Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131362e302f32342d3234203d3e203234323033.roa
File: 3230332e37382e3131362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: imVGPPzDVeGJoz1eoXoWLS+j3/1pKpXqYnhP0a8fUEM=
Subject key identifier: 99:9B:BB:EC:A3:92:5D:58:AA:95:AF:3A:38:DC:3E:BB:E8:60:8F:B2
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 3BA1C167289F78F7DDE0F24F75A61DBFD24519F1
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131362e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:00 +0000
ROA not before: Thu 07 Apr 2022 07:55:00 +0000
ROA not after: Thu 06 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 203.78.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:a1:c1:67:28:9f:78:f7:dd:e0:f2:4f:75:a6:1d:bf:d2:45:19:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:00 2022 GMT
Not After : Apr 6 08:00:00 2023 GMT
Subject: CN=999BBBECA3925D58AA95AF3A38DC3EBBE8608FB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0a:9f:a1:35:11:99:6e:3d:22:91:f5:52:e0:
89:fd:82:a4:44:b8:a9:b8:4a:42:df:b6:d1:4d:a5:
d4:11:1a:22:39:d3:f6:3d:12:86:24:e4:79:f2:c8:
eb:e5:1b:50:58:f4:44:20:2d:2b:96:7a:f6:f9:fe:
1b:e2:53:0c:d4:5e:6c:41:28:6d:2b:d3:51:a7:85:
f5:91:fc:db:72:51:b2:72:2a:4a:ec:16:53:f9:50:
17:a1:ef:25:9d:aa:4a:70:a6:76:55:72:1e:b5:b6:
ad:5e:d3:aa:52:11:02:71:0e:25:66:af:37:fb:13:
99:28:fa:8c:41:3d:1c:86:a4:8a:f5:9f:b3:a0:34:
83:7c:cb:21:c5:db:c2:1e:9d:9b:81:d0:6f:84:10:
ea:fb:8e:0a:bb:fc:6e:cd:5b:f3:b5:ab:bd:f8:6a:
19:09:62:b0:f6:99:50:02:9c:f1:ac:cf:93:0e:96:
57:f4:07:b5:f0:d0:0f:6d:d6:63:5b:a2:e0:d7:3a:
98:0e:db:83:81:0d:09:b4:cd:f5:fc:3d:ea:8d:18:
ed:57:38:77:d8:5b:01:91:91:2b:7a:57:f8:e1:ac:
05:44:81:9e:4d:8b:4f:c2:6f:d2:dd:6d:3b:63:4a:
61:82:0e:04:b0:bd:b6:18:f3:c0:0d:2e:da:5b:01:
eb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9B:BB:EC:A3:92:5D:58:AA:95:AF:3A:38:DC:3E:BB:E8:60:8F:B2
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.78.116.0/24
Signature Algorithm: sha256WithRSAEncryption
15:5a:72:41:f0:fe:7b:f3:33:8b:91:6c:53:9c:3d:db:96:ff:
36:0c:ba:43:6c:22:da:01:4a:52:cf:52:cf:77:5f:45:fb:e1:
1f:fe:c9:7c:6f:5d:da:74:b8:3d:6f:f9:b1:f3:4c:88:87:fd:
c0:26:a9:47:e4:34:22:ee:a2:35:58:69:a3:89:7c:4e:07:71:
08:22:d5:9f:5d:0e:99:b5:af:e4:e6:2b:48:e6:bf:c7:a6:e9:
b9:9f:75:8a:89:58:3e:fb:8d:f1:f9:d5:08:bf:aa:4c:a7:e6:
9d:a8:2b:6a:60:f1:2d:0a:a6:b0:5e:8f:c0:30:a2:b1:67:a2:
00:fd:aa:bc:8f:5d:38:ac:e5:96:f6:ad:e0:69:e9:9a:24:89:
5e:08:e7:20:26:73:09:11:3a:13:b4:de:4f:d9:40:9c:03:c6:
2c:82:a7:ca:2f:41:5e:f2:ea:eb:12:64:68:34:41:87:0c:6d:
89:6e:d4:00:6e:27:d9:25:4e:fb:4f:bc:01:4a:58:09:e8:91:
c8:92:2b:f5:10:16:a6:98:8f:27:c2:16:00:4a:fe:43:1e:21:
7a:8b:b3:28:dc:e8:97:51:56:4f:37:76:fe:b8:cf:98:95:4a:
96:1e:17:68:a6:e0:20:d9:ec:aa:d5:22:53:f1:3c:77:e3:28:
bc:56:a2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net