Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34312e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e34312e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: OORLfGtgTxQTFHPjuGT3OyEeIi48lU3PAmnHpwQZK9s=
Subject key identifier: 52:9E:BE:AD:8E:F2:53:27:DD:22:2A:1E:9A:9C:B9:B6:BC:9D:06:CD
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 1D4DCDA8FB8C2376590E984BD2E5BC3B1698A839
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34312e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:01 +0000
ROA not before: Tue 12 Apr 2022 08:55:01 +0000
ROA not after: Tue 11 Apr 2023 09:00:01 +0000
asID: 17885
IP address blocks: 121.52.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:4d:cd:a8:fb:8c:23:76:59:0e:98:4b:d2:e5:bc:3b:16:98:a8:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:01 2022 GMT
Not After : Apr 11 09:00:01 2023 GMT
Subject: CN=529EBEAD8EF25327DD222A1E9A9CB9B6BC9D06CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c4:81:4d:3a:d0:f8:f2:14:a9:a9:ad:90:fe:
46:d1:b8:39:30:a3:cf:fd:45:1d:d2:67:19:9c:94:
80:09:9b:77:3d:7b:a8:41:2e:6f:fb:dd:06:4b:d8:
1b:1e:41:c6:3b:94:64:df:0b:77:17:10:14:76:ad:
04:f3:ad:4d:a6:6f:e2:b4:fc:8c:83:34:b9:47:d3:
bf:3d:cd:7f:29:de:69:1c:6e:39:d3:b4:1d:f4:a7:
de:a5:ea:e7:25:da:aa:59:a0:9c:7f:fd:42:d1:6e:
9b:7b:08:8a:d3:e9:39:28:d7:c1:8b:72:bf:8a:8b:
88:9c:ba:d9:8c:08:d7:a3:b6:d4:90:db:54:22:3b:
54:bd:d6:69:15:61:e1:3c:8d:f2:96:e8:4f:1c:8b:
69:54:42:41:e4:aa:d6:81:28:61:0b:6d:b9:7a:16:
e9:75:14:70:14:35:9c:99:30:ff:47:18:47:f2:58:
53:fe:ec:3e:57:72:85:6f:fc:e8:c7:94:a8:bd:a1:
36:af:88:75:d0:ee:30:36:0b:f1:39:76:17:96:94:
31:01:d1:f1:ce:b2:7b:c5:fd:9d:b3:a6:0d:18:d6:
b9:81:00:8d:4d:78:a7:f7:11:28:ec:ee:52:dc:53:
c6:5a:84:39:7f:09:cb:39:27:5e:fc:b7:7c:1e:45:
24:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:9E:BE:AD:8E:F2:53:27:DD:22:2A:1E:9A:9C:B9:B6:BC:9D:06:CD
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34312e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.41.0/24
Signature Algorithm: sha256WithRSAEncryption
97:5d:c9:13:4d:31:30:8e:82:33:4d:b5:24:5f:9a:1b:59:76:
ae:37:fd:0c:fb:11:cf:88:b3:64:07:6f:37:5e:35:76:ee:bc:
2d:f8:28:46:f9:ac:f2:0d:e9:9e:68:45:4f:59:a6:18:0b:37:
35:d6:6e:56:09:c7:b1:95:78:3b:e6:d2:a8:f6:a2:13:a3:40:
69:43:65:bf:f1:b4:ce:ca:8c:92:4b:67:c1:a0:73:87:81:ec:
32:e8:04:75:70:2e:e6:05:e6:dc:7f:e4:6b:d1:6b:51:ae:38:
70:8b:f7:c0:aa:4b:b1:05:23:ee:ad:11:38:43:08:68:ea:1c:
6f:c3:ec:cf:86:53:ed:45:f9:26:b0:7f:5e:6a:da:51:c1:b4:
88:e8:d5:4c:36:c2:8e:21:e4:9e:ff:65:b4:3e:90:c2:05:68:
77:6c:b7:c2:82:2b:ab:b7:c2:2e:8b:19:d9:42:51:a0:f1:6c:
f4:63:62:58:56:d5:23:99:cc:f6:6d:63:2c:34:5f:42:b5:59:
0d:73:6e:97:77:4f:26:13:6c:38:a2:fa:80:17:2c:df:15:3c:
43:c2:7e:6f:48:a5:23:31:95:6f:64:59:cd:d3:aa:7f:bf:5a:
50:db:91:93:fb:21:4b:a7:6c:54:d2:ab:7c:7e:ba:ff:02:83:
b2:3f:d0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net