Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e39332e302f32342d3234203d3e203137383835.roa
File: 3132312e35322e39332e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 6YJjvCxnCpL4J2zawb8AI4VC+mSUi3Wq+4EWlGO3zxc=
Subject key identifier: 31:16:69:4F:9C:9C:AD:50:8D:71:DD:B4:B5:B3:C9:66:7D:8B:C4:E7
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 34DBFCCC76BC968CA05628E4AFA6B478C38D1405
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e39332e302f32342d3234203d3e203137383835.roa
Signing time: Wed 13 Apr 2022 08:00:00 +0000
ROA not before: Wed 13 Apr 2022 07:55:00 +0000
ROA not after: Wed 12 Apr 2023 08:00:00 +0000
asID: 17885
IP address blocks: 121.52.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:db:fc:cc:76:bc:96:8c:a0:56:28:e4:af:a6:b4:78:c3:8d:14:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Apr 13 07:55:00 2022 GMT
Not After : Apr 12 08:00:00 2023 GMT
Subject: CN=3116694F9C9CAD508D71DDB4B5B3C9667D8BC4E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:15:db:8c:bf:2a:f9:f7:fa:00:ad:e2:8a:7e:
28:c0:03:72:81:ae:89:42:96:f1:6a:15:fd:d1:35:
98:62:76:c3:44:23:36:1f:7a:d7:e1:6b:fd:11:8a:
90:9d:93:5a:5b:4b:07:6b:49:75:6d:c2:11:e9:5b:
fd:00:da:ea:d3:5d:6f:5e:0b:22:15:27:92:50:1d:
a5:73:e3:1b:cd:4f:d8:e4:83:2d:b1:94:df:a4:d9:
c5:48:df:03:b7:77:65:d6:4b:38:f8:56:90:c6:c7:
b2:36:b0:0e:44:42:9e:4b:32:b6:8f:55:0c:06:63:
56:c6:e5:ee:fc:0c:ca:ac:3b:7e:ad:54:e2:4d:3d:
d2:3f:7b:91:52:f9:e2:11:e9:b1:39:7b:59:36:6d:
5e:36:9b:df:14:da:22:0b:c6:5d:f4:c3:0d:1f:23:
37:e8:35:b2:81:7f:4a:50:15:fe:fa:9c:d9:07:f0:
0b:b3:aa:99:12:c0:69:5f:f8:f9:b2:0a:95:f0:36:
93:57:a9:3f:7d:5d:e3:d6:89:d2:20:9d:ef:b2:d4:
75:31:a6:9d:fd:ef:84:6e:f6:3d:d0:eb:a0:66:9d:
28:6e:f0:ea:9e:5b:df:1c:30:b9:2e:71:bb:93:e4:
c7:77:a9:51:fc:24:df:12:71:72:ab:35:57:c9:f8:
5a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:16:69:4F:9C:9C:AD:50:8D:71:DD:B4:B5:B3:C9:66:7D:8B:C4:E7
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/3132312e35322e39332e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.93.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c5:3b:71:30:a1:77:38:33:6e:31:79:2a:15:f9:08:ec:cc:
74:9b:bf:d2:45:47:eb:0f:a9:11:79:87:81:7f:28:42:37:a4:
7a:da:88:16:0d:e4:c9:1e:38:6b:f2:ef:e5:93:50:34:6d:f1:
b8:e7:4a:c9:26:fb:4c:11:44:56:9c:37:5b:26:12:68:12:d1:
f8:42:83:00:07:8b:1d:4b:e1:65:f9:56:c7:54:b6:94:57:08:
2d:06:c7:66:01:29:ec:66:8c:38:02:d8:8e:12:46:6c:f4:5c:
e0:9c:41:29:12:90:90:e3:ee:a6:c7:8a:a0:0d:9a:83:ab:8c:
3d:bf:87:61:c6:7f:4b:32:cf:aa:47:3a:d3:59:c5:4f:ef:65:
6e:e6:70:36:d2:0d:4c:92:65:57:66:58:25:85:74:69:51:53:
9b:e6:5d:bd:9b:28:7d:db:14:9d:04:9a:55:50:d9:07:7b:32:
5e:d0:34:8e:72:43:53:e3:e3:b2:de:d5:31:29:d0:9f:38:8d:
3c:c1:66:fa:21:c6:5b:c6:8c:9a:c4:0b:25:eb:29:12:a7:17:
b3:58:9d:5b:d7:1a:1d:75:88:53:0f:8e:c7:0b:1f:fa:d5:9f:
19:15:1f:5e:5b:1d:23:9f:b7:d8:db:b2:5e:5d:b4:b9:f4:78:
ba:3e:18:83
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUNNv8zHa8loygVijkr6a0eMONFAUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIw
OTU2ODdEQTAeFw0yMjA0MTMwNzU1MDBaFw0yMzA0MTIwODAwMDBaMDMxMTAvBgNV
BAMTKDMxMTY2OTRGOUM5Q0FENTA4RDcxRERCNEI1QjNDOTY2N0Q4QkM0RTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEFduMvyr59/oAreKKfijAA3KB
rolClvFqFf3RNZhidsNEIzYfetfha/0RipCdk1pbSwdrSXVtwhHpW/0A2urTXW9e
CyIVJ5JQHaVz4xvNT9jkgy2xlN+k2cVI3wO3d2XWSzj4VpDGx7I2sA5EQp5LMraP
VQwGY1bG5e78DMqsO36tVOJNPdI/e5FS+eIR6bE5e1k2bV42m98U2iILxl30ww0f
IzfoNbKBf0pQFf76nNkH8AuzqpkSwGlf+PmyCpXwNpNXqT99XePWidIgne+y1HUx
pp3974Ru9j3Q66BmnShu8OqeW98cMLkucbuT5Md3qVH8JN8ScXKrNVfJ+FrXAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUMRZpT5ycrVCNcd20tbPJZn2LxOcwHwYDVR0j
BBgwFoAUtJOlzr8J4QvDXZrCIR2v0glWh9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMC9CNDkzQTVDRUJG
MDlFMTBCQzM1RDlBQzIyMTFEQUZEMjA5NTY4N0RBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjQ5M0E1Q0VCRjA5RTEwQkMzNUQ5QUMyMjExREFGRDIwOTU2
ODdEQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8wLzMxMzIzMTJlMzUzMjJlMzkzMzJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzczODM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB5NF0wDQYJKoZIhvcN
AQELBQADggEBAFHFO3EwoXc4M24xeSoV+QjszHSbv9JFR+sPqRF5h4F/KEI3pHra
iBYN5MkeOGvy7+WTUDRt8bjnSskm+0wRRFacN1smEmgS0fhCgwAHix1L4WX5VsdU
tpRXCC0Gx2YBKexmjDgC2I4SRmz0XOCcQSkSkJDj7qbHiqANmoOrjD2/h2HGf0sy
z6pHOtNZxU/vZW7mcDbSDUySZVdmWCWFdGlRU5vmXb2bKH3bFJ0EmlVQ2Qd7Ml7Q
NI5yQ1Pj47Le1TEp0J84jTzBZvohxlvGjJrECyXrKRKnF7NYnVvXGh11iFMPjscL
H/rVnxkVH15bHSOft9jbsl5dtLn0eLo+GIM=
-----END CERTIFICATE-----
Generated at Sat Apr 19 01:22:39 2025 by rpki-client