Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e37352e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e37352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: Azeo/xbN22Avhi0grRYV+BSBT/Kdd2OtfUDfhDQpcR4=
Subject key identifier: 98:9D:8F:A0:8B:09:70:CB:E0:AB:BE:41:5B:9C:CC:9F:8E:0A:C5:1F
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 61D33E38657EB2F123263F60DE208BABBCCE1A1F
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e37352e302f32342d3234203d3e203137383835.roa
Signing time: Wed 13 Apr 2022 04:00:01 +0000
ROA not before: Wed 13 Apr 2022 03:55:01 +0000
ROA not after: Wed 12 Apr 2023 04:00:01 +0000
asID: 17885
IP address blocks: 121.52.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:d3:3e:38:65:7e:b2:f1:23:26:3f:60:de:20:8b:ab:bc:ce:1a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 13 03:55:01 2022 GMT
Not After : Apr 12 04:00:01 2023 GMT
Subject: CN=989D8FA08B0970CBE0ABBE415B9CCC9F8E0AC51F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:65:c7:47:d9:1a:4c:d4:fb:a6:b4:04:e0:8a:
20:18:f6:61:b0:b4:ee:ec:2e:4a:ed:8b:01:ae:1b:
11:c2:39:b4:42:af:c9:aa:4a:0a:bf:36:dd:25:15:
fb:87:07:86:0c:4d:69:ac:92:63:f8:ca:0f:82:60:
73:d8:1f:47:fe:4e:62:39:fb:31:82:fa:d6:ac:1b:
5a:29:2c:dd:ea:30:f4:8b:e2:45:e0:93:fd:b8:2b:
ad:3e:eb:e7:7e:65:62:24:74:62:e6:5c:3a:0c:8a:
3c:af:e3:44:fe:34:da:08:23:49:86:fe:c9:b2:28:
49:f7:be:45:f2:63:ba:76:ba:a4:fe:d3:72:0c:55:
2d:57:fa:2c:a6:23:7f:d7:fb:a1:ab:65:ad:ec:4a:
c3:56:38:e0:ac:5e:28:56:2b:d5:3e:ef:e8:13:ff:
af:b3:b3:6b:16:57:e4:4a:f7:4e:f1:fe:99:23:5e:
dd:12:10:d7:2b:ef:a7:52:27:f3:07:ce:9e:c1:92:
e5:b7:1d:32:a2:ef:9b:e2:ff:74:72:e4:58:ea:b7:
0a:c9:f6:84:0d:90:5f:35:c6:47:bc:ef:c2:e1:84:
e8:c0:37:48:55:33:06:5d:41:62:99:5d:a3:f1:61:
37:63:cc:46:33:6d:75:b9:05:44:e8:cf:de:41:a0:
3f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:9D:8F:A0:8B:09:70:CB:E0:AB:BE:41:5B:9C:CC:9F:8E:0A:C5:1F
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e37352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.75.0/24
Signature Algorithm: sha256WithRSAEncryption
16:99:5d:62:b8:a5:15:07:ae:1c:f8:b9:b7:23:25:f2:f0:0f:
c3:f8:fb:84:65:ab:f5:c3:3a:14:18:42:f1:e7:2a:90:68:78:
18:1f:46:54:95:98:7f:cc:e4:64:6f:3f:53:06:94:f2:2f:05:
39:98:6f:51:05:7e:b6:0e:c1:53:91:9f:e3:06:51:6e:b3:31:
62:ca:43:a7:11:13:fb:11:da:dc:81:7b:c8:1d:39:37:f4:2c:
30:2a:44:4c:fe:79:0e:88:fe:63:eb:92:fb:07:e1:b0:fc:fe:
ac:2f:f3:0a:30:74:36:06:77:9e:b8:64:d7:be:ec:59:69:e6:
42:ed:06:98:70:28:11:46:8f:2f:b3:78:26:c0:28:91:93:18:
87:0b:5f:23:a3:67:10:f7:fb:0f:1d:ab:f0:68:b4:cc:56:1b:
86:17:1c:fe:fb:22:28:a1:a3:47:70:e4:4e:3a:4b:ce:40:47:
19:8c:cd:b3:6f:fa:72:2b:66:d3:ee:38:17:30:26:a7:20:4f:
2e:d1:20:5b:6e:ec:a9:07:ad:59:8b:1f:4d:9b:36:28:0d:45:
dd:58:48:d4:61:32:f3:44:ef:27:2a:eb:a1:2d:89:48:ee:85:
ae:3f:22:a6:49:cb:b3:99:83:ec:76:08:4f:9a:1e:38:52:96:
a3:a9:12:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net