Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38362e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e38362e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: Hbv9ZM1jrzV55wytAXpM1ZHPW9vGA7XZSrhhSbXjcpg=
Subject key identifier: 7D:5D:4E:0D:BD:40:56:7D:41:6F:A1:56:21:00:33:1A:57:5E:AD:5C
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 0C6C9BC370D9AB382445D62DC267530502A0CE0E
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38362e302f32342d3234203d3e203137383835.roa
Signing time: Wed 13 Apr 2022 06:00:02 +0000
ROA not before: Wed 13 Apr 2022 05:55:02 +0000
ROA not after: Wed 12 Apr 2023 06:00:02 +0000
asID: 17885
IP address blocks: 121.52.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:6c:9b:c3:70:d9:ab:38:24:45:d6:2d:c2:67:53:05:02:a0:ce:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 13 05:55:02 2022 GMT
Not After : Apr 12 06:00:02 2023 GMT
Subject: CN=7D5D4E0DBD40567D416FA1562100331A575EAD5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9c:6e:ce:6d:78:67:a4:32:90:3b:81:a7:fa:
82:a7:ac:ab:7a:be:3a:cf:df:c6:6e:84:26:ed:ce:
e9:d3:5e:34:a8:5f:03:98:d7:11:3d:4f:25:17:b9:
8b:18:eb:a6:fa:39:8c:d3:66:a3:d6:0a:36:57:75:
86:2a:e3:9e:0f:d0:f1:5d:d5:b8:1d:af:95:8e:0d:
e3:2e:d2:6b:f5:ac:38:54:10:8f:90:68:64:2f:2d:
40:78:e6:89:65:ca:a7:84:5d:f0:12:b9:4d:da:99:
78:4f:26:51:89:a8:31:c3:e8:55:d3:a7:86:47:d3:
bc:54:10:90:a7:65:db:ab:b9:de:6e:45:44:90:cc:
32:b3:12:5d:5a:b1:90:13:cb:89:e7:4f:a8:95:41:
cc:39:9d:7a:30:fb:ee:8d:85:b5:21:1e:5c:49:24:
50:15:ee:50:3b:c4:55:4c:a1:c6:0c:20:aa:2c:89:
de:41:11:2f:e3:b3:9e:08:35:3d:3e:75:3e:3e:9b:
a8:bb:c6:30:ad:6a:57:a5:44:f3:c0:74:34:31:07:
55:38:39:78:25:63:b4:78:14:74:e2:e1:39:bc:90:
c3:6e:de:50:ae:f0:7c:be:dc:be:d2:e6:90:08:9d:
c5:80:e6:9c:8a:69:c9:dc:c7:c5:15:1a:78:09:37:
c3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5D:4E:0D:BD:40:56:7D:41:6F:A1:56:21:00:33:1A:57:5E:AD:5C
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e38362e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.86.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ea:56:36:87:bf:e4:7e:cf:e7:11:2a:4d:27:df:cc:7c:63:
f2:52:ac:c2:97:9a:d0:5d:ee:53:eb:7a:db:82:e5:fc:8e:ef:
e3:77:04:f0:a0:12:c4:3c:63:1d:27:21:32:c3:d6:87:74:fa:
ea:ae:62:e6:fb:19:ed:a9:af:68:da:81:6d:a8:e4:c7:77:69:
ba:48:e7:ca:37:79:fd:9c:10:17:e7:6f:ec:72:ee:a4:e2:a3:
f1:8a:1a:99:ff:68:57:df:2a:96:95:1c:4e:c4:f4:00:8d:32:
ce:08:12:49:e8:15:5d:97:21:67:b5:c5:f5:1d:ac:32:df:2b:
c0:f2:35:f5:d1:f8:c9:52:80:a0:60:22:ae:50:5a:9c:d7:cc:
81:6d:03:67:34:3c:92:5b:c1:4d:3d:42:27:82:b6:20:56:00:
47:9e:c7:5c:6c:82:0b:5b:12:86:cd:93:60:c7:db:84:15:ab:
d9:ec:a7:11:fc:3b:0f:4d:b2:f3:40:bc:2e:47:e2:cf:25:82:
c8:2d:84:3a:4b:c0:35:ba:c0:f4:74:39:7a:60:bf:41:13:8d:
0a:79:54:8b:92:36:87:7c:a0:c8:50:b2:b3:99:37:b9:c5:04:
1a:fb:8d:71:3d:3e:dd:41:47:56:48:a2:34:6b:61:26:99:96:
7b:d0:c0:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net