Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131322e302f32342d3234203d3e203234323033.roa
File: 3230332e37382e3131322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: c7GAzOnBiPLpwyti1Y5tWc4Ml94CWI08eGzTZLTfOEs=
Subject key identifier: CB:92:A6:BB:0D:E2:D3:F3:B1:59:02:2A:48:94:DD:08:51:90:13:A4
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 5AB5A258B26E320AE982B41D0008C84A7388B2D6
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131322e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:00 +0000
ROA not before: Thu 07 Apr 2022 07:55:00 +0000
ROA not after: Thu 06 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 203.78.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:b5:a2:58:b2:6e:32:0a:e9:82:b4:1d:00:08:c8:4a:73:88:b2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:00 2022 GMT
Not After : Apr 6 08:00:00 2023 GMT
Subject: CN=CB92A6BB0DE2D3F3B159022A4894DD08519013A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:02:89:fd:3e:21:ad:2c:25:ac:5c:05:42:d9:
05:99:f7:bd:6b:d7:e3:df:bf:5c:93:5d:54:73:95:
d0:7f:54:f5:3c:e2:80:8a:86:11:6e:9b:83:db:c5:
7d:b7:da:c5:02:e7:43:a9:10:65:71:74:6c:e6:6b:
49:1d:b2:83:36:b0:25:fb:82:f1:50:52:cd:2a:40:
c3:78:42:8d:c4:98:fb:9d:56:0d:2f:8e:86:71:60:
a5:1d:b7:43:d7:39:48:5a:fa:1b:db:e9:5a:e0:8e:
86:21:cb:32:e8:b3:5b:88:15:d4:8d:2f:29:bb:87:
f3:5b:8c:2e:e8:0e:ab:4d:93:7a:cd:5a:f6:fb:f7:
f1:92:6d:89:2b:04:93:2c:4e:6f:77:c4:fb:cc:58:
27:ab:6c:26:35:19:8a:53:14:e0:87:bb:9f:40:d5:
1b:39:be:a9:e8:fe:a7:21:aa:13:f9:fc:a5:ff:a3:
02:55:79:b1:c8:cf:1c:c0:29:f5:8b:5c:c6:1b:57:
97:ca:b2:48:53:5f:8c:ff:8c:bd:28:18:62:e4:9d:
81:08:8b:85:de:e1:af:5c:7c:1b:70:79:52:3c:db:
8d:7d:c1:ca:66:6d:fb:43:99:f8:2c:66:f9:52:fe:
aa:dc:33:0a:9f:4b:7a:4f:42:4a:1c:de:f1:23:58:
e3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:92:A6:BB:0D:E2:D3:F3:B1:59:02:2A:48:94:DD:08:51:90:13:A4
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.78.112.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:3b:6c:dd:7e:e7:5a:4f:39:7f:50:41:1c:76:13:bf:c6:5e:
de:f9:3e:c8:af:c6:63:23:a4:fa:74:de:6e:31:7f:20:1e:04:
40:c3:3e:25:fe:65:de:f4:78:5d:fc:9c:69:80:72:c0:9e:e3:
d3:81:43:48:59:3f:69:92:5d:33:39:e0:df:d9:1c:63:1d:be:
4d:41:78:6a:fe:24:2f:f7:bb:00:a3:e1:f2:fb:56:52:7c:02:
84:60:fc:66:b9:aa:ac:cc:b5:df:bc:a6:d4:cf:2b:2e:ab:7e:
66:de:b2:10:c7:95:2d:cd:4a:f4:41:20:30:d7:49:74:28:ab:
17:45:3e:79:2a:0b:30:b6:91:1a:c2:4a:bf:11:b4:df:f5:2d:
e1:d6:a2:aa:bb:ac:2a:95:29:4d:72:f4:94:46:b9:aa:0f:f7:
c6:f3:a9:6e:6f:47:ac:23:ba:a2:34:8d:64:07:ae:98:7c:6d:
1b:66:68:ff:4e:82:e2:39:69:4d:0b:5d:79:f5:32:c8:65:a3:
d7:a9:3b:07:28:4e:ed:5b:0f:86:2b:7f:86:d1:a0:12:0a:6e:
b7:7f:09:7d:59:cc:6e:89:23:cd:18:6c:00:2e:ce:23:82:e8:
61:25:5b:8a:ec:ec:30:4c:50:f1:f7:d5:02:9d:1e:d4:89:e1:
4e:22:82:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net