Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35342e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e35342e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: vnbN3v61uqf9+rfB3G0clqQhjBxfvkeVnlP21KKFHeE=
Subject key identifier: 0D:A6:D2:2F:F8:97:EF:16:97:F5:DD:8F:51:2D:58:DA:47:A8:53:E4
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 0E391AE5C9CF27EE9391F0895E9F245F375CE7A1
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35342e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 09:00:01 +0000
ROA not before: Tue 12 Apr 2022 08:55:01 +0000
ROA not after: Tue 11 Apr 2023 09:00:01 +0000
asID: 17885
IP address blocks: 121.52.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:39:1a:e5:c9:cf:27:ee:93:91:f0:89:5e:9f:24:5f:37:5c:e7:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 08:55:01 2022 GMT
Not After : Apr 11 09:00:01 2023 GMT
Subject: CN=0DA6D22FF897EF1697F5DD8F512D58DA47A853E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:47:19:08:40:b5:f6:04:03:b3:24:7c:8b:59:
b3:d4:dc:d0:71:bf:a4:a8:48:1d:12:97:01:10:79:
f2:a7:cc:83:62:62:51:81:bb:dc:28:28:7a:5c:a1:
4c:01:83:cb:36:14:e4:7f:1b:b4:c8:27:b7:c3:09:
9e:50:39:d1:85:d3:98:8b:49:1d:91:e0:c1:33:c9:
a6:dc:0e:86:03:05:4d:60:39:71:da:28:9c:43:ce:
8f:f4:a7:5d:3a:88:58:6f:bc:b3:fa:62:97:b6:99:
b6:e5:47:ad:1e:ef:89:e2:ea:9b:bb:46:88:b3:33:
c1:ce:fc:88:87:e1:51:36:7b:1d:8d:87:f1:eb:fb:
f0:9d:c5:cd:26:85:e3:27:e0:46:b9:bc:7e:7a:7c:
47:1d:7b:04:ce:7a:6e:53:ed:5f:0d:44:61:01:ce:
ca:4d:12:fc:e6:88:e0:c0:b7:7d:aa:4a:4d:df:ac:
79:df:9a:17:d9:d4:2c:6b:65:e5:c4:6e:0f:95:14:
2a:95:76:58:d6:cb:37:da:30:40:13:9b:27:f8:29:
1a:df:c6:4b:7c:b2:cf:37:1a:a7:13:8e:cd:43:1e:
d2:8a:90:e7:14:12:b1:1a:ad:f0:22:4a:88:98:6f:
be:b9:ad:23:37:cc:69:15:4c:da:4f:de:df:72:78:
ab:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A6:D2:2F:F8:97:EF:16:97:F5:DD:8F:51:2D:58:DA:47:A8:53:E4
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e35342e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.54.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:c6:96:8f:57:09:35:bb:10:e9:ee:cd:e5:67:2d:b3:da:2e:
90:2b:a6:ad:65:3c:84:f1:77:e8:bb:34:10:b4:67:45:9b:75:
8e:96:00:da:b1:4a:3e:63:b5:ca:b0:9b:3d:b6:b1:57:c3:30:
48:f1:3b:4b:4f:4b:15:16:37:06:bb:d5:42:7c:15:79:dc:74:
05:60:10:58:2b:53:7b:ea:42:8f:20:df:a6:ae:43:16:5d:aa:
fd:35:82:d4:1f:cf:00:e4:4c:ab:ad:3b:64:7f:a7:91:a4:2c:
86:0a:68:b0:ef:d6:a5:a5:b9:d5:06:8c:f3:35:bd:a0:ca:e0:
8f:73:bf:8e:2b:9e:51:af:cf:31:55:f1:8a:c9:37:ed:e1:0b:
d3:48:d9:4b:d0:6d:c4:a6:37:70:5d:da:3a:1a:93:c8:4e:98:
dd:8d:15:24:75:19:45:b8:77:b7:d0:67:94:b5:88:95:09:6c:
f9:ba:a8:f2:d0:cf:b3:4c:56:03:12:6b:35:6a:03:d6:37:6b:
ae:b5:72:8f:f7:e3:7a:66:d3:75:1a:c6:89:dd:7f:cd:a0:63:
19:08:a8:28:77:f4:86:2b:68:c3:6b:6a:56:97:ec:33:29:62:
ec:32:09:23:22:6c:d2:0c:ab:f0:a2:e4:b4:08:b4:9c:0e:a7:
ff:d1:fd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net