Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e39322e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e39322e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 6Fo2MbdTJpmWHxRjoH1ILs0WUbg3viyzNqyo7QzhZL4=
Subject key identifier: 93:6C:87:9C:0C:CF:31:DE:E8:A5:C6:2A:AB:83:1C:A3:B8:7E:51:08
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 78539CBBB1CE17CB274156399BCA2A42EFF20357
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e39322e302f32342d3234203d3e203137383835.roa
Signing time: Wed 13 Apr 2022 08:00:00 +0000
ROA not before: Wed 13 Apr 2022 07:55:00 +0000
ROA not after: Wed 12 Apr 2023 08:00:00 +0000
asID: 17885
IP address blocks: 121.52.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:53:9c:bb:b1:ce:17:cb:27:41:56:39:9b:ca:2a:42:ef:f2:03:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 13 07:55:00 2022 GMT
Not After : Apr 12 08:00:00 2023 GMT
Subject: CN=936C879C0CCF31DEE8A5C62AAB831CA3B87E5108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:11:8e:08:3a:6b:76:fd:c5:e3:ef:86:9a:5e:
14:f7:c4:b4:14:40:83:1b:dc:cf:9d:64:2d:8f:c8:
dc:cf:4b:e5:2b:0c:8f:9a:b2:98:50:7a:fd:1d:d2:
2e:52:3e:67:42:25:74:74:7f:18:da:ba:0c:8d:5d:
5f:17:46:80:d1:27:4c:f9:a6:6b:3e:cc:4c:f6:59:
d9:03:55:fa:b7:44:6f:a6:14:80:7d:bd:cd:dc:2c:
c9:ec:f6:d2:df:79:34:c3:ef:86:89:4e:64:ba:ab:
4f:43:b9:52:40:98:17:e7:5a:58:f0:09:6d:17:e0:
50:9c:87:ca:1b:c6:8e:36:78:9e:cc:c5:82:e5:b2:
94:ff:a8:e5:bc:d8:8c:2d:b6:5e:3e:ed:58:e0:61:
96:1e:dc:03:86:a2:50:c5:e4:c9:12:06:83:25:1f:
5c:e7:a9:86:ac:73:72:32:6a:58:c9:39:04:c3:e2:
5f:b1:a5:7a:04:45:23:b3:ad:0b:bf:83:12:47:4a:
cd:8a:77:33:99:f9:ba:7d:ad:ad:54:b6:02:c7:f1:
fc:cd:b2:de:1a:32:e9:f3:3f:5e:74:91:9d:14:f4:
a5:bf:34:e7:42:d7:a3:78:47:a3:f5:ab:72:17:0b:
60:79:99:95:91:4c:b2:7c:e1:9b:3a:81:e2:6d:c3:
98:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6C:87:9C:0C:CF:31:DE:E8:A5:C6:2A:AB:83:1C:A3:B8:7E:51:08
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e39322e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.92.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:64:60:7e:9b:8e:d5:f4:da:91:5b:18:c3:e4:ff:9f:83:1a:
3b:d8:b6:52:c1:e4:2b:2c:5e:e4:ff:01:27:2b:cc:78:bd:41:
e8:b8:fd:29:c7:6d:f8:0f:8f:82:5f:39:a6:be:de:0b:40:a0:
cc:46:f0:ec:3c:b0:01:c7:d3:29:e1:c5:7a:f9:fd:1d:8e:0f:
34:55:ac:dd:b7:22:88:a2:03:c8:c8:c7:e7:28:94:75:8c:10:
1c:99:1d:db:fa:54:ae:a8:79:60:72:c2:4e:72:0b:57:1a:df:
05:cd:41:40:77:81:a0:2b:2f:fb:ca:f7:7d:48:cd:a2:c6:b3:
46:2e:72:74:2b:2c:3b:fb:0d:c0:36:ca:7a:8b:eb:4c:97:8f:
0c:74:4a:00:7d:61:cc:da:f0:c8:03:5c:d8:52:a2:56:89:67:
1a:4e:15:78:0c:6e:b6:0c:e3:75:c4:e8:65:ed:54:5e:ed:dd:
5d:de:99:10:eb:51:42:04:78:83:37:30:76:57:86:91:ff:d8:
c5:41:c8:e8:ec:7f:a6:98:84:68:91:df:6e:25:9d:2d:cd:8d:
af:00:60:6a:f6:91:1c:47:e1:c4:d1:f5:8b:5c:ea:48:8d:41:
ca:8f:ca:6c:d3:77:14:e9:10:25:b1:98:b9:3c:0a:3b:b9:89:
16:d4:36:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net