Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38332e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e38332e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: zx+wQyQ2e7zuRS9gIh6ZNRY1o3paoW1dcIQrhraqkqg=
Subject key identifier: A7:B5:8E:53:FE:48:80:6C:77:8E:B1:69:BF:FA:FC:63:E4:6D:D7:8B
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 0E5DD3BE35493EEEA3FDD20354A561FF5D2D0D7F
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38332e302f32342d3234203d3e203137383835.roa
Signing time: Wed 13 Apr 2022 06:00:01 +0000
ROA not before: Wed 13 Apr 2022 05:55:01 +0000
ROA not after: Wed 12 Apr 2023 06:00:01 +0000
asID: 17885
IP address blocks: 121.52.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:5d:d3:be:35:49:3e:ee:a3:fd:d2:03:54:a5:61:ff:5d:2d:0d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 13 05:55:01 2022 GMT
Not After : Apr 12 06:00:01 2023 GMT
Subject: CN=A7B58E53FE48806C778EB169BFFAFC63E46DD78B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8c:ab:26:72:f3:36:90:b4:ba:57:ca:f0:6d:
f1:59:e1:90:41:1f:8d:8b:04:0a:50:03:63:65:13:
dc:d1:15:53:57:97:ca:8c:af:e2:8f:39:17:43:ff:
99:8e:f9:01:49:83:6e:19:f8:39:6e:e1:6d:51:34:
2a:49:be:dc:79:f1:97:84:dc:eb:b1:03:61:85:2a:
89:8e:b5:e7:88:1e:35:7d:7b:ba:c7:43:53:03:d5:
ba:ec:59:75:aa:6e:d9:f0:f1:70:e5:44:32:60:52:
d6:7d:ab:ed:c8:dd:05:bc:c8:34:0c:1b:df:c6:3a:
46:45:46:82:4d:24:74:dc:fe:40:83:49:d9:70:c2:
a7:75:23:51:f9:67:0e:ca:fb:9e:79:c2:e6:f5:fc:
f3:fa:65:49:ac:45:c7:9a:29:fc:32:a1:48:be:73:
2d:a2:9f:94:83:1e:86:1c:58:e3:e6:12:05:10:8c:
08:12:5a:7c:61:2a:67:9e:42:75:7d:4d:8f:54:4c:
59:3e:e5:53:cc:ad:21:ff:40:ce:2c:4c:ea:8b:fd:
d1:bc:cf:12:73:cb:9d:d2:30:3b:c7:a7:b9:91:39:
4e:f4:05:d2:37:fa:a7:12:55:43:f4:58:63:1c:3f:
89:a2:97:55:8b:97:28:0a:18:0a:4e:d7:38:41:9a:
e7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B5:8E:53:FE:48:80:6C:77:8E:B1:69:BF:FA:FC:63:E4:6D:D7:8B
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38332e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.83.0/24
Signature Algorithm: sha256WithRSAEncryption
60:8b:5f:67:08:53:de:37:77:1b:9c:b6:ba:98:52:7a:e0:73:
f2:10:f6:44:4a:f2:42:db:8d:5c:b7:51:f5:7b:a9:1c:23:c1:
89:83:31:ca:1c:7d:28:df:1f:67:8c:68:e4:13:f3:4f:cf:83:
4d:25:47:4b:30:b0:22:25:43:2f:79:75:af:92:4f:27:bd:5f:
dc:13:55:7d:2b:74:63:87:ba:9d:0c:11:dc:2e:1c:18:69:46:
6e:09:b4:73:e4:26:00:78:ea:cd:35:59:b9:8a:0b:ed:69:17:
ed:91:92:b3:3f:bf:da:83:34:ef:b6:2a:2e:5c:04:ca:9f:e4:
4c:89:0a:2f:32:f2:a5:28:5b:fe:fa:d4:8f:03:a7:ea:2f:5d:
b8:cb:1b:8c:31:77:29:f9:d7:36:cd:9b:50:67:06:88:0b:12:
18:c5:72:b8:e3:7f:40:db:db:22:75:56:32:91:8b:10:e3:07:
0d:b6:6b:b8:d1:b4:98:d6:4b:eb:e5:d0:61:05:1d:00:cc:4d:
7c:4b:60:df:79:1f:f9:23:ef:1e:c9:37:31:99:fe:eb:50:35:
a0:22:ea:df:e8:cb:e0:a8:49:c0:8a:03:6f:73:6d:75:0e:b8:
86:89:bc:9e:79:e0:53:8d:e5:52:1a:d2:7a:88:6f:31:12:69:
07:b4:71:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net