Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38302e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e38302e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: Vu99tGSIQVivBc2nvPPYmmppD+MJYBbXVH1lBCeoU5c=
Subject key identifier: D9:78:44:61:AE:D0:68:F9:EF:73:63:D5:F0:88:A9:43:B8:7B:2B:DD
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 7CF5F1ABE2B818EF3E1C35B80D24B8BB10BF89DD
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38302e302f32342d3234203d3e203137383835.roa
Signing time: Wed 13 Apr 2022 06:00:01 +0000
ROA not before: Wed 13 Apr 2022 05:55:01 +0000
ROA not after: Wed 12 Apr 2023 06:00:01 +0000
asID: 17885
IP address blocks: 121.52.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:f5:f1:ab:e2:b8:18:ef:3e:1c:35:b8:0d:24:b8:bb:10:bf:89:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 13 05:55:01 2022 GMT
Not After : Apr 12 06:00:01 2023 GMT
Subject: CN=D9784461AED068F9EF7363D5F088A943B87B2BDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8a:27:a9:98:78:f5:ec:ed:80:73:15:48:02:
60:7d:f4:52:c6:04:cb:bd:c1:56:9a:b6:ae:ae:dc:
19:75:64:a8:ba:9e:4e:6a:d5:c5:8d:20:f4:92:48:
7f:a1:74:03:15:29:00:4b:72:e2:7d:77:b0:ef:32:
75:66:80:16:2b:2f:1b:d8:83:4f:cc:c1:b1:6d:50:
65:e9:80:80:31:f6:49:a2:33:19:1b:cf:55:d9:32:
15:3f:46:ff:25:9c:56:40:e2:d2:e7:2f:e3:b9:9c:
67:3d:50:69:63:a5:ff:ce:05:10:5a:62:4d:0d:46:
08:1e:ef:42:07:e9:d2:d8:a3:97:39:e8:36:12:00:
88:5a:af:36:f3:a8:6a:3c:52:4f:1b:c6:69:7e:d6:
ae:65:af:e4:e7:07:29:89:f9:b5:25:13:24:36:23:
59:5a:6c:9c:2e:5f:d7:f3:0a:08:97:19:13:e3:20:
6d:95:61:cc:c4:ea:cd:52:d4:e1:e0:15:f2:13:36:
c4:4e:94:ec:bd:96:90:d0:63:c7:b0:56:08:fe:6b:
30:2d:59:c3:7f:29:c0:5e:90:e4:09:34:78:ee:0a:
a1:fe:ba:c4:c1:6b:b4:f3:4f:a7:90:e4:87:6b:9c:
cf:fe:a1:28:f5:ec:61:a8:6f:2b:28:32:38:5e:72:
da:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:78:44:61:AE:D0:68:F9:EF:73:63:D5:F0:88:A9:43:B8:7B:2B:DD
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38302e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.80.0/24
Signature Algorithm: sha256WithRSAEncryption
16:58:97:cc:ce:46:e8:18:18:40:f5:2e:2a:59:da:3a:c4:6c:
22:65:d4:1c:3b:62:74:6a:77:8e:1f:d4:1d:98:dc:ba:07:31:
d0:b3:fc:47:a2:20:e0:ce:d1:ea:4b:72:01:10:ba:c3:56:43:
96:8a:2a:d9:b6:e8:0f:f9:e6:30:2f:43:44:0f:b7:9c:27:1d:
0c:7d:3a:60:b3:12:a8:33:03:76:63:e5:db:7b:2b:0b:f7:c0:
39:15:52:9d:b5:f2:88:0f:fd:a8:a7:12:30:af:df:36:25:55:
78:b5:82:a2:be:67:4e:a7:65:c0:db:05:09:87:04:a0:ba:2b:
a8:c6:c9:d3:83:ff:47:65:c2:01:93:b3:eb:93:59:d8:f2:2e:
18:63:fd:d8:74:63:84:18:1b:6d:80:6f:67:a2:62:9e:e3:0f:
01:ab:6a:88:0e:76:db:82:a9:88:74:49:f4:e5:a5:fe:1d:f3:
e1:e9:32:fd:ff:62:df:e8:6b:52:96:06:a0:a7:cd:90:cb:c9:
44:28:f9:2c:73:6e:73:e9:4c:10:79:95:c2:f3:94:e5:61:15:
ad:79:f6:c8:15:d5:04:9f:f3:40:75:bf:95:e1:60:ce:5e:7b:
e9:e6:47:43:73:e3:98:f8:ed:87:e2:0d:b5:78:5f:94:e6:38:
97:52:ad:f0
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUfPXxq+K4GO8+HDW4DSS4uxC/id0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MTMwNTU1MDFaFw0yMzA0MTIwNjAwMDFaMDMxMTAvBgNV
BAMTKEQ5Nzg0NDYxQUVEMDY4RjlFRjczNjNENUYwODhBOTQzQjg3QjJCREQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7iiepmHj17O2AcxVIAmB99FLG
BMu9wVaatq6u3Bl1ZKi6nk5q1cWNIPSSSH+hdAMVKQBLcuJ9d7DvMnVmgBYrLxvY
g0/MwbFtUGXpgIAx9kmiMxkbz1XZMhU/Rv8lnFZA4tLnL+O5nGc9UGljpf/OBRBa
Yk0NRgge70IH6dLYo5c56DYSAIharzbzqGo8Uk8bxml+1q5lr+TnBymJ+bUlEyQ2
I1labJwuX9fzCgiXGRPjIG2VYczE6s1S1OHgFfITNsROlOy9lpDQY8ewVgj+azAt
WcN/KcBekOQJNHjuCqH+usTBa7TzT6eQ5IdrnM/+oSj17GGobysoMjhectrtAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU2XhEYa7QaPnvc2PV8IipQ7h7K90wHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzIzMTJlMzUzMjJlMzgzMDJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzczODM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB5NFAwDQYJKoZIhvcN
AQELBQADggEBABZYl8zORugYGED1LipZ2jrEbCJl1Bw7YnRqd44f1B2Y3LoHMdCz
/EeiIODO0epLcgEQusNWQ5aKKtm26A/55jAvQ0QPt5wnHQx9OmCzEqgzA3Zj5dt7
Kwv3wDkVUp218ogP/ainEjCv3zYlVXi1gqK+Z06nZcDbBQmHBKC6K6jGydOD/0dl
wgGTs+uTWdjyLhhj/dh0Y4QYG22Ab2eiYp7jDwGraogOdtuCqYh0SfTlpf4d8+Hp
Mv3/Yt/oa1KWBqCnzZDLyUQo+SxzbnPpTBB5lcLzlOVhFa159sgV1QSf80B1v5Xh
YM5ee+nmR0Nz45j47YfiDbV4X5TmOJdSrfA=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net