Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3131382e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3131382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: BhmNG8CsKsic5lTNLOvkRjXjowrmCX9UwanHi2a5fn8=
Subject key identifier: D0:B8:3A:D2:03:5A:D8:BE:CE:B2:FA:28:0E:AE:70:E9:4F:B4:A4:64
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 131E0E13BAC7969EE96E8EE0E74A1DFE6FCDE92F
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3131382e302f32342d3234203d3e203137383835.roa
Signing time: Tue 19 Apr 2022 10:00:00 +0000
ROA not before: Tue 19 Apr 2022 09:55:00 +0000
ROA not after: Tue 18 Apr 2023 10:00:00 +0000
asID: 17885
IP address blocks: 140.213.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:1e:0e:13:ba:c7:96:9e:e9:6e:8e:e0:e7:4a:1d:fe:6f:cd:e9:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:00 2022 GMT
Not After : Apr 18 10:00:00 2023 GMT
Subject: CN=D0B83AD2035AD8BECEB2FA280EAE70E94FB4A464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5a:2e:19:a5:72:60:b3:66:71:28:db:b1:ce:
79:6c:9e:71:53:9d:83:12:75:4f:92:6e:66:40:c3:
e4:d3:1f:97:e1:38:62:e4:23:11:e8:e3:ac:12:b7:
04:01:ee:ef:e9:80:33:3a:e7:3c:c2:02:d4:a5:1c:
b9:e9:2c:07:a9:ad:6b:61:cb:6c:79:23:66:c5:ae:
84:93:29:b8:e8:b0:c6:52:1c:de:ca:4a:b9:19:8b:
c8:5b:08:19:9d:11:77:08:10:64:8c:b1:b9:a9:1a:
a8:23:44:13:2f:1b:a7:29:6e:30:ec:89:f0:19:37:
e9:17:ed:e0:6a:74:37:07:92:af:f5:be:cf:af:08:
ed:d0:2e:2e:44:97:22:9f:84:94:e5:c3:52:e5:73:
c1:3f:30:cf:79:54:a1:2d:4e:44:4b:0d:62:6b:ba:
43:e4:48:4e:f9:73:4a:62:d3:e3:d2:98:88:3a:c9:
e7:e2:2c:b0:e4:e8:47:d5:18:b9:42:de:47:f6:06:
39:e5:06:b5:f0:c1:95:9b:93:d0:fd:f5:1f:fa:5c:
0a:99:c5:2c:a5:94:9d:61:93:05:93:e8:f9:00:1b:
7b:c9:fd:55:82:67:79:4c:09:16:aa:ad:07:2c:29:
a4:7f:1a:ee:7c:09:93:9a:fd:08:9e:18:29:37:10:
50:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:B8:3A:D2:03:5A:D8:BE:CE:B2:FA:28:0E:AE:70:E9:4F:B4:A4:64
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3131382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.118.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:8d:f7:ef:19:cd:4d:cf:e2:df:71:71:81:48:a0:3c:e2:3d:
a1:6c:ce:3d:47:2b:9f:d4:cc:80:71:ed:da:62:95:e8:c5:07:
a9:1c:ab:71:64:44:3a:54:09:d1:c0:67:bb:aa:d6:43:e1:35:
78:4f:cf:ac:0b:0f:43:cb:f0:6c:17:47:33:55:6b:12:22:76:
10:76:6f:86:98:09:06:c7:a6:b9:f8:cf:fb:9d:84:59:19:1a:
b9:1a:8e:ed:0e:05:c1:22:0f:84:4e:ae:ed:64:0e:ab:16:89:
0f:1f:a5:a5:b9:27:95:b6:37:48:46:0d:4a:8f:74:12:16:83:
d5:81:ec:cb:f4:82:a6:96:e3:cd:39:f3:43:3d:16:54:64:a4:
13:9e:12:c5:d2:89:71:06:11:a7:ee:05:6d:20:21:18:e6:04:
56:d2:c7:22:ac:4f:1a:3d:f0:f5:74:d9:33:ba:ed:c1:fc:ce:
3e:5e:eb:c2:d8:9d:a9:a1:3c:3f:f2:20:52:22:ff:04:e3:ab:
d5:f5:da:f1:dc:e7:a0:e8:65:e1:13:e5:a9:b4:78:06:0c:b8:
a2:eb:2e:13:75:9d:a5:b3:ce:41:c4:cc:23:39:18:70:9c:09:
91:40:9c:91:d3:7b:0b:b9:8b:66:81:99:54:f2:d6:53:21:6b:
26:88:78:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org