Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131392e302f32342d3234203d3e203234323033.roa
File: 3230332e37382e3131392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: l5H0eo1a9eOhO/+Yy0BhHWVQ1TOd4PtQcyAqkK5Aia8=
Subject key identifier: A8:B4:4A:82:A1:02:3B:78:92:63:37:2A:C9:13:47:9F:2D:A6:20:68
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 0DE1749AB016E5B674C91AD73257F86D0F666A84
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131392e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:02 +0000
ROA not before: Thu 07 Apr 2022 07:55:02 +0000
ROA not after: Thu 06 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 203.78.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:e1:74:9a:b0:16:e5:b6:74:c9:1a:d7:32:57:f8:6d:0f:66:6a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:02 2022 GMT
Not After : Apr 6 08:00:02 2023 GMT
Subject: CN=A8B44A82A1023B789263372AC913479F2DA62068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:24:d3:06:54:a1:dc:e0:a1:bf:0e:c0:a2:
48:db:7c:fc:e2:11:58:8f:4e:0a:fe:64:58:82:3c:
fd:1b:cd:6e:9c:f7:d1:a7:69:0d:a7:62:18:4f:32:
80:a5:0e:fc:61:be:03:97:98:ef:c2:b2:3d:d2:cd:
36:69:15:90:7c:fe:c7:24:73:5c:41:7b:24:92:2f:
34:61:fb:c4:65:c8:8c:a6:97:3d:e0:7b:f9:18:b6:
6a:b9:af:88:2b:bb:b2:ac:41:82:ee:db:af:5f:85:
23:49:a6:07:91:fa:28:02:1d:67:ec:81:1e:9d:6a:
14:23:ac:2c:23:4d:e9:3a:fc:f9:82:d7:fa:a6:0e:
93:f1:1a:88:b4:cb:a5:53:8a:c6:ea:87:10:d3:6d:
70:84:f7:7b:b3:4e:8d:4a:0c:66:7d:19:e9:67:19:
53:0d:da:97:8e:4a:65:ea:e9:7c:58:60:b4:48:55:
49:8d:1d:44:b6:0b:39:c3:cc:ea:5b:a4:da:bc:cc:
cc:5e:63:b4:ba:ff:a5:aa:be:7f:a8:1a:c5:70:9f:
4a:6d:54:97:7d:8e:f0:ec:f0:44:e8:ff:e2:53:fb:
c1:b7:e7:27:ef:3e:49:0c:c2:b7:38:9f:ec:b2:0c:
3b:bf:f2:81:b0:de:b2:fb:ce:a3:a2:67:9c:8f:8d:
6e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B4:4A:82:A1:02:3B:78:92:63:37:2A:C9:13:47:9F:2D:A6:20:68
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3131392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.78.119.0/24
Signature Algorithm: sha256WithRSAEncryption
44:76:59:47:be:de:d9:f4:f0:b2:a3:8d:a7:ab:ad:6d:46:d6:
3b:c5:64:62:29:6f:cb:da:04:53:61:6e:c3:56:07:4c:c9:7b:
60:50:3a:e1:fb:c3:c2:61:10:10:e8:a6:b3:b6:c7:13:d3:27:
55:95:97:09:19:2d:db:57:5f:12:bf:21:16:43:32:79:a8:ef:
2d:22:7f:87:af:22:b8:b2:5d:4b:d5:47:43:69:65:90:90:1f:
06:99:bf:66:5e:ce:13:4e:f1:d4:bf:e5:98:99:0d:56:43:0e:
48:59:9d:db:4c:60:af:83:54:2e:05:48:4e:91:0b:5b:42:59:
8e:88:81:29:c5:50:72:23:30:93:e5:e0:5c:85:9f:e2:d6:20:
43:f2:83:00:d7:86:74:7c:cb:7e:b3:ea:fa:82:6d:0f:2f:99:
01:1a:40:d9:a1:43:93:db:52:04:7e:bc:5e:c5:50:94:68:5e:
0b:d3:fc:26:8e:ef:09:3c:7b:89:be:a9:70:59:96:a7:2d:30:
04:69:4e:33:82:67:bb:c9:a4:ac:ff:8a:74:43:59:20:7b:ac:
74:b2:67:74:0d:ee:a2:3f:ef:e5:9c:9a:ea:85:f9:b6:2c:5b:
aa:21:45:10:eb:b5:0e:b5:67:0b:d6:7a:ca:1d:9a:a4:e3:66:
99:ae:c4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net