Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35302e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e35302e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: LowUvtmzRsPwP8DiYBL7U34EovZulLFRlD/YZ6erQDA=
Subject key identifier: 3F:6D:30:71:56:EE:21:A1:3A:A5:F9:A0:DD:A6:2E:3E:CA:60:40:F6
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 761BE32B74C2DE1768F4DCCD00A2C541C93755F4
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35302e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:02 +0000
ROA not before: Tue 12 Apr 2022 08:55:02 +0000
ROA not after: Tue 11 Apr 2023 09:00:02 +0000
asID: 17885
IP address blocks: 121.52.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:1b:e3:2b:74:c2:de:17:68:f4:dc:cd:00:a2:c5:41:c9:37:55:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:02 2022 GMT
Not After : Apr 11 09:00:02 2023 GMT
Subject: CN=3F6D307156EE21A13AA5F9A0DDA62E3ECA6040F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:da:30:16:63:94:9a:0d:03:a4:84:13:30:a0:
94:e1:d3:d0:b2:0d:1b:10:2a:5d:02:a6:7a:11:0a:
78:bd:2e:65:cb:5c:cd:fb:ea:a3:5f:d9:df:6a:ee:
a0:99:6a:dd:53:1b:d6:1b:0d:67:5e:53:20:6f:74:
6c:f2:82:1b:3c:1a:ab:97:44:f3:fc:51:3e:08:41:
be:a3:c8:24:1e:52:5d:24:33:07:4e:5d:ed:2b:34:
ab:5c:fd:17:e2:3c:71:0f:bf:8f:cd:f8:34:3d:3d:
87:58:01:7a:81:b7:2a:68:42:6b:16:13:07:20:9d:
94:66:79:2a:26:9f:9d:13:eb:66:b1:a0:53:02:b6:
4c:6e:79:49:40:11:91:e2:8c:bd:2c:66:1f:e8:36:
81:fa:f7:00:4f:6b:6d:63:44:2e:f3:ca:0d:5e:b9:
d3:6a:6e:b3:4f:42:74:87:74:23:5d:67:4c:61:35:
42:32:77:f5:7d:54:e0:9a:21:a1:ee:e1:b9:5e:1b:
14:c9:94:41:87:68:40:b5:21:a9:4a:c7:7e:e7:4d:
c9:82:a4:4d:83:ba:82:ec:5a:6d:7a:42:2f:72:2a:
05:37:90:07:ee:82:ec:07:ef:18:5e:84:ea:7c:70:
d7:20:b2:6f:9a:c4:af:00:3f:9d:a1:d4:ef:19:17:
0a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6D:30:71:56:EE:21:A1:3A:A5:F9:A0:DD:A6:2E:3E:CA:60:40:F6
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35302e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.50.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:db:0f:82:3d:85:9a:c8:a1:96:50:89:b6:1f:56:b8:35:2e:
ba:9a:f0:b1:79:7d:b2:d1:a7:2d:8e:c8:3f:1b:cd:2d:fa:96:
cc:0e:f3:83:36:40:4c:ad:bf:75:61:e0:4d:ee:bc:3b:39:dc:
cb:84:2f:d8:b4:62:29:0c:33:e8:d6:dc:fd:e0:c6:80:e6:04:
3b:ec:ec:91:e0:63:ea:99:14:e6:66:dc:ae:b0:cc:5f:32:6d:
27:93:fd:20:2b:75:62:ea:6c:94:7c:c0:43:55:a7:59:b3:49:
2b:9f:91:b9:6b:0d:81:da:b2:9e:ad:df:b9:4e:39:9f:7d:b8:
47:73:b6:71:8f:18:c8:79:43:59:e7:6a:d4:6c:7e:7a:69:db:
34:ad:6c:1b:20:cd:8d:c3:3c:58:70:f0:12:af:42:bc:06:b8:
d9:7c:35:54:45:92:1f:0d:97:83:ae:23:f8:4b:36:65:95:5b:
82:70:fe:b3:1c:8f:d7:ea:58:88:89:5c:08:e3:d5:e7:45:a5:
b9:a3:38:dd:a0:a4:c0:bf:54:60:26:1f:10:ed:cb:48:6f:28:
06:db:97:bd:f9:99:18:a3:03:23:34:4e:d4:83:39:d8:79:d3:
3f:3d:9b:9d:5a:82:c2:aa:de:7d:36:a2:a0:a0:45:be:92:d9:
28:9e:a5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net