Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e36382e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e36382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: c4z/FKCcakBWyMYkuUl3AzQK01NFesZlEbdIuI3ZDg8=
Subject key identifier: 26:A5:CD:BF:6A:98:D9:3E:CD:13:1A:DD:B0:35:93:2E:7C:71:9A:22
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 0C11673B9B6F2D3866B5E6B9C496E75E4B878781
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e36382e302f32342d3234203d3e203137383835.roa
Signing time: Tue 12 Apr 2022 10:00:01 +0000
ROA not before: Tue 12 Apr 2022 09:55:01 +0000
ROA not after: Tue 11 Apr 2023 10:00:01 +0000
asID: 17885
IP address blocks: 121.52.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:11:67:3b:9b:6f:2d:38:66:b5:e6:b9:c4:96:e7:5e:4b:87:87:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 12 09:55:01 2022 GMT
Not After : Apr 11 10:00:01 2023 GMT
Subject: CN=26A5CDBF6A98D93ECD131ADDB035932E7C719A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e3:1a:d8:3f:8a:e0:07:30:01:4f:c4:1b:02:
85:1d:fd:c0:70:b4:3b:6f:31:03:6c:ca:34:f8:92:
64:12:4c:de:c7:5c:fc:ef:0a:89:f0:a5:a6:8b:61:
b5:b0:1c:65:cd:9d:dd:b8:d3:8d:59:5d:ac:79:bd:
b2:a8:24:a1:02:dd:54:7f:4e:66:34:18:5a:ce:a0:
b0:87:fc:d8:8d:f0:b9:9a:bc:9e:1a:30:52:ea:95:
ce:04:62:78:47:79:d0:5b:52:a8:79:60:86:2e:68:
62:93:c3:0c:c4:e5:41:a5:ff:f2:e0:43:ed:c0:2b:
84:50:c4:14:8b:16:dc:a6:16:93:bc:89:be:91:1f:
d8:91:2c:bf:3e:78:6a:d0:6a:01:d3:e7:a7:87:3e:
85:a7:cb:1b:6a:f7:6b:e0:9f:1e:5a:b7:5f:eb:f0:
f9:2a:ba:3b:0a:0d:ba:1c:5e:46:da:dd:57:38:09:
9d:8c:00:6c:d9:02:71:6a:ce:a7:ed:5b:31:c7:8d:
63:02:df:d1:1c:31:14:6c:f6:fd:23:68:ff:6b:07:
8a:a6:12:e2:dc:de:0f:e5:c9:90:f6:a7:40:13:e2:
3d:8c:59:0e:c1:21:75:ef:33:0e:20:e4:89:ca:ca:
c4:13:37:d1:c5:08:3b:2d:1c:78:19:71:e5:7e:f7:
f5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A5:CD:BF:6A:98:D9:3E:CD:13:1A:DD:B0:35:93:2E:7C:71:9A:22
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e36382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.68.0/24
Signature Algorithm: sha256WithRSAEncryption
91:cd:f7:2d:23:c9:a7:c6:d3:54:77:0a:98:ab:18:b0:e3:4f:
1c:a1:d2:fd:e7:39:f9:9b:03:14:b2:b1:80:7d:92:0c:28:bc:
fd:4e:37:ba:f0:f5:d2:72:e7:77:6a:3d:c8:94:01:97:3c:b4:
51:fd:9a:6d:c4:4f:9e:6d:ae:4d:2b:c9:62:65:ac:f3:bb:4a:
c1:10:6e:3c:b4:65:3a:97:04:8c:a6:1e:da:ff:a3:f4:1c:d7:
6b:61:b3:e9:0f:f0:e1:d5:69:9f:73:b1:ff:17:6a:fd:5c:a0:
b3:6f:82:73:78:27:41:86:ee:8f:21:f2:26:1f:ed:2e:dc:a2:
f3:08:d8:bd:95:ad:b5:cb:8c:2f:33:eb:6a:34:36:9e:40:60:
ac:6c:4b:fb:62:e4:5e:6c:15:90:fe:78:35:e7:47:c5:d1:aa:
14:9c:ce:cc:42:32:a5:85:33:29:ac:08:45:b8:84:5e:71:23:
a8:de:90:8f:cb:a8:2a:cc:64:fa:98:2e:40:08:23:cb:a3:ce:
47:0b:56:c9:2d:1c:02:60:a9:4a:15:dd:fe:b0:25:a4:5f:af:
c6:e9:70:09:03:91:e8:c0:a9:23:de:57:8f:1f:90:e7:4a:2f:
25:ea:ff:54:a7:9b:82:7d:b5:ce:4d:60:2b:b2:e6:95:e8:f2:
02:1e:c9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net