Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34352e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e34352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: cc2FAJC6H5OsL6ATD5t6XXvqMjF6pXwKQFe6NAN0OR4=
Subject key identifier: CE:A4:92:E1:A1:F5:82:FD:03:16:CC:A0:20:79:8E:A5:BB:FC:D0:4D
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5BF5D8504EBCEAE6306A45C93EDF371D8BC5E1F2
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34352e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:02 +0000
ROA not before: Tue 12 Apr 2022 08:55:02 +0000
ROA not after: Tue 11 Apr 2023 09:00:02 +0000
asID: 17885
IP address blocks: 121.52.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:f5:d8:50:4e:bc:ea:e6:30:6a:45:c9:3e:df:37:1d:8b:c5:e1:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:02 2022 GMT
Not After : Apr 11 09:00:02 2023 GMT
Subject: CN=CEA492E1A1F582FD0316CCA020798EA5BBFCD04D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c4:4e:1a:ce:79:cb:4e:20:57:f0:f7:87:d4:
81:f1:6f:c6:b0:c8:ab:6a:bc:bf:b4:06:9d:1e:31:
c4:f6:47:eb:87:64:8f:a6:f0:46:fc:70:80:e9:f6:
3f:9f:eb:96:02:0a:ad:f9:24:5c:48:97:6a:34:ec:
01:90:a8:eb:73:30:71:e2:3e:72:d8:39:2d:b9:2b:
c2:3a:31:40:8b:90:56:45:bf:0d:76:23:f3:b2:1f:
8f:b3:76:70:db:1d:5d:68:89:83:b4:37:39:be:ac:
b7:35:ff:b1:bd:0a:e1:c6:97:ee:17:58:3e:fa:92:
4c:af:75:24:ac:b2:aa:13:23:80:73:5e:a6:d1:a4:
8e:b4:c6:f1:c5:74:54:89:b6:99:3d:66:15:0a:22:
c6:a7:18:a9:d5:d5:1d:8b:f8:0d:11:f6:df:bd:87:
d9:5c:d1:fc:6d:e6:66:3f:f6:77:15:8b:c4:90:40:
8e:bd:2b:ad:e6:56:50:58:d1:9b:4e:6b:b5:8e:ca:
09:b5:d4:b4:1d:dc:e2:c3:b6:cc:b1:5d:39:d8:83:
7e:6b:8e:be:c5:84:97:60:ec:4e:26:02:2b:f0:dd:
7c:11:56:01:3f:5e:b7:8b:56:c6:0e:ee:ed:e5:b3:
c1:cd:06:28:ed:09:62:95:c5:89:3d:82:d4:d3:ea:
48:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A4:92:E1:A1:F5:82:FD:03:16:CC:A0:20:79:8E:A5:BB:FC:D0:4D
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.45.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:85:50:8a:89:32:44:36:1e:2a:ce:62:82:85:31:56:f5:15:
c6:84:8a:e1:0d:00:0f:cb:68:27:12:17:47:79:ce:36:99:66:
c4:2c:c7:02:d8:f0:06:4c:43:f3:01:8a:e5:68:cb:e3:d6:e9:
3b:e8:cf:4e:64:df:54:95:f8:95:8f:81:6a:cc:2c:cc:77:19:
79:6b:90:a0:a3:e7:99:7f:a1:81:5a:34:76:21:1d:3f:e9:4e:
d5:38:0c:b0:16:b9:b1:5b:45:08:0a:7e:1f:3a:cd:8a:12:66:
5f:08:38:c1:d6:21:6a:b8:44:bc:7f:b9:98:36:4c:70:27:14:
af:03:61:1b:ff:c1:e9:1a:35:40:75:8e:cd:5b:3a:d1:2e:88:
e3:3c:5f:82:91:df:90:3c:84:51:c8:67:16:14:01:6f:10:e1:
83:0a:62:4e:46:57:96:9a:98:63:36:74:98:03:fb:e6:b7:d8:
99:29:73:44:9d:25:32:f5:e1:79:74:3d:50:1f:cd:12:f6:33:
8e:6c:db:0c:b7:a7:72:86:6c:f6:3c:69:74:0a:66:94:6b:f2:
31:2c:4e:e8:ed:83:57:bc:b0:fc:fc:74:bf:93:99:58:7a:70:
14:99:be:76:56:dd:df:69:26:2a:7a:dc:2d:f9:50:cc:cf:68:
31:be:38:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net