Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139372e302f32342d3234203d3e203137383835.roa
File: 3131322e3231352e3139372e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: wLH6bIvTm6IB74l9zS9gkLoJdrpRTNmJx83vyQW5sf0=
Subject key identifier: 06:A7:AA:F1:1C:9D:76:25:09:FD:95:2E:B2:C5:6C:38:90:BF:F5:29
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 11136634260381C81C3FA0B11AACCF3070917C9F
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139372e302f32342d3234203d3e203137383835.roa
Signing time: Thu 07 Apr 2022 17:00:02 +0000
ROA not before: Thu 07 Apr 2022 16:55:02 +0000
ROA not after: Thu 06 Apr 2023 17:00:02 +0000
asID: 17885
IP address blocks: 112.215.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:13:66:34:26:03:81:c8:1c:3f:a0:b1:1a:ac:cf:30:70:91:7c:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 7 16:55:02 2022 GMT
Not After : Apr 6 17:00:02 2023 GMT
Subject: CN=06A7AAF11C9D762509FD952EB2C56C3890BFF529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:12:c4:75:e3:d5:b7:3e:6f:69:da:c3:2b:49:
66:1b:c3:a2:ca:18:da:01:44:e4:1c:ae:ae:40:4d:
30:97:54:ad:d4:4b:fc:05:9e:13:ab:28:dd:b6:3b:
f0:39:5c:1f:4c:69:be:35:6a:90:ef:3a:f3:c7:05:
9b:7b:bf:0b:72:14:d1:b2:a8:a7:26:b5:19:c7:11:
13:a2:da:1c:26:f5:ec:ff:c6:cf:02:26:47:13:45:
c0:b0:81:85:13:42:49:f6:ee:38:4e:1d:9d:4c:5a:
f8:69:26:23:5d:4a:7c:da:81:0a:e9:4a:5a:00:96:
7e:0c:2e:95:18:69:98:13:d5:2a:d8:00:15:b5:b7:
83:8f:e7:62:1e:1a:f3:f6:7c:f2:c4:a9:7c:f7:61:
ec:1e:c6:a2:69:7c:88:2c:5c:d3:b0:55:e2:18:c9:
a4:ba:fc:be:2a:49:2b:4a:2d:1c:39:15:b8:3d:25:
a0:1d:cd:32:31:45:92:bf:c4:50:66:68:77:0a:70:
5a:90:5d:65:6d:a9:bc:0c:6c:30:e4:e3:59:bd:97:
01:94:41:85:83:ab:7b:fb:19:28:c3:e3:e3:bd:1e:
f0:5e:63:b0:b0:e2:c2:c1:c7:7e:d5:c8:c4:9f:ed:
8d:af:90:4e:79:e2:f7:cf:bb:d6:19:1b:f1:4b:aa:
84:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A7:AA:F1:1C:9D:76:25:09:FD:95:2E:B2:C5:6C:38:90:BF:F5:29
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3131322e3231352e3139372e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.197.0/24
Signature Algorithm: sha256WithRSAEncryption
46:05:1d:0d:4e:ff:83:c8:8d:6f:53:9b:73:af:d0:40:d0:44:
20:25:bd:90:07:c3:e4:c2:c2:c6:49:81:96:56:f6:d5:46:f7:
82:a5:8b:d6:f2:78:d0:05:1d:bd:ea:86:d8:64:60:47:ba:01:
eb:6d:40:ef:06:7e:e4:94:1f:b3:00:c2:57:da:ae:c5:b3:d3:
69:d4:0e:46:b6:2d:9c:fa:4c:cb:f1:19:26:d2:c2:95:76:9e:
9a:61:3f:d4:c2:a3:fa:b5:a4:df:51:75:fd:a7:99:3c:07:0b:
5e:5e:77:2c:68:66:7a:1f:99:0a:c7:24:f5:34:c8:4b:5c:b5:
1c:4f:f9:4e:60:5b:20:ea:3e:00:e2:77:6c:7b:59:c2:73:5f:
18:22:4e:ad:c7:c1:81:a2:ed:de:74:56:97:16:be:5b:93:76:
a0:99:99:4c:6c:84:48:62:40:9a:67:cd:3f:e4:2f:14:84:d6:
b9:b4:9f:4f:2b:0b:69:bd:19:1b:33:79:c9:4d:0d:d5:ec:16:
b3:86:b0:fd:4c:f0:e4:54:87:5d:ee:1c:f6:85:42:a6:7f:8a:
b3:f1:fa:1a:41:cf:0d:64:2e:98:09:74:ae:54:47:db:78:d9:
1b:a6:8b:9d:ba:32:32:6b:67:47:51:75:f0:4a:74:bd:5b:a5:
34:b1:77:d8
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUERNmNCYDgcgcP6CxGqzPMHCRfJ8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MDcxNjU1MDJaFw0yMzA0MDYxNzAwMDJaMDMxMTAvBgNV
BAMTKDA2QTdBQUYxMUM5RDc2MjUwOUZEOTUyRUIyQzU2QzM4OTBCRkY1MjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHEsR149W3Pm9p2sMrSWYbw6LK
GNoBROQcrq5ATTCXVK3US/wFnhOrKN22O/A5XB9Mab41apDvOvPHBZt7vwtyFNGy
qKcmtRnHEROi2hwm9ez/xs8CJkcTRcCwgYUTQkn27jhOHZ1MWvhpJiNdSnzagQrp
SloAln4MLpUYaZgT1SrYABW1t4OP52IeGvP2fPLEqXz3YewexqJpfIgsXNOwVeIY
yaS6/L4qSStKLRw5Fbg9JaAdzTIxRZK/xFBmaHcKcFqQXWVtqbwMbDDk41m9lwGU
QYWDq3v7GSjD4+O9HvBeY7Cw4sLBx37VyMSf7Y2vkE554vfPu9YZG/FLqoRjAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUBqeq8RyddiUJ/ZUussVsOJC/9SkwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzEzMjJlMzIzMTM1MmUzMTM5MzcyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAcNfFMA0GCSqG
SIb3DQEBCwUAA4IBAQBGBR0NTv+DyI1vU5tzr9BA0EQgJb2QB8PkwsLGSYGWVvbV
RveCpYvW8njQBR296obYZGBHugHrbUDvBn7klB+zAMJX2q7Fs9Np1A5Gti2c+kzL
8Rkm0sKVdp6aYT/UwqP6taTfUXX9p5k8BwteXncsaGZ6H5kKxyT1NMhLXLUcT/lO
YFsg6j4A4ndse1nCc18YIk6tx8GBou3edFaXFr5bk3agmZlMbIRIYkCaZ80/5C8U
hNa5tJ9PKwtpvRkbM3nJTQ3V7BazhrD9TPDkVIdd7hz2hUKmf4qz8foaQc8NZC6Y
CXSuVEfbeNkbpoudujIya2dHUXXwSnS9W6U0sXfY
-----END CERTIFICATE-----
Generated at Sat Apr 19 01:30:17 2025 by rpki-client