Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134392e302f32342d3234203d3e203234323033.roa
File: 3131322e3231352e3134392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: JyDBsj13v3YS50gdI26DZyaFw4L2CrNV470A6KQ2OmU=
Subject key identifier: D1:F0:C9:F1:23:42:19:7C:EE:F6:B4:62:67:06:B2:0F:7B:C2:2A:A1
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 2D47B2233D0385A4BCB4A446D58B8B607F73059A
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134392e302f32342d3234203d3e203234323033.roa
Signing time: Thu 07 Apr 2022 08:00:02 +0000
ROA not before: Thu 07 Apr 2022 07:55:02 +0000
ROA not after: Thu 06 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 112.215.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:47:b2:23:3d:03:85:a4:bc:b4:a4:46:d5:8b:8b:60:7f:73:05:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 07:55:02 2022 GMT
Not After : Apr 6 08:00:02 2023 GMT
Subject: CN=D1F0C9F12342197CEEF6B4626706B20F7BC22AA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e5:60:44:8d:95:f7:dc:d7:21:40:59:68:01:
ec:0b:74:18:60:2d:2c:5c:57:2e:e9:92:84:ee:0e:
ad:8b:92:30:03:63:1b:67:5a:a9:56:62:6d:ff:9c:
32:bc:72:0f:e5:3e:c8:b9:dd:68:b3:28:a3:85:8e:
4d:56:52:5c:b8:3a:11:72:fa:bd:53:c5:76:97:4a:
0f:10:70:76:07:65:20:04:9d:c3:ed:c1:95:0c:08:
93:89:53:47:62:07:51:2e:60:00:1f:cc:ee:0c:f1:
ce:48:57:1b:5b:e6:30:a1:5c:80:e6:68:4b:da:c9:
a2:b4:37:da:2f:a8:a8:7c:22:e1:e6:a9:9c:e4:b0:
1e:54:4f:b0:c3:73:b4:43:de:8a:9c:c8:25:90:12:
4a:e4:5d:0f:5a:09:94:d6:ae:c8:bc:2c:8a:fa:6a:
f0:05:09:d6:d5:bb:bd:77:23:bb:4b:9d:af:c5:df:
ca:1c:35:15:6d:06:7b:88:71:5d:ed:21:90:b4:7e:
bb:82:c0:42:f9:ed:52:7b:05:4a:cb:5d:a5:1e:05:
aa:dd:94:6f:fc:9c:49:64:fd:55:1d:72:cb:02:e8:
d3:2c:05:0c:f4:c7:ff:18:24:19:fa:5b:89:b2:4f:
19:ec:5c:ba:32:c0:e0:02:97:77:be:00:ef:88:f3:
99:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F0:C9:F1:23:42:19:7C:EE:F6:B4:62:67:06:B2:0F:7B:C2:2A:A1
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3134392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.149.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:fa:9d:4f:b0:c3:ff:af:17:2d:bb:eb:0b:11:be:37:55:2d:
dd:e6:67:3a:39:22:29:9b:44:f1:43:44:9d:95:61:19:84:b1:
aa:ac:af:f6:11:87:13:5c:84:24:b4:4b:19:76:e9:a9:19:9b:
8d:65:23:59:54:21:65:f7:69:f5:97:76:08:8e:29:9b:a1:89:
09:51:ee:7d:1e:a2:fc:b8:17:9d:dc:1a:19:70:9c:ee:93:61:
a5:b9:4d:6e:62:c0:6e:62:8a:bf:92:1e:40:82:b1:9a:21:d6:
6d:32:62:d7:7d:57:47:99:ee:d9:0a:18:3f:c6:00:83:55:90:
62:4f:1e:02:15:15:78:f1:d6:29:2a:c9:9b:14:ab:0d:5a:bd:
94:1a:96:65:39:81:1f:99:e1:3b:ca:bb:25:86:31:4f:5b:54:
93:63:a3:76:d3:ba:88:97:26:e9:10:76:dd:82:01:07:04:ee:
aa:0a:bc:d7:cd:c1:e8:11:98:59:97:d6:57:48:4f:0d:3e:1c:
2e:bf:27:61:45:3b:6f:af:58:47:34:37:4c:a5:b4:d8:8b:36:
62:7a:d9:cc:d8:d5:6c:3e:ca:44:a1:a3:7f:e7:9a:a8:8c:97:
15:b4:36:bb:5b:b0:9a:a2:fa:7d:40:20:87:ce:f5:06:08:81:
9a:81:64:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:33:08 2025 by rpki-client