Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3132312e302f32342d3234203d3e203234323033.roa
File: 3230332e37382e3132312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: LNnMEjewQxS9b167/2hr+HTT8nw4BFuIZ7ayMFO2iNo=
Subject key identifier: 6D:97:AD:A1:99:94:1A:11:07:96:F7:32:82:44:95:68:76:81:B1:D9
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 7EDAF56DB4BC846D65AD46C34EC6D70C19D2E1C7
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3132312e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:00 +0000
ROA not before: Thu 07 Apr 2022 07:55:00 +0000
ROA not after: Thu 06 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 203.78.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:da:f5:6d:b4:bc:84:6d:65:ad:46:c3:4e:c6:d7:0c:19:d2:e1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:00 2022 GMT
Not After : Apr 6 08:00:00 2023 GMT
Subject: CN=6D97ADA199941A110796F732824495687681B1D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:21:f0:1e:84:7e:17:1f:70:23:e3:3b:dc:47:
38:0f:8a:7b:23:ed:43:f5:ef:92:b5:e3:4a:15:ee:
f8:29:44:99:6a:57:dd:81:f9:06:84:22:36:b7:3f:
4c:67:48:c2:92:87:f8:13:fe:13:be:6a:e9:97:33:
71:74:c1:1f:7d:1c:9b:84:b3:74:5d:bf:9b:ff:08:
64:d7:1b:c5:b8:c9:e8:43:a3:15:d6:d2:07:46:7d:
3c:e3:11:b6:c5:84:da:23:00:d8:70:91:96:60:14:
78:70:47:93:69:9f:70:a2:b8:52:e6:62:60:b0:f9:
f2:16:38:01:2f:ac:ca:85:69:cd:96:9d:61:71:9b:
95:9f:37:7f:c5:b1:c6:b1:c4:6e:78:89:bf:48:a4:
5d:a6:82:fd:f4:86:75:35:a2:f3:0c:6d:6a:a8:33:
55:71:73:8a:0d:47:c3:c8:ca:d3:3b:8f:f2:67:1c:
18:22:2a:5c:6f:63:59:4f:f9:fb:bb:2b:00:6d:a9:
78:87:09:fb:36:0e:8c:30:eb:5c:51:fe:eb:41:45:
93:21:23:d5:e8:67:44:71:45:d7:b3:20:ac:44:b2:
86:1b:e5:99:82:08:f6:3e:78:6c:9b:a6:bb:f0:84:
32:f1:86:d2:98:ee:95:56:f0:54:bb:ad:b4:00:cf:
c6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:97:AD:A1:99:94:1A:11:07:96:F7:32:82:44:95:68:76:81:B1:D9
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3230332e37382e3132312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.78.121.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a4:79:3d:14:29:5f:3d:7a:f8:2a:99:dd:23:74:91:85:18:
ee:2d:92:78:a5:00:64:11:62:1b:6d:0c:17:74:8e:08:82:7d:
2a:8a:c8:37:bc:ae:fb:b7:bf:1e:de:2f:3e:ab:e0:83:79:5a:
87:17:2d:b7:94:c8:53:8f:fa:37:cc:53:ef:3e:66:3d:91:2e:
94:63:d4:7c:e8:b8:d0:6c:89:0a:1c:a7:c5:3f:74:7a:b4:40:
8c:65:f0:97:1f:93:f7:66:43:59:0c:5a:2d:73:11:57:e8:58:
c9:de:9a:57:31:fd:fb:eb:73:83:83:aa:5d:aa:08:5a:33:eb:
79:00:1b:95:10:da:b8:2f:38:8c:cd:3d:0b:52:d0:a3:03:7d:
b8:86:d2:40:89:72:15:07:29:a3:fb:7c:f0:bc:49:af:f4:25:
13:ae:d4:7f:7e:25:56:fe:62:34:db:aa:42:b2:da:63:37:f1:
75:39:e0:ef:79:6c:7b:6e:60:36:55:00:82:d1:20:f6:9e:b6:
94:5a:4f:41:f8:82:0b:90:8f:1e:d5:e6:f0:b6:e7:07:37:3a:
a5:88:8f:2c:e2:d5:3a:60:e3:76:8d:09:4f:07:87:ec:85:d4:
7c:3a:41:72:7e:aa:e1:4e:9b:00:b0:71:77:d0:2e:91:ec:e3:
4c:c7:96:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:18 2023 by rpki-client on console.sobornost.net