Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34392e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e34392e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 9uWxZnAN9T94TB3ytvGDVs/GYyOxK3D5bOXTFrg0EN4=
Subject key identifier: 2F:25:D2:51:35:0B:85:C3:6F:2C:B0:7B:90:F3:17:19:01:CF:8E:71
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 58AA4257360127579F79C9DE9029655A3B0F8671
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34392e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:01 +0000
ROA not before: Tue 12 Apr 2022 08:55:01 +0000
ROA not after: Tue 11 Apr 2023 09:00:01 +0000
asID: 17885
IP address blocks: 121.52.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:aa:42:57:36:01:27:57:9f:79:c9:de:90:29:65:5a:3b:0f:86:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:01 2022 GMT
Not After : Apr 11 09:00:01 2023 GMT
Subject: CN=2F25D251350B85C36F2CB07B90F3171901CF8E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:95:04:8b:c7:66:9d:07:ca:03:46:b5:46:1a:
18:46:64:e9:f9:3f:83:e9:cc:ac:a2:eb:40:37:91:
e6:eb:e8:4d:91:a8:9d:d4:fa:cd:e9:d1:3b:7d:0f:
1d:34:9d:2d:51:df:20:ec:9f:a1:fc:40:ec:67:0c:
e1:1a:90:7a:62:84:4b:a6:94:48:04:a8:e2:0f:49:
55:55:6d:bb:17:e1:ba:92:25:c0:63:60:db:cc:1d:
41:15:b7:3f:d4:ca:2f:2f:69:bc:18:88:70:de:20:
ab:b7:0d:aa:3d:0a:d2:6a:7c:af:b5:6b:c5:b9:f1:
6a:05:6f:51:ee:9c:53:c3:d8:ff:7d:e7:c6:aa:13:
36:d4:be:5a:55:a2:60:dc:6b:6e:50:db:80:1b:b4:
53:60:53:08:e7:a3:61:95:0d:07:1b:cb:15:a2:f8:
74:09:a6:44:e8:58:64:2a:69:77:76:3f:3e:66:90:
18:f6:2c:e1:40:12:76:d6:53:dc:ae:c2:a3:29:61:
bb:b1:4b:7b:51:cf:d4:85:40:06:c1:96:04:10:bf:
2a:63:c9:86:74:89:f6:ab:46:fa:16:21:ad:b4:d2:
de:3a:88:f6:7e:e7:39:d2:be:2d:cc:99:c3:f9:a3:
82:98:6e:3a:de:d6:6e:56:ae:83:8f:24:20:87:ec:
10:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:25:D2:51:35:0B:85:C3:6F:2C:B0:7B:90:F3:17:19:01:CF:8E:71
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e34392e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.49.0/24
Signature Algorithm: sha256WithRSAEncryption
46:2c:d1:2d:a1:4d:ba:00:e9:c4:96:23:87:ea:ee:86:61:47:
ad:02:ee:30:c0:b3:0e:2e:c6:79:eb:7e:92:69:a9:2e:d8:06:
7a:d9:b6:34:d6:cd:64:e5:69:41:0b:38:54:a2:a6:2a:25:e6:
7e:50:4c:8a:18:0d:34:a7:19:b2:77:6d:ed:46:1a:37:96:4c:
02:71:bf:13:b3:99:27:e3:35:0f:10:07:ab:22:ea:03:ce:54:
17:dc:ce:8e:c0:a1:b7:73:7d:dc:09:f3:a7:72:4a:a5:47:93:
b5:79:3e:ef:8a:01:7b:b0:27:29:5e:e0:fb:b4:b0:09:7c:86:
eb:04:c4:08:dd:df:3d:91:c0:fc:62:93:c9:c1:67:cb:1e:4a:
0f:40:27:3c:4e:e0:3c:16:cd:6d:c6:4e:35:cb:f6:4f:ca:8d:
7f:1b:bd:00:03:75:03:52:e4:75:cd:9b:7d:26:30:06:7b:a4:
4c:a2:0f:b4:73:c3:32:c4:9c:0a:54:53:f1:f7:46:97:5b:6c:
35:83:0d:95:8a:1a:b0:ad:05:b5:4d:5b:08:4c:74:0f:5e:84:
8c:a2:55:2a:e4:15:67:a7:46:fe:7f:87:d4:3a:af:4b:14:61:
c6:4b:ce:aa:07:ca:8d:50:c1:92:0d:18:eb:60:f2:a2:a7:27:
1d:8f:65:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net