Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3234382e302f32342d3234203d3e203137383835.roa
File: 3230322e3135322e3234382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: yOCUaxBHxCIXDnGaWiL7woxymDKB7dCCQxirPpsqNTw=
Subject key identifier: B4:48:87:8C:A0:CC:6A:E4:61:27:23:7B:B6:9C:04:8A:90:20:C9:E2
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 71CD0C1158D0520285D514E19E212E516C01DF48
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3234382e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:01 +0000
ROA not before: Wed 20 Apr 2022 05:55:01 +0000
ROA not after: Wed 19 Apr 2023 06:00:01 +0000
asID: 17885
IP address blocks: 202.152.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:cd:0c:11:58:d0:52:02:85:d5:14:e1:9e:21:2e:51:6c:01:df:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 20 05:55:01 2022 GMT
Not After : Apr 19 06:00:01 2023 GMT
Subject: CN=B448878CA0CC6AE46127237BB69C048A9020C9E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ab:7d:19:6f:c9:3b:d5:31:43:17:9f:46:bf:
ad:47:65:76:8f:de:95:4a:d6:7c:26:88:eb:e2:57:
44:4f:d9:a9:17:28:fd:e6:19:ef:b9:e4:e1:ba:52:
10:ce:9f:b9:29:40:d2:59:d2:37:e4:a9:69:b2:af:
02:89:8e:27:57:0b:72:ab:c3:e1:b0:f3:ac:a9:86:
a3:2a:1f:68:7a:c3:67:87:49:f2:64:8b:cc:98:75:
40:f3:6f:47:c6:d7:21:22:2e:8f:54:86:5e:c7:df:
b7:76:34:cb:d8:98:df:cb:06:d0:ca:6d:9a:d3:41:
62:38:77:18:ea:64:07:54:6a:5d:ec:5e:35:d0:4e:
de:ca:a9:61:74:8e:59:2f:6b:be:f7:cf:8c:f1:8b:
08:12:83:2e:bb:2a:38:bb:7b:a8:90:cb:bb:ae:3f:
a3:38:37:26:db:a7:d3:3a:d6:9d:90:45:bd:0d:75:
29:db:3f:fb:d1:54:06:8d:5a:8b:84:34:a2:3c:df:
b6:13:f1:bf:69:dc:91:f1:62:ab:76:51:a4:3f:c6:
67:50:90:05:57:3f:20:0f:17:d0:95:95:a9:8b:2a:
a0:b2:91:3e:7e:3c:7b:2f:cd:8f:1a:13:0d:b3:cb:
db:0f:bb:dc:36:36:0e:8b:02:a7:a5:7e:bf:a7:4c:
b2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:48:87:8C:A0:CC:6A:E4:61:27:23:7B:B6:9C:04:8A:90:20:C9:E2
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230322e3135322e3234382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.152.248.0/24
Signature Algorithm: sha256WithRSAEncryption
41:7b:75:6d:27:f2:46:72:4a:1c:54:de:e4:8e:e5:30:cf:fa:
36:f3:fd:3d:9c:0a:67:3d:06:c1:68:de:ef:78:f7:ca:07:79:
2d:8e:e3:bc:5e:7c:a7:93:e8:32:80:93:f6:89:75:e1:dc:27:
11:b5:62:66:ae:a0:81:5e:ea:53:89:60:ad:c5:42:be:fa:a6:
f0:c2:b1:ca:c5:f4:7d:ef:bb:a1:16:1b:27:48:66:7c:81:ec:
11:5a:5e:42:05:27:11:38:6e:11:0c:93:de:e9:3b:3a:29:c7:
eb:63:6b:fb:34:35:d7:d3:6d:72:ee:da:6a:26:d4:9e:85:c3:
fd:97:5b:58:aa:5b:6f:5c:04:8d:4e:f2:56:e6:7c:c4:86:c5:
9d:c4:19:e8:47:50:bd:55:3d:c7:51:01:06:bf:95:11:eb:69:
e6:83:a4:1f:3d:fa:8e:39:5b:04:cb:a3:39:c5:df:fe:15:85:
33:04:c0:a3:99:a5:6d:f6:64:64:55:f2:ff:b2:86:b0:5b:ba:
9b:32:ad:a5:05:23:ca:7c:94:5d:fe:cc:85:47:dc:b9:19:5a:
db:42:00:2c:5e:0e:8b:06:c5:8d:0d:a9:72:49:20:2c:4f:fe:
39:06:34:90:4a:a6:1b:ff:94:a0:21:76:4e:1b:50:2d:b7:28:
25:d6:9d:6a
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUcc0MEVjQUgKF1RThniEuUWwB30gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MjAwNTU1MDFaFw0yMzA0MTkwNjAwMDFaMDMxMTAvBgNV
BAMTKEI0NDg4NzhDQTBDQzZBRTQ2MTI3MjM3QkI2OUMwNDhBOTAyMEM5RTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRq30Zb8k71TFDF59Gv61HZXaP
3pVK1nwmiOviV0RP2akXKP3mGe+55OG6UhDOn7kpQNJZ0jfkqWmyrwKJjidXC3Kr
w+Gw86yphqMqH2h6w2eHSfJki8yYdUDzb0fG1yEiLo9Uhl7H37d2NMvYmN/LBtDK
bZrTQWI4dxjqZAdUal3sXjXQTt7KqWF0jlkva773z4zxiwgSgy67Kji7e6iQy7uu
P6M4Nybbp9M61p2QRb0NdSnbP/vRVAaNWouENKI837YT8b9p3JHxYqt2UaQ/xmdQ
kAVXPyAPF9CVlamLKqCykT5+PHsvzY8aEw2zy9sPu9w2Ng6LAqelfr+nTLKdAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUtEiHjKDMauRhJyN7tpwEipAgyeIwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMyMzAzMjJlMzEzNTMyMmUzMjM0MzgyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypj4MA0GCSqG
SIb3DQEBCwUAA4IBAQBBe3VtJ/JGckocVN7kjuUwz/o28/09nApnPQbBaN7vePfK
B3ktjuO8Xnynk+gygJP2iXXh3CcRtWJmrqCBXupTiWCtxUK++qbwwrHKxfR977uh
FhsnSGZ8gewRWl5CBScROG4RDJPe6Ts6KcfrY2v7NDXX021y7tpqJtSehcP9l1tY
qltvXASNTvJW5nzEhsWdxBnoR1C9VT3HUQEGv5UR62nmg6QfPfqOOVsEy6M5xd/+
FYUzBMCjmaVt9mRkVfL/soawW7qbMq2lBSPKfJRd/syFR9y5GVrbQgAsXg6LBsWN
DalySSAsT/45BjSQSqYb/5SgIXZOG1Attygl1p1q
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net