Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3233372e302f32342d3234203d3e203137383835.roa
File: 3230322e3135322e3233372e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 9rl+CAP/M1UV8TOgTPF4P2+0qysEI9Y5msl4Uhb6WyM=
Subject key identifier: C3:F0:3E:2F:25:7B:63:8D:BE:BB:77:28:BE:CC:90:70:4C:A2:2A:04
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 7CE10E2A8921F41D981FCEA6C9ED71A5C5AD5664
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3233372e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:00 +0000
ROA not before: Wed 20 Apr 2022 05:55:00 +0000
ROA not after: Wed 19 Apr 2023 06:00:00 +0000
asID: 17885
IP address blocks: 202.152.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:e1:0e:2a:89:21:f4:1d:98:1f:ce:a6:c9:ed:71:a5:c5:ad:56:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 20 05:55:00 2022 GMT
Not After : Apr 19 06:00:00 2023 GMT
Subject: CN=C3F03E2F257B638DBEBB7728BECC90704CA22A04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:7c:9b:95:1f:b5:e6:e6:a6:5f:4e:08:ba:55:
60:f0:e7:71:4b:7c:b7:85:77:99:f4:82:67:5c:8b:
77:d8:e2:74:4e:12:15:0d:38:f1:90:8c:f2:4f:d7:
f6:53:05:11:54:c2:de:0a:95:2d:17:4d:86:c3:ae:
21:c4:d3:04:d0:29:a1:26:e0:eb:9f:87:bb:c8:10:
12:fd:99:7d:4f:39:b3:bf:19:17:f5:74:8c:75:50:
8d:ef:45:93:a9:9b:f6:76:e2:9c:05:8e:6e:e5:91:
33:19:e3:a1:bb:58:7b:9d:8a:89:f6:fb:a2:9c:11:
fa:80:cf:6f:6b:9d:73:ce:b0:e4:1d:c2:8d:12:72:
69:40:a5:ce:7d:57:28:7f:26:3f:ef:6b:13:18:ce:
c9:12:cc:b2:29:30:6b:85:e8:14:11:a4:59:ae:14:
7e:7e:00:1a:0e:2f:05:33:24:9a:89:c8:bb:d2:db:
85:0a:58:14:06:73:fc:1e:e9:58:3f:89:64:0c:40:
9b:a1:15:9e:06:5b:c9:20:7d:d2:58:bb:c6:38:c6:
03:93:1b:3b:a2:a0:74:c0:13:0d:79:fc:3e:2e:96:
11:60:d5:61:3b:27:59:20:32:4c:30:1f:a0:64:5b:
5f:44:cb:ac:01:6e:b7:56:12:ec:3f:e4:82:1c:e1:
3d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F0:3E:2F:25:7B:63:8D:BE:BB:77:28:BE:CC:90:70:4C:A2:2A:04
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3233372e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.152.237.0/24
Signature Algorithm: sha256WithRSAEncryption
61:23:5e:6f:7d:74:f6:b3:cf:84:ef:4a:5c:75:04:2a:7e:d4:
70:41:95:c2:94:c6:d2:5e:73:e2:24:6b:67:00:04:34:37:6c:
60:6d:ed:75:9a:ab:e5:3a:86:65:67:84:1e:65:75:74:68:4a:
06:4b:88:d9:28:cd:a8:51:e2:03:fb:cd:c4:10:4e:55:0b:3e:
6c:be:1a:c0:76:47:49:4b:4e:f4:07:df:89:a8:3d:8e:2c:01:
ff:9f:34:af:ac:f3:46:d6:57:a0:13:91:90:2a:ef:f8:e7:b0:
b8:a2:7a:f3:e1:e9:9f:85:49:80:93:e3:2c:cb:65:f3:65:99:
fe:29:b6:a8:00:57:e0:29:b6:b7:5d:1f:ce:84:67:8b:05:74:
e3:25:26:dc:91:40:d8:43:ff:b4:b5:84:a3:60:d2:37:72:3e:
85:c6:8c:f4:29:c0:cb:9a:d8:cd:fd:13:b6:75:4b:1c:bf:b3:
f7:c4:6e:b7:fd:09:94:98:2a:52:e6:a9:d2:b6:68:27:26:4e:
57:68:e8:23:5b:f0:21:15:fb:06:39:b4:9b:41:3d:48:3d:b0:
f6:16:ce:28:bf:c8:1b:00:ad:94:4a:18:f6:63:48:ba:76:07:
fa:e9:34:80:71:86:c6:e8:cf:e2:f8:12:ad:04:92:b0:ce:4d:
9e:80:0b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net