Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31302e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31302e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: qs+CFtuCojPuFwYoExLhTLIqhhOuWnuPFgQnG/1g7Tw=
Subject key identifier: 28:07:2F:E8:59:FD:30:7A:31:6A:BD:61:7B:CE:11:D6:94:60:44:56
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 2CA55A8BE39E5317E27CA2DFC53452F2EFA823B2
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31302e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:02 +0000
ROA not before: Wed 13 Apr 2022 07:55:02 +0000
ROA not after: Wed 12 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 140.213.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a5:5a:8b:e3:9e:53:17:e2:7c:a2:df:c5:34:52:f2:ef:a8:23:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:02 2022 GMT
Not After : Apr 12 08:00:02 2023 GMT
Subject: CN=28072FE859FD307A316ABD617BCE11D694604456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3c:0c:1e:df:26:4e:f6:1c:93:a4:7d:71:b4:
e0:87:ec:62:40:09:fe:fc:3b:64:b6:a7:e2:0b:58:
28:cf:82:70:53:4f:ed:68:b5:fa:18:2b:f9:ed:b2:
c0:b9:ac:65:9b:a3:8c:d6:e3:a9:a4:16:8e:f3:dd:
22:f2:21:61:5f:a7:93:aa:25:1a:67:40:35:5e:02:
5c:20:5b:db:b3:2f:c0:ee:8c:9b:27:f3:23:49:47:
89:9e:b9:6c:e7:d3:12:58:e1:c1:92:16:16:4a:02:
38:1e:1e:09:6d:e0:b8:07:8d:c4:c7:11:e5:4d:cb:
77:f2:73:ba:89:3e:47:64:6f:5b:38:e0:39:a0:eb:
1e:d0:74:a5:67:94:3d:53:00:ee:3b:0c:0f:41:e4:
6c:1e:94:12:d0:72:f3:e2:cb:d7:62:ec:ae:9f:91:
41:bc:9e:cc:7f:2c:ea:33:fc:dd:a9:ab:70:7d:36:
b5:12:05:25:36:53:64:64:bd:55:33:d7:7e:e9:99:
cc:f6:17:72:7d:fb:68:bd:80:4b:f6:49:66:fd:bd:
2c:e8:32:56:b2:a5:8d:c9:da:31:95:77:f2:83:32:
49:62:cb:d5:fc:a0:51:15:d2:19:71:19:89:fe:63:
5b:94:1e:35:7c:8d:34:d7:cc:fd:f0:b7:de:b1:90:
01:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:07:2F:E8:59:FD:30:7A:31:6A:BD:61:7B:CE:11:D6:94:60:44:56
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31302e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.10.0/24
Signature Algorithm: sha256WithRSAEncryption
64:03:1f:54:67:b9:b0:60:c5:3e:68:f7:b9:33:06:5b:a1:80:
56:67:2b:ff:a1:76:95:0b:26:95:f3:2c:86:b0:79:f4:b5:b4:
62:ce:e9:86:cf:1f:59:63:a7:81:14:d1:06:18:7f:ee:cb:ea:
6f:f5:6a:9b:62:be:f9:fa:f8:25:cd:cf:ce:b3:f5:35:bf:6c:
c7:23:0f:57:e7:88:83:cb:dd:d3:6d:66:9e:d1:12:49:d4:0b:
ee:7e:3e:9e:9c:26:26:b3:63:c6:f4:9b:23:21:e2:d3:7a:bd:
7b:dc:fe:2d:59:d5:b4:6d:85:31:e9:f8:38:87:db:89:e0:da:
6d:d7:02:a1:8f:da:f2:95:fb:66:ac:88:9d:49:c2:75:9e:23:
6a:64:ef:d4:f5:c4:11:a0:cf:3f:a5:b4:96:21:5f:f0:b9:a4:
b8:74:dc:dc:69:03:0a:ad:85:40:e2:a3:ec:47:ad:04:6a:b4:
f2:a1:73:76:8e:d4:4d:e5:26:a6:f4:9e:d0:1f:7c:24:e9:0c:
60:8a:22:88:14:fb:1d:f3:00:c1:f1:22:83:37:cb:d1:6c:46:
23:08:07:fa:ea:d9:14:1a:d3:f3:fc:00:e2:de:c1:6e:4b:d2:
2d:76:e1:c1:12:4f:34:63:4a:f6:6f:d8:78:0d:aa:7f:dc:6f:
b3:00:a0:e7
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIULKVai+OeUxfifKLfxTRS8u+oI7IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTMwNzU1MDJaFw0yMzA0MTIwODAwMDJaMDMxMTAvBgNV
BAMTKDI4MDcyRkU4NTlGRDMwN0EzMTZBQkQ2MTdCQ0UxMUQ2OTQ2MDQ0NTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyPAwe3yZO9hyTpH1xtOCH7GJA
Cf78O2S2p+ILWCjPgnBTT+1otfoYK/ntssC5rGWbo4zW46mkFo7z3SLyIWFfp5Oq
JRpnQDVeAlwgW9uzL8DujJsn8yNJR4meuWzn0xJY4cGSFhZKAjgeHglt4LgHjcTH
EeVNy3fyc7qJPkdkb1s44Dmg6x7QdKVnlD1TAO47DA9B5GwelBLQcvPiy9di7K6f
kUG8nsx/LOoz/N2pq3B9NrUSBSU2U2RkvVUz137pmcz2F3J9+2i9gEv2SWb9vSzo
MlaypY3J2jGVd/KDMkliy9X8oFEV0hlxGYn+Y1uUHjV8jTTXzP3wt96xkAHTAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUKAcv6Fn9MHoxar1he84R1pRgRFYwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVCjANBgkqhkiG
9w0BAQsFAAOCAQEAZAMfVGe5sGDFPmj3uTMGW6GAVmcr/6F2lQsmlfMshrB59LW0
Ys7phs8fWWOngRTRBhh/7svqb/Vqm2K++fr4Jc3PzrP1Nb9sxyMPV+eIg8vd021m
ntESSdQL7n4+npwmJrNjxvSbIyHi03q9e9z+LVnVtG2FMen4OIfbieDabdcCoY/a
8pX7ZqyInUnCdZ4jamTv1PXEEaDPP6W0liFf8LmkuHTc3GkDCq2FQOKj7EetBGq0
8qFzdo7UTeUmpvSe0B98JOkMYIoiiBT7HfMAwfEigzfL0WxGIwgH+urZFBrT8/wA
4t7BbkvSLXbhwRJPNGNK9m/YeA2qf9xvswCg5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org