34:38:fb:df:80:f8:00:d4:32:9d:5d:65:ca:f3:
ac:d7:01:c8:89:38:63:94:a4:cc:81:b4:fb:fb:08:
0b:0a:9f:a5:03:05:ef:45:b3:51:6d:bf:ed:d4:fc:
a9:8c:4f:2f:42:03:a9:e6:af:99:91:54:9d:fc:d0:
d7:bb:80:d3:8d:d7:5b:0a:e0:01:18:88:5c:8b:42:
95:c5:a3:10:4a:cf:ff:68:5b:4a:ce:75:e7:73:94:
16:b2:b5:6c:af:fa:62:0d:b7:f1:87:76:1b:1e:58:
ba:6a:9d:b5:21:5b:3e:92:60:00:fc:e1:d6:72:d3:
42:ff:73:5a:6e:6e:48:5e:07:98:81:03:80:95:66:
ae:31:0f:77:04:79:db:9d:2f:ac:9b:12:4a:50:d8:
48:4d:ce:1f:75:3a:f3:ee:04:d5:df:f7:7b:b1:7f:
52:18:3a:3a:a1:7f:10:a4:a7:dc:93:3e:e2:45:61:
bc:15:ef:d8:97:cf:fb:52:95:8f:1d:dc:64:ab:4e:
56:37:42:c7:8e:e4:f9:97:c1:d6:0e:bf:af:24:b0:
7b:a1:ab:e4:24:be:9b:2b:06:5d:11:aa:6e:69:c1:
52:f6:c9:17:a1:e8:09:5e:bb:97:41:f3:9a:f1:e6:
5d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:84:11:51:37:79:33:34:57:A1:4C:5F:B5:D7:F5:02:34:AE:1F:10
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e39342e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.94.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:82:e7:d6:ba:42:b9:fe:52:2b:99:27:bf:b8:d1:07:14:f9:
2d:61:5d:28:b5:76:db:86:24:43:66:42:2a:96:88:8c:c7:53:
ef:68:48:18:05:75:c5:fd:33:74:30:21:54:c6:4c:8f:bb:f1:
d6:6d:65:f2:46:ed:06:0b:39:67:88:19:38:88:42:3b:00:99:
f4:ee:af:6a:3f:44:51:b6:c4:77:f4:10:33:ef:f4:46:9a:6d:
b4:bc:1d:76:b5:10:cc:32:f6:d5:2e:ff:55:9d:80:be:05:e4:
54:ac:56:53:78:62:ea:27:02:e6:61:00:ce:47:05:b4:a0:5a:
ed:f3:17:dc:41:82:4c:2c:70:77:24:c1:33:b2:ec:9a:fb:82:
12:dc:63:55:42:2d:aa:82:83:53:27:c7:04:c7:0f:94:6d:0f:
44:56:4b:0d:26:0a:98:72:1c:ed:20:3a:a9:d6:a6:85:80:f8:
13:73:81:9d:ac:c3:b2:70:3c:d4:57:3e:30:d7:52:06:37:18:
4a:55:d2:83:93:d0:d2:f0:a6:c1:3f:da:24:72:9d:db:da:65:
e6:4c:3b:2d:07:9b:ee:ea:21:b6:2e:4a:61:82:93:81:1a:69:
ec:01:c5:24:df:71:c5:ae:a2:37:22:71:52:41:cf:4a:b4:84:
ab:27:a1:8c
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUcgM9WlCXi+R+F7t5FBLcD97KF+MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDUxMDU1MDFaFw0yMzA0MDQxMTAwMDFaMDMxMTAvBgNV
BAMTKDREODQxMTUxMzc3OTMzMzQ1N0ExNEM1RkI1RDdGNTAyMzRBRTFGMTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4C5fwZv4mz696Hxxift40OPvf
gPgA1DKdXWXK86zXAciJOGOUpMyBtPv7CAsKn6UDBe9Fs1Ftv+3U/KmMTy9CA6nm
r5mRVJ380Ne7gNON11sK4AEYiFyLQpXFoxBKz/9oW0rOdedzlBaytWyv+mINt/GH
dhseWLpqnbUhWz6SYAD84dZy00L/c1pubkheB5iBA4CVZq4xD3cEedudL6ybEkpQ
2EhNzh91OvPuBNXf93uxf1IYOjqhfxCkp9yTPuJFYbwV79iXz/tSlY8d3GSrTlY3
QseO5PmXwdYOv68ksHuhq+QkvpsrBl0Rqm5pwVL2yReh6Aleu5dB85rx5l3LAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUTYQRUTd5MzRXoUxftdf1AjSuHxAwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzOTM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNzM4MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHDXXjANBgkqhkiG
9w0BAQsFAAOCAQEAbYLn1rpCuf5SK5knv7jRBxT5LWFdKLV224YkQ2ZCKpaIjMdT
72hIGAV1xf0zdDAhVMZMj7vx1m1l8kbtBgs5Z4gZOIhCOwCZ9O6vaj9EUbbEd/QQ
M+/0RppttLwddrUQzDL21S7/VZ2AvgXkVKxWU3hi6icC5mEAzkcFtKBa7fMX3EGC
TCxwdyTBM7LsmvuCEtxjVUItqoKDUyfHBMcPlG0PRFZLDSYKmHIc7SA6qdamhYD4
E3OBnazDsnA81Fc+MNdSBjcYSlXSg5PQ0vCmwT/aJHKd29pl5kw7LQeb7uohti5K
YYKTgRpp7AHFJN9xxa6iNyJxUkHPSrSEqyehjA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net