Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131342e302f32342d3234203d3e203234323033.roa
File: 3230332e37382e3131342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: eLfQNGAPaxW5wfMjxeQO8ckK14SL9Wx1V7rt6l21n24=
Subject key identifier: FB:F8:93:1C:CD:3D:98:E4:35:EB:5C:A6:EB:2F:C9:E4:43:AF:64:70
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 62C58F400656956ADF934A828E37CABBCB0BB2AD
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131342e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:00 +0000
ROA not before: Thu 07 Apr 2022 07:55:00 +0000
ROA not after: Thu 06 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 203.78.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:c5:8f:40:06:56:95:6a:df:93:4a:82:8e:37:ca:bb:cb:0b:b2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:00 2022 GMT
Not After : Apr 6 08:00:00 2023 GMT
Subject: CN=FBF8931CCD3D98E435EB5CA6EB2FC9E443AF6470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9f:c6:46:26:fd:08:86:49:d8:ff:e7:85:10:
91:81:04:a2:74:5a:3a:41:9f:ed:36:cc:3e:7f:3a:
d3:bb:61:30:de:e3:44:6a:53:2e:3e:40:96:94:44:
f8:c4:49:90:56:0b:0e:32:ff:76:18:47:55:eb:8c:
c7:e5:bb:39:be:4f:da:1c:34:0f:f3:23:85:0d:00:
9c:48:bd:af:c7:28:25:6f:2b:86:07:55:67:ff:06:
7e:30:85:9d:0f:9e:40:9a:c6:9a:dd:1f:d3:c6:5a:
71:1a:d1:01:1e:82:f2:60:9c:88:ea:8e:51:8a:f4:
41:c1:13:48:6f:c0:2e:4d:eb:c1:45:a2:b4:2c:03:
e7:c9:d4:1c:38:2b:20:00:5d:da:16:bd:dc:cd:79:
b0:0e:77:5e:7b:9a:95:2a:71:84:eb:a1:d9:ff:dc:
3b:01:a0:fb:f5:44:f5:d8:20:f1:1f:79:35:81:37:
b4:f8:ae:99:23:3e:1b:a2:6e:48:b7:81:ef:20:bd:
85:91:7b:37:f2:b9:b7:8e:93:19:b3:73:39:9a:79:
b1:dc:df:00:f0:cc:3d:7b:a6:22:2d:25:86:82:ce:
66:bf:d8:5d:36:f6:00:09:26:6e:cc:33:85:34:05:
b4:1e:8a:87:a4:41:96:5c:4c:a1:12:38:e7:0d:79:
e7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F8:93:1C:CD:3D:98:E4:35:EB:5C:A6:EB:2F:C9:E4:43:AF:64:70
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.78.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:32:bf:30:17:ce:fd:78:3d:2e:4b:4c:6c:42:93:68:d9:31:
de:38:98:9c:57:38:ea:ff:ab:11:e0:50:21:f4:fd:0c:b6:51:
16:21:0a:f5:0d:18:9b:38:de:00:93:95:4e:05:e2:2e:be:62:
6b:9d:ef:99:e3:22:28:f9:70:6a:5d:ec:5a:62:c9:9b:6d:84:
ee:62:c8:eb:e9:e9:99:74:8f:3c:c9:37:eb:92:52:ba:08:fd:
2d:fe:e9:63:1d:08:e3:11:c0:6f:aa:2b:06:fb:3e:ca:43:b5:
ce:d5:2b:a7:c1:d6:ae:0e:10:58:48:23:b8:cd:94:9a:e4:5c:
9f:10:36:85:42:ef:91:94:68:5c:b9:f4:30:e2:c4:2f:1e:a6:
2a:3c:f1:21:59:95:cf:cb:90:ab:e8:b1:99:15:72:36:44:83:
2d:ee:84:d5:e3:e2:92:05:6d:06:db:0c:ee:49:7e:84:ee:b8:
e7:f2:51:0f:73:0b:66:8d:cc:3a:25:93:6a:0b:3c:58:ce:dc:
ef:c2:8b:36:c5:7b:de:03:6c:eb:f3:53:3a:17:9e:7d:1d:77:
d1:9b:2c:45:af:7b:5f:8c:af:9b:81:57:65:f8:a4:f8:bd:b1:
8b:d1:c3:56:c4:3c:0e:c4:72:b3:f3:44:ac:bb:3e:d4:d5:68:
87:bc:8b:59
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUYsWPQAZWlWrfk0qCjjfKu8sLsq0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcwNzU1MDBaFw0yMzA0MDYwODAwMDBaMDMxMTAvBgNV
BAMTKEZCRjg5MzFDQ0QzRDk4RTQzNUVCNUNBNkVCMkZDOUU0NDNBRjY0NzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJn8ZGJv0IhknY/+eFEJGBBKJ0
WjpBn+02zD5/OtO7YTDe40RqUy4+QJaURPjESZBWCw4y/3YYR1XrjMfluzm+T9oc
NA/zI4UNAJxIva/HKCVvK4YHVWf/Bn4whZ0PnkCaxprdH9PGWnEa0QEegvJgnIjq
jlGK9EHBE0hvwC5N68FForQsA+fJ1Bw4KyAAXdoWvdzNebAOd157mpUqcYTrodn/
3DsBoPv1RPXYIPEfeTWBN7T4rpkjPhuibki3ge8gvYWRezfyubeOkxmzczmaebHc
3wDwzD17piItJYaCzma/2F029gAJJm7MM4U0BbQeioekQZZcTKESOOcNeecdAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU+/iTHM09mOQ161ym6y/J5EOvZHAwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMyMzAzMzJlMzczODJlMzEzMTM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtOcjANBgkqhkiG
9w0BAQsFAAOCAQEAHzK/MBfO/Xg9LktMbEKTaNkx3jiYnFc46v+rEeBQIfT9DLZR
FiEK9Q0YmzjeAJOVTgXiLr5ia53vmeMiKPlwal3sWmLJm22E7mLI6+npmXSPPMk3
65JSugj9Lf7pYx0I4xHAb6orBvs+ykO1ztUrp8HWrg4QWEgjuM2UmuRcnxA2hULv
kZRoXLn0MOLELx6mKjzxIVmVz8uQq+ixmRVyNkSDLe6E1ePikgVtBtsM7kl+hO64
5/JRD3MLZo3MOiWTags8WM7c78KLNsV73gNs6/NTOheefR130ZssRa97X4yvm4FX
Zfik+L2xi9HDVsQ8DsRys/NErLs+1NVoh7yLWQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net