Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e39382e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e39382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 7mJ0wx6gRlrDG/BEsyTzRyTD64sib6ysh/fiQAMy0G4=
Subject key identifier: A3:EB:7F:F0:F5:44:DE:2D:1C:EB:E6:09:A3:53:FB:E9:3E:2D:AD:5D
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 551D7BC65959DD348C6FD222E82AF037DB91CDDB
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e39382e302f32342d3234203d3e203137383835.roa
Signing time: Tue 05 Apr 2022 11:00:00 +0000
ROA not before: Tue 05 Apr 2022 10:55:00 +0000
ROA not after: Tue 04 Apr 2023 11:00:00 +0000
asID: 17885
IP address blocks: 112.215.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:1d:7b:c6:59:59:dd:34:8c:6f:d2:22:e8:2a:f0:37:db:91:cd:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 5 10:55:00 2022 GMT
Not After : Apr 4 11:00:00 2023 GMT
Subject: CN=A3EB7FF0F544DE2D1CEBE609A353FBE93E2DAD5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:c5:23:7c:47:7d:5f:ee:32:55:2e:21:c1:
6b:61:f4:e7:c1:16:46:48:38:f2:9b:c3:f9:bd:66:
ea:0e:ff:9e:ee:ba:6d:73:4d:a5:8e:fb:d9:3d:2f:
46:4f:da:26:91:3e:7d:6b:27:40:a3:6b:49:82:7b:
d8:89:66:66:2d:ac:5a:3e:2e:9f:e5:d6:14:0f:ed:
88:6b:d1:5c:8a:4c:dc:99:4d:31:9d:89:6b:e2:ee:
18:29:30:f0:37:1c:ab:3a:90:8d:c3:14:ca:55:99:
db:e0:8b:c2:97:ce:fd:8e:14:66:46:12:f8:9d:bc:
58:10:1c:86:a9:a0:78:60:52:3c:b9:5e:a4:03:f1:
ff:61:c1:28:ae:32:13:e9:3e:5e:dc:a3:c0:73:d2:
bc:e4:b2:d4:01:12:dc:73:a7:98:bd:55:68:79:f4:
dc:02:20:fc:3d:94:55:f6:75:f9:b4:ad:42:0d:c4:
05:b1:dc:9e:f8:da:26:87:c4:ad:45:cc:16:fe:5c:
c5:5d:6d:c3:8f:80:e1:21:09:fd:71:15:52:c9:24:
28:2a:57:44:33:1a:d8:a1:06:d3:24:9c:74:6b:31:
44:2f:d4:25:0c:91:94:c7:2e:58:42:b0:f4:c7:5a:
83:21:c3:19:e5:34:53:ad:d2:bd:4d:86:bc:3b:81:
5d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EB:7F:F0:F5:44:DE:2D:1C:EB:E6:09:A3:53:FB:E9:3E:2D:AD:5D
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e39382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.98.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b7:b1:b4:90:69:fd:14:4a:74:3a:e5:78:ca:00:ae:a0:3f:
4e:5a:36:17:0f:da:3f:18:66:37:fa:14:0c:fd:34:70:de:72:
17:6f:f8:9a:02:90:e7:85:40:15:b7:2f:28:57:e6:b4:2a:95:
d1:6e:4a:9a:1e:fb:77:a6:9e:e0:09:3a:51:6e:91:df:88:46:
f6:a6:f2:e4:32:84:35:a7:bd:c7:01:e5:ef:f7:8a:c5:19:9b:
ca:98:a8:16:a5:16:c6:ee:11:ec:ef:d9:1a:22:12:b2:a9:c6:
92:06:a3:3f:19:37:55:61:21:c5:d0:e3:d2:f4:3b:c9:2b:66:
e1:25:6c:8f:48:b9:2f:62:99:bf:0d:e8:2d:23:7e:cf:4d:39:
43:28:c1:91:41:2f:de:b6:b3:cb:e3:ce:97:69:34:98:72:ee:
fc:4b:24:40:6c:a8:6a:d2:64:81:1e:85:e2:17:49:ef:bd:2a:
0b:66:f3:1f:23:ab:cd:ae:04:82:c1:b5:b5:ed:fe:ef:32:c9:
16:08:e6:31:a8:c5:21:b6:15:55:eb:53:53:aa:5f:a0:d6:ba:
e3:ac:91:be:e6:7f:b9:ee:35:a2:d6:15:af:a9:48:db:d8:f1:
13:26:b1:d5:a5:7f:9e:64:33:9b:25:4c:66:80:f8:37:43:93:
d9:09:d4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net