Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3232352e302f32342d3234203d3e203137383835.roa
File: 3230322e3135322e3232352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: J5/7659Wj1x2/FM9h8nKZW1c4/4AF/YZTeY2L9y0nAI=
Subject key identifier: 1B:6B:C2:04:C0:4D:E1:8F:52:62:36:F7:77:EB:90:ED:F5:BA:CC:D6
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5F98A56069D49CE894DAF93C0B29B62EEB32C3A4
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3232352e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:01 +0000
ROA not before: Wed 20 Apr 2022 05:55:01 +0000
ROA not after: Wed 19 Apr 2023 06:00:01 +0000
asID: 17885
IP address blocks: 202.152.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:98:a5:60:69:d4:9c:e8:94:da:f9:3c:0b:29:b6:2e:eb:32:c3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 20 05:55:01 2022 GMT
Not After : Apr 19 06:00:01 2023 GMT
Subject: CN=1B6BC204C04DE18F526236F777EB90EDF5BACCD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:46:e6:76:c8:17:1a:62:26:f6:7f:df:7d:98:
a0:14:93:21:31:8b:13:94:f0:18:33:aa:d9:46:f3:
75:b4:07:08:98:f0:c3:d6:10:d3:c0:05:1f:2f:46:
f3:11:98:c6:8f:ef:65:37:61:0b:2c:f0:85:35:80:
14:16:95:90:ee:23:20:2d:97:b5:be:04:5a:b4:4e:
34:cd:51:1d:86:dd:16:61:bb:cf:dd:bc:fb:4e:02:
1a:af:20:7a:b5:dc:cf:68:38:29:9b:79:56:24:a1:
a4:3c:f7:08:b2:60:d9:e4:7d:31:67:5d:2e:ed:52:
21:9b:91:9c:69:f2:4a:4a:3f:e5:e7:6f:37:61:ff:
94:b5:77:f2:a4:ac:f1:e6:61:61:58:7b:23:1f:b0:
2d:62:1c:66:51:65:6b:01:87:f3:5b:7f:f1:eb:53:
fe:f1:fd:98:a7:63:7b:7f:28:a7:04:6e:d2:d8:ae:
f9:4a:b3:8d:fb:ee:66:7d:91:0b:9e:07:c4:c8:71:
57:85:86:32:07:a4:c0:96:6e:27:ef:f0:7d:93:dc:
0e:aa:29:d0:1b:e9:82:18:c6:1a:b6:30:6c:c6:55:
98:bc:8b:0f:ec:a2:61:31:86:2b:f0:0e:3e:a8:de:
bf:05:b2:d0:80:0b:54:eb:57:30:bc:63:d6:1d:d8:
0b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6B:C2:04:C0:4D:E1:8F:52:62:36:F7:77:EB:90:ED:F5:BA:CC:D6
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3232352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.152.225.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:c6:fa:3d:0c:ea:fc:e6:5a:da:12:4e:cd:29:a4:4e:89:24:
36:b0:15:65:b9:9e:de:da:3c:f6:59:b0:3c:c6:43:1f:5a:05:
e9:e2:ea:96:c0:8b:4f:22:06:8f:c8:14:0d:14:64:a8:c8:01:
e8:21:64:0b:c0:9d:73:7f:cd:01:6a:b3:6e:09:04:d7:28:58:
da:68:60:67:4a:58:13:b8:ed:2b:19:7b:d0:b5:d2:f9:81:d5:
83:f4:19:1f:2b:0e:6a:4b:db:cc:7c:f8:45:10:6d:78:8a:6e:
4a:c0:6a:ea:4f:dc:d3:64:98:3f:52:87:16:64:6f:2e:7d:91:
11:e4:b1:de:1c:24:5e:ea:fa:5d:67:2c:34:3e:90:05:81:0b:
9b:3c:ad:42:d8:dc:43:68:0a:6c:a4:ec:22:76:72:ce:92:24:
18:67:4f:70:d7:6d:f0:1b:05:4e:29:50:80:37:a2:02:cf:67:
25:6f:9a:c9:32:c0:2a:6b:ce:91:f4:3b:97:2c:85:7c:4e:5a:
3e:79:51:93:a6:cc:f6:66:2b:82:98:c3:3a:bf:37:29:73:43:
1f:70:f8:b2:df:74:59:7f:ed:b8:51:d7:21:91:0b:e8:e4:84:
08:70:73:bf:69:1f:9e:8c:f3:a3:54:a6:f2:4d:42:99:72:e5:
56:ff:e4:98
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUX5ilYGnUnOiU2vk8Cym2Lusyw6QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MjAwNTU1MDFaFw0yMzA0MTkwNjAwMDFaMDMxMTAvBgNV
BAMTKDFCNkJDMjA0QzA0REUxOEY1MjYyMzZGNzc3RUI5MEVERjVCQUNDRDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGRuZ2yBcaYib2f999mKAUkyEx
ixOU8BgzqtlG83W0BwiY8MPWENPABR8vRvMRmMaP72U3YQss8IU1gBQWlZDuIyAt
l7W+BFq0TjTNUR2G3RZhu8/dvPtOAhqvIHq13M9oOCmbeVYkoaQ89wiyYNnkfTFn
XS7tUiGbkZxp8kpKP+Xnbzdh/5S1d/KkrPHmYWFYeyMfsC1iHGZRZWsBh/Nbf/Hr
U/7x/ZinY3t/KKcEbtLYrvlKs4377mZ9kQueB8TIcVeFhjIHpMCWbifv8H2T3A6q
KdAb6YIYxhq2MGzGVZi8iw/somExhivwDj6o3r8FstCAC1TrVzC8Y9Yd2AtnAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUG2vCBMBN4Y9SYjb3d+uQ7fW6zNYwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMyMzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjhMA0GCSqG
SIb3DQEBCwUAA4IBAQCfxvo9DOr85lraEk7NKaROiSQ2sBVluZ7e2jz2WbA8xkMf
WgXp4uqWwItPIgaPyBQNFGSoyAHoIWQLwJ1zf80BarNuCQTXKFjaaGBnSlgTuO0r
GXvQtdL5gdWD9BkfKw5qS9vMfPhFEG14im5KwGrqT9zTZJg/UocWZG8ufZER5LHe
HCRe6vpdZyw0PpAFgQubPK1C2NxDaApspOwidnLOkiQYZ09w123wGwVOKVCAN6IC
z2clb5rJMsAqa86R9DuXLIV8Tlo+eVGTpsz2ZiuCmMM6vzcpc0MfcPiy33RZf+24
UdchkQvo5IQIcHO/aR+ejPOjVKbyTUKZcuVW/+SY
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net