Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3234342e302f32342d3234203d3e203137383835.roa
File: 3230322e3135322e3234342e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: hHs9LLb9rw5eE7Wr+ITgt+T5FFDVdQxUCJVOH0LsWs8=
Subject key identifier: 8F:34:49:68:B1:D3:44:42:BF:86:5D:E5:6E:BF:EE:A1:22:0F:C1:F0
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 6BAE46A89F69FDF07F13025B53FB0B860C070449
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3234342e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:01 +0000
ROA not before: Wed 20 Apr 2022 05:55:01 +0000
ROA not after: Wed 19 Apr 2023 06:00:01 +0000
asID: 17885
IP address blocks: 202.152.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:ae:46:a8:9f:69:fd:f0:7f:13:02:5b:53:fb:0b:86:0c:07:04:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 20 05:55:01 2022 GMT
Not After : Apr 19 06:00:01 2023 GMT
Subject: CN=8F344968B1D34442BF865DE56EBFEEA1220FC1F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2c:33:79:99:1d:10:69:bf:7f:d8:1d:44:7d:
70:45:13:17:e4:d3:6a:9f:30:e0:cc:7c:a8:12:4e:
86:5f:67:0b:36:79:f7:97:ce:37:6f:0d:25:7e:d7:
fe:ab:db:15:b8:5d:73:dd:64:84:19:55:c2:53:97:
73:6d:16:5d:a8:43:95:95:fc:31:f7:71:35:51:49:
09:75:ca:00:63:0d:d2:74:fb:70:56:b7:4b:ef:27:
94:9d:11:53:7a:23:f7:68:31:f9:47:0b:a6:cd:67:
02:42:19:7f:0e:36:81:b6:2e:6d:2e:17:7f:d1:21:
df:80:59:63:d8:63:ba:8e:3b:f0:56:00:af:3b:55:
0a:df:ae:ba:80:34:a1:f4:b5:53:b3:a9:96:5e:c4:
85:a0:f2:63:66:b0:14:4c:80:41:80:c7:b7:d9:89:
60:f9:ea:f9:22:ea:ef:c0:db:33:ca:94:76:78:b9:
a0:f0:7c:df:06:ef:41:75:7e:c2:ca:1c:9f:44:30:
c2:c6:94:fa:70:13:8d:32:c7:db:a0:c6:13:e4:97:
0e:cc:80:67:99:56:b7:39:c4:6d:c0:b9:87:69:28:
d6:11:06:b7:2e:4d:04:6a:9c:03:98:fb:bf:f4:a4:
2a:45:d6:56:2c:c2:1b:af:fa:5b:e7:98:ff:68:04:
da:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:34:49:68:B1:D3:44:42:BF:86:5D:E5:6E:BF:EE:A1:22:0F:C1:F0
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3234342e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.152.244.0/24
Signature Algorithm: sha256WithRSAEncryption
20:06:39:48:63:c6:e0:29:e7:f0:0c:1d:72:98:22:d5:fd:f0:
92:72:6c:95:2b:d1:ec:00:d0:28:4b:69:c5:05:53:ee:58:e6:
e2:12:62:ba:88:c4:4f:36:8d:33:5a:27:96:08:bb:90:64:6a:
a5:5c:82:74:62:93:30:1d:29:c9:e4:ea:c2:a7:93:eb:ab:4d:
b1:38:fd:29:2a:58:a2:dc:11:bd:56:4f:8e:5e:10:30:a2:a3:
a9:dc:2d:a8:83:8a:cd:1c:02:7c:f5:a9:0e:16:38:e3:61:92:
c8:39:36:b5:2c:7c:09:71:bb:53:98:1f:82:c7:a3:05:47:d0:
fd:ce:42:d6:dc:1c:7b:a3:31:f5:1b:52:31:83:d3:30:df:8b:
c0:4f:de:0b:22:46:c9:6e:bd:b2:5a:29:79:a5:47:73:71:18:
d1:c4:00:b8:26:89:f9:47:08:87:14:6a:b6:3a:a6:c7:b9:4f:
37:08:c7:c5:2f:b7:7f:ad:b1:fd:5a:05:6d:6b:e2:79:4d:81:
90:04:29:13:11:9b:2c:84:d8:2b:14:22:f1:97:4c:ec:41:24:
fd:c9:d7:72:fe:ca:4c:6d:eb:ee:c4:64:3f:9a:cd:67:00:cf:
8d:13:8f:a4:7b:0b:d7:d7:ed:37:7d:fc:5c:dd:ca:f2:b9:6d:
d3:78:31:d8
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUa65GqJ9p/fB/EwJbU/sLhgwHBEkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MjAwNTU1MDFaFw0yMzA0MTkwNjAwMDFaMDMxMTAvBgNV
BAMTKDhGMzQ0OTY4QjFEMzQ0NDJCRjg2NURFNTZFQkZFRUExMjIwRkMxRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOLDN5mR0Qab9/2B1EfXBFExfk
02qfMODMfKgSToZfZws2efeXzjdvDSV+1/6r2xW4XXPdZIQZVcJTl3NtFl2oQ5WV
/DH3cTVRSQl1ygBjDdJ0+3BWt0vvJ5SdEVN6I/doMflHC6bNZwJCGX8ONoG2Lm0u
F3/RId+AWWPYY7qOO/BWAK87VQrfrrqANKH0tVOzqZZexIWg8mNmsBRMgEGAx7fZ
iWD56vki6u/A2zPKlHZ4uaDwfN8G70F1fsLKHJ9EMMLGlPpwE40yx9ugxhPklw7M
gGeZVrc5xG3AuYdpKNYRBrcuTQRqnAOY+7/0pCpF1lYswhuv+lvnmP9oBNr7AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUjzRJaLHTREK/hl3lbr/uoSIPwfAwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMyMzAzMjJlMzEzNTMyMmUzMjM0MzQyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypj0MA0GCSqG
SIb3DQEBCwUAA4IBAQAgBjlIY8bgKefwDB1ymCLV/fCScmyVK9HsANAoS2nFBVPu
WObiEmK6iMRPNo0zWieWCLuQZGqlXIJ0YpMwHSnJ5OrCp5Prq02xOP0pKlii3BG9
Vk+OXhAwoqOp3C2og4rNHAJ89akOFjjjYZLIOTa1LHwJcbtTmB+Cx6MFR9D9zkLW
3Bx7ozH1G1Ixg9Mw34vAT94LIkbJbr2yWil5pUdzcRjRxAC4Jon5RwiHFGq2OqbH
uU83CMfFL7d/rbH9WgVta+J5TYGQBCkTEZsshNgrFCLxl0zsQST9yddy/spMbevu
xGQ/ms1nAM+NE4+kewvX1+03ffxc3cryuW3TeDHY
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net