Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34382e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e34382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: vo6N9Ojr0TyQ1zVYq2JrUbqEz1eO0xVxTciBLAFDKMg=
Subject key identifier: A1:CF:65:69:65:07:D4:EF:AD:AD:80:0B:0A:C7:45:FD:19:2E:06:ED
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5FE85D0CD73EB038889F4FA3CBB00B69023A9E26
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34382e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:02 +0000
ROA not before: Tue 12 Apr 2022 08:55:02 +0000
ROA not after: Tue 11 Apr 2023 09:00:02 +0000
asID: 17885
IP address blocks: 121.52.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:e8:5d:0c:d7:3e:b0:38:88:9f:4f:a3:cb:b0:0b:69:02:3a:9e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:02 2022 GMT
Not After : Apr 11 09:00:02 2023 GMT
Subject: CN=A1CF65696507D4EFADAD800B0AC745FD192E06ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0a:3c:e6:c8:7e:04:3b:40:bf:61:6f:60:34:
29:16:be:0a:70:6c:5f:a1:19:80:b4:7a:0d:ed:df:
95:63:8e:bf:50:91:ed:8f:1b:29:89:f2:a3:97:51:
0d:97:96:82:79:4e:4f:86:4b:8d:17:c5:78:1b:87:
16:46:3f:57:9e:1c:7a:63:3f:3a:1c:ff:5a:a2:1d:
2d:27:95:cb:21:2f:5c:59:3f:6c:85:b0:af:04:84:
bf:a3:cd:b0:62:bd:ba:42:a4:ab:a5:74:c1:b9:6b:
68:3b:ce:24:f0:b9:42:a2:c9:5a:25:08:8c:8b:34:
6e:ad:2e:63:0e:80:01:52:49:87:d4:2a:d5:51:b3:
27:c6:06:fe:be:84:ca:a6:c1:8d:e3:73:98:10:a8:
4f:4f:4c:5f:74:53:d8:b6:3a:a1:2f:6b:76:10:72:
90:50:0d:8c:5f:29:fe:75:86:33:e2:72:13:99:4e:
26:6d:cb:72:af:bf:9b:1a:38:34:94:f0:26:1f:6a:
78:0a:2e:f0:a0:80:f1:e4:56:f0:cc:b1:1e:25:74:
27:12:fa:7d:f1:49:d4:91:98:6c:98:68:af:2f:e4:
a0:39:f8:c3:b2:43:16:17:f7:42:a1:b2:69:1b:13:
42:1c:77:45:69:f8:4e:1c:16:02:81:6a:cb:83:ed:
59:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:CF:65:69:65:07:D4:EF:AD:AD:80:0B:0A:C7:45:FD:19:2E:06:ED
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b7:8e:9b:e6:1f:be:8c:a0:bf:30:8c:f6:7b:45:51:31:6f:
c6:29:f2:05:5f:86:fe:05:2e:fd:b7:ec:5c:b5:97:15:61:52:
50:4f:a5:07:84:10:86:0b:1a:1f:1c:08:0c:5e:3e:01:27:b2:
da:8d:74:30:37:5e:d6:21:b1:3d:df:47:7f:eb:7a:e7:7d:64:
5b:df:a9:6d:c5:17:c9:b2:48:2f:0a:e0:02:27:82:21:80:21:
62:a2:5a:69:b5:29:e3:ba:b7:19:46:17:53:f3:cd:b0:c0:58:
e5:be:ba:ee:e1:fb:2b:f8:0d:7b:bb:f4:c7:d6:e4:c3:d8:97:
64:79:fd:36:0a:62:b7:aa:eb:e0:2f:54:de:0d:73:a4:03:7d:
2d:8c:40:a3:97:b9:90:87:68:0f:32:50:32:85:24:4f:49:46:
3d:66:e1:aa:e6:88:66:80:d8:17:02:c9:1b:c0:f5:92:74:3a:
7a:7b:9e:b5:ca:2f:46:b3:6a:25:a1:ad:05:55:50:d1:cd:2e:
82:c2:cd:df:18:20:aa:01:99:a0:a6:60:e8:cf:e4:d3:70:7f:
12:38:66:0c:83:bf:86:b4:f7:97:11:38:61:03:22:39:33:d6:
d5:44:9b:06:ae:29:9e:1f:ac:3b:14:a7:2e:d7:21:a4:d6:e4:
b0:df:99:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net