Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e302e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e302e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: dfcCP6oTWhuAxk+WCDrZPu5dVe/7vDCWFBbgaNPyPBk=
Subject key identifier: 6B:67:07:BC:38:FE:8D:81:D9:1D:49:DF:A5:88:46:15:91:77:D6:5B
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 30B6A35603E7FC9F2987CA5E2DC5C9B89C62C9C7
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e302e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:03 +0000
ROA not before: Wed 13 Apr 2022 07:55:03 +0000
ROA not after: Wed 12 Apr 2023 08:00:03 +0000
asID: 24203
IP address blocks: 140.213.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:b6:a3:56:03:e7:fc:9f:29:87:ca:5e:2d:c5:c9:b8:9c:62:c9:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:03 2022 GMT
Not After : Apr 12 08:00:03 2023 GMT
Subject: CN=6B6707BC38FE8D81D91D49DFA58846159177D65B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:92:1b:96:08:b4:c5:fa:ab:42:a0:d0:a0:f8:
f0:a8:60:e7:1d:04:46:17:00:64:2b:2f:67:38:81:
6b:81:a1:60:c4:b5:45:43:42:03:c8:f3:87:8f:4e:
e3:a9:54:4e:f1:64:08:f0:b9:7e:2b:79:3e:bb:8d:
49:4f:16:ca:3f:44:eb:60:39:8e:d9:e3:f4:7a:d0:
23:15:cb:a6:33:94:00:55:31:72:d0:2c:ec:4c:14:
f0:89:6f:ab:c5:4d:a4:58:ca:e8:15:4f:d5:42:85:
9a:89:07:ae:be:c3:af:16:2e:fc:62:fb:61:5f:06:
ec:cc:18:9e:cc:1a:f8:01:72:c7:c2:e0:18:8e:ed:
c3:b4:23:3b:3a:b9:e3:e9:cb:dc:36:13:0a:9b:88:
13:6a:ba:5f:7f:d8:89:fd:66:70:5f:23:f2:35:b4:
dd:6f:1f:b5:68:f5:80:8a:ac:fb:b1:82:8b:71:72:
d6:d1:3e:c4:64:93:f7:ba:c5:09:32:e6:e3:9d:c0:
80:7e:dd:47:5b:f9:ea:d1:0e:6b:4e:01:ef:84:07:
02:be:91:e3:ea:9e:87:a9:02:c9:83:c1:4a:13:5d:
56:c3:51:ca:18:09:e7:cd:68:27:ef:54:7a:b2:41:
ac:28:02:36:a1:f1:5a:3f:16:59:ad:0b:a1:39:99:
5b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:67:07:BC:38:FE:8D:81:D9:1D:49:DF:A5:88:46:15:91:77:D6:5B
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e302e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:b2:85:4d:c6:c7:c3:c3:2d:18:81:36:cf:30:4d:cc:30:c9:
54:03:98:1c:af:fe:4a:c8:c9:1b:d0:d2:15:63:80:0c:ca:cc:
20:ba:56:0d:2b:80:1c:d0:bb:80:80:69:59:38:40:90:d8:2e:
76:3a:84:45:e9:ae:3b:f5:c7:88:eb:9b:ad:3e:9a:39:f4:3e:
54:e3:37:cd:9f:db:e6:7f:6a:31:14:c2:7b:1d:55:11:48:19:
0b:6b:07:ad:88:00:80:49:d1:07:1f:03:9b:ce:d9:05:3f:a9:
d1:b0:9d:a6:64:bd:c3:e0:fe:13:a1:f3:4a:7a:2e:0d:b8:ce:
93:80:7a:64:15:85:57:37:83:95:85:cf:4a:d5:dc:82:7e:fe:
e4:93:14:87:12:d2:0e:c0:16:d3:ac:1b:3f:dd:4b:b7:d6:54:
5c:69:41:8d:95:5f:32:a2:01:84:27:f4:74:40:37:bd:83:6d:
25:82:a5:28:2b:70:66:90:3d:dc:d0:7d:19:f9:f3:91:9d:5e:
c8:fe:79:f7:db:9b:28:f7:62:cc:95:73:07:33:28:05:10:c1:
3c:c3:13:39:ce:ce:e5:1c:2d:b3:9e:0a:f4:5e:98:34:ef:9a:
40:c9:c8:2d:5f:f1:c7:2b:b0:67:cb:65:c1:15:b5:12:21:2d:
5c:2e:3d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org