Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35332e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e35332e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: kelZbZJuDrPbFVb4J/2bYWpp+asbm2GS0RbJb5aqFWQ=
Subject key identifier: 95:9B:EB:EF:FF:3C:69:4F:E3:A0:C5:27:34:AD:C5:56:B1:52:B3:C4
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5553149D5EA597234C44A9B26FC575AB7589B30C
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35332e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:01 +0000
ROA not before: Tue 12 Apr 2022 08:55:01 +0000
ROA not after: Tue 11 Apr 2023 09:00:01 +0000
asID: 17885
IP address blocks: 121.52.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:53:14:9d:5e:a5:97:23:4c:44:a9:b2:6f:c5:75:ab:75:89:b3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:01 2022 GMT
Not After : Apr 11 09:00:01 2023 GMT
Subject: CN=959BEBEFFF3C694FE3A0C52734ADC556B152B3C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:47:6b:2c:fa:12:58:20:61:a6:72:03:9a:
47:a4:b2:34:25:e7:fd:96:73:f9:78:d1:19:59:19:
72:07:00:1b:bf:9c:4c:fa:4c:ee:6a:68:b4:69:2d:
a5:84:85:d3:77:c0:f3:c4:b2:f0:de:e6:e2:79:3f:
9c:77:b6:51:a3:d1:ca:ff:4a:fb:7d:16:d4:b1:a6:
0f:13:86:60:4c:2e:a6:e6:48:6f:a1:c7:da:97:f0:
9b:28:49:29:d0:20:13:cc:07:44:b5:07:1d:d0:5c:
9e:06:fd:89:76:1d:c7:d9:96:5f:28:c6:0c:d8:e7:
d3:70:b0:28:70:1c:ea:ef:35:0d:32:4e:15:b0:c4:
0d:20:d6:cf:02:d4:2a:3b:3f:c9:6b:88:e8:67:cd:
62:87:28:a0:44:34:52:de:2b:0d:75:35:48:9c:db:
93:8c:37:5e:90:65:84:43:c6:cb:b5:9a:0e:0f:b1:
43:72:f2:92:ea:64:23:60:39:9d:0f:9f:a8:a3:fe:
7a:4c:a0:c3:b2:4f:8d:13:26:44:c5:5a:5c:9e:e3:
d7:c4:0b:96:b5:f6:32:3c:24:d2:ec:36:1a:00:b8:
fe:85:aa:4f:12:a7:76:10:da:ed:76:bd:ad:47:95:
e0:81:7a:c9:32:84:a6:53:2f:9d:74:d9:04:c0:8e:
75:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9B:EB:EF:FF:3C:69:4F:E3:A0:C5:27:34:AD:C5:56:B1:52:B3:C4
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35332e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.53.0/24
Signature Algorithm: sha256WithRSAEncryption
63:7f:eb:af:1c:34:b7:91:ba:3d:05:b1:95:73:4e:30:0b:f2:
85:44:1a:17:f1:3c:a8:6f:08:33:e0:65:00:25:da:3b:e8:38:
6a:97:22:95:df:01:2b:a9:91:26:3c:57:3a:1e:be:83:4e:71:
55:5d:f1:29:f1:71:19:e7:01:be:b9:c8:9e:7d:a4:cb:b9:6a:
79:6e:b6:2d:9e:06:6e:74:9d:01:4d:6e:39:52:11:c5:4a:44:
ca:a4:6c:6f:46:2b:bd:ed:4b:89:8f:f4:63:3d:08:c6:83:5c:
8c:5e:2c:9b:40:ff:3b:64:2b:e1:75:af:cb:84:97:15:30:fc:
98:33:5f:a5:a5:7f:a1:95:2b:52:f7:08:7c:28:13:8e:2e:10:
37:c7:36:d8:19:ec:be:96:a6:5e:08:b4:d3:f7:bb:9f:ed:98:
71:15:49:ce:17:f3:9c:d3:a9:97:21:7d:c9:38:fc:08:eb:77:
d6:25:ed:cf:08:50:63:eb:74:7a:6f:b2:d4:9b:89:82:8e:24:
96:31:e8:fb:69:7c:9c:94:61:4d:fa:41:6b:60:98:1b:78:e4:
a1:67:04:84:2a:b0:65:97:eb:15:f5:70:ff:77:ac:a4:c5:ec:
4f:68:b8:e8:d5:1e:d1:78:65:9d:42:b2:82:f4:59:f7:c4:b2:
e0:e1:41:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net