Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8YXBgdVbClPoYATghSaw8oREP+LCiU6XrcayMJpmAiI=
Subject key identifier: 1A:BB:20:2C:2D:4E:5A:E9:25:FE:2C:25:2C:A1:D0:EA:90:8E:7D:61
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 3C715606BC44B3BBCB7D4834E02CC2F2AA47AAB0
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31312e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:04 +0000
ROA not before: Wed 13 Apr 2022 07:55:04 +0000
ROA not after: Wed 12 Apr 2023 08:00:04 +0000
asID: 24203
IP address blocks: 140.213.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:71:56:06:bc:44:b3:bb:cb:7d:48:34:e0:2c:c2:f2:aa:47:aa:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:04 2022 GMT
Not After : Apr 12 08:00:04 2023 GMT
Subject: CN=1ABB202C2D4E5AE925FE2C252CA1D0EA908E7D61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:95:a3:94:83:c3:5a:12:27:02:4e:52:ff:9c:
56:75:78:b5:6b:ae:3c:2c:78:5e:ea:80:3b:e9:bd:
85:f4:4f:46:1c:fd:6b:72:6c:86:20:63:bd:f7:5f:
47:76:f4:42:23:d5:0c:01:b4:b1:c0:7a:72:3c:34:
4e:15:c3:f8:a9:b6:a9:f8:c6:46:26:0d:40:59:f5:
ab:f5:f0:a6:21:17:c4:ca:42:66:f9:d0:0e:a1:cf:
be:91:8f:45:5b:6e:a5:c1:2c:b7:05:52:69:86:3a:
e8:91:c3:93:14:c8:14:ef:d5:e9:05:63:e9:5b:07:
68:cc:66:89:7f:77:5f:e8:5d:e2:93:f2:a5:70:48:
8e:4a:b0:d5:66:97:b7:9a:4b:ae:49:3d:fb:99:49:
08:ec:2e:8c:c6:aa:21:12:79:bb:de:ce:5a:f6:dc:
f5:40:1a:87:ca:c1:a8:72:08:87:07:e4:58:7d:a0:
5b:00:c0:bb:dd:28:04:27:20:f4:69:b5:f9:66:64:
15:b4:1a:10:c5:6f:97:5e:1d:c5:5d:1f:0e:a4:44:
39:d4:17:1e:13:c1:4e:f2:88:b1:f4:c4:8d:bc:f8:
05:69:95:f9:b5:17:e0:4d:7c:b8:0c:73:d3:f5:50:
a4:4e:2f:1b:31:7a:41:73:19:a6:0d:52:59:ba:e4:
4f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BB:20:2C:2D:4E:5A:E9:25:FE:2C:25:2C:A1:D0:EA:90:8E:7D:61
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.11.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:83:92:57:71:c6:20:36:dc:92:73:24:c0:4b:05:68:f9:b8:
6e:1d:7e:1b:03:ce:d0:e0:3a:ce:e7:a4:ff:75:35:f8:67:03:
bc:73:25:e3:ee:d8:29:d4:67:41:40:eb:eb:d5:12:15:23:6d:
f6:57:7f:83:c2:68:34:fa:65:9c:b0:c9:1b:d5:3e:1f:93:40:
00:2a:f7:23:a6:47:31:d5:d5:5f:8b:8c:e6:d7:b9:8c:e0:2e:
56:24:23:7a:7b:ee:9b:bc:e1:89:3e:03:ec:e1:9e:82:e6:54:
dd:eb:7a:19:6e:d5:97:ce:d4:a0:de:88:b5:c4:0b:03:ae:9d:
be:0e:58:73:d7:a3:ca:de:ac:d8:ab:ab:a1:06:55:92:1d:61:
15:22:38:41:55:dd:e9:81:20:a7:c7:a5:9c:a8:19:7e:8c:d7:
43:41:b4:17:11:0f:9b:3f:b6:9a:5e:29:9b:79:46:52:8d:96:
b3:56:f9:4a:b0:7e:bf:94:49:65:cf:d8:53:ed:fe:ab:58:88:
58:3e:58:a4:9a:15:72:77:58:eb:85:85:27:5e:1e:ca:5e:e3:
3a:4e:83:03:4f:3b:c8:14:cf:15:cf:3e:72:00:90:eb:dd:f2:
7b:67:f6:af:5b:63:a3:32:04:e1:63:53:29:15:ad:4e:59:bb:
05:8f:a2:81
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUPHFWBrxEs7vLfUg04CzC8qpHqrAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTMwNzU1MDRaFw0yMzA0MTIwODAwMDRaMDMxMTAvBgNV
BAMTKDFBQkIyMDJDMkQ0RTVBRTkyNUZFMkMyNTJDQTFEMEVBOTA4RTdENjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChlaOUg8NaEicCTlL/nFZ1eLVr
rjwseF7qgDvpvYX0T0Yc/WtybIYgY733X0d29EIj1QwBtLHAenI8NE4Vw/iptqn4
xkYmDUBZ9av18KYhF8TKQmb50A6hz76Rj0VbbqXBLLcFUmmGOuiRw5MUyBTv1ekF
Y+lbB2jMZol/d1/oXeKT8qVwSI5KsNVml7eaS65JPfuZSQjsLozGqiESebvezlr2
3PVAGofKwahyCIcH5Fh9oFsAwLvdKAQnIPRptflmZBW0GhDFb5deHcVdHw6kRDnU
Fx4TwU7yiLH0xI28+AVplfm1F+BNfLgMc9P1UKROLxsxekFzGaYNUlm65E9dAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUGrsgLC1OWukl/iwlLKHQ6pCOfWEwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTMxMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVCzANBgkqhkiG
9w0BAQsFAAOCAQEAroOSV3HGIDbcknMkwEsFaPm4bh1+GwPO0OA6zuek/3U1+GcD
vHMl4+7YKdRnQUDr69USFSNt9ld/g8JoNPplnLDJG9U+H5NAACr3I6ZHMdXVX4uM
5te5jOAuViQjenvum7zhiT4D7OGeguZU3et6GW7Vl87UoN6ItcQLA66dvg5Yc9ej
yt6s2KuroQZVkh1hFSI4QVXd6YEgp8elnKgZfozXQ0G0FxEPmz+2ml4pm3lGUo2W
s1b5SrB+v5RJZc/YU+3+q1iIWD5YpJoVcndY64WFJ14eyl7jOk6DA087yBTPFc8+
cgCQ693ye2f2r1tjozIE4WNTKRWtTlm7BY+igQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org