Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 0uHoFunllOM/diXz2fOS7erLNcyTdzpz0OCa9N2P51Y=
Subject key identifier: 2E:0E:04:AF:83:FE:A3:BF:62:1B:FF:B4:15:1F:71:B0:99:0E:6B:C2
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 57F2714B3289E43FE5D108A970D7D91E14BDFA56
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31322e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:01 +0000
ROA not before: Wed 13 Apr 2022 07:55:01 +0000
ROA not after: Wed 12 Apr 2023 08:00:01 +0000
asID: 24203
IP address blocks: 140.213.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:f2:71:4b:32:89:e4:3f:e5:d1:08:a9:70:d7:d9:1e:14:bd:fa:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:01 2022 GMT
Not After : Apr 12 08:00:01 2023 GMT
Subject: CN=2E0E04AF83FEA3BF621BFFB4151F71B0990E6BC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4d:e3:df:bf:85:c1:c2:2c:1d:a6:cd:15:12:
72:8f:e9:7a:5a:68:0c:1c:42:bd:ea:e2:66:7b:a9:
77:6f:70:08:9e:b0:69:20:7a:4a:f8:69:9b:a9:29:
39:66:d5:54:5c:42:6d:e5:03:6a:fb:7f:e2:8a:4b:
52:ba:d4:5b:da:2f:01:da:99:5d:35:9c:d8:f2:40:
e1:72:bb:92:15:ed:4c:d8:38:a7:7f:66:57:81:30:
e0:21:6b:db:f6:3e:13:e9:24:61:ae:14:44:eb:c5:
f6:b9:c6:2b:bb:25:46:6e:4c:b0:b0:f0:22:fb:9c:
09:27:7e:b2:23:0a:75:94:14:04:b5:02:fb:4b:6c:
f9:0d:26:96:9a:bd:5f:73:e9:58:2a:3c:25:f3:90:
4b:fd:dc:07:b8:92:6c:66:17:af:dd:64:65:9d:0e:
94:63:60:18:29:a5:4b:87:b4:77:0e:f7:54:6b:5e:
f3:c2:14:b9:31:87:27:ce:fe:ee:88:d2:f3:df:7c:
8f:fe:36:b3:9e:47:5f:d8:91:14:55:30:38:86:5e:
47:30:52:3f:4f:b7:3b:c6:6e:89:ec:b0:4e:32:1f:
0a:9b:c9:9d:4f:d4:79:3e:1f:6a:30:ff:e7:ab:93:
93:7d:31:ef:b9:6e:45:d8:9a:76:17:05:72:05:e3:
52:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0E:04:AF:83:FE:A3:BF:62:1B:FF:B4:15:1F:71:B0:99:0E:6B:C2
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.12.0/24
Signature Algorithm: sha256WithRSAEncryption
26:20:ca:9a:b9:2d:60:90:1c:a7:49:f2:cc:b3:d4:10:a8:b0:
01:6f:3a:a9:79:64:44:10:bd:54:7c:e7:e7:f4:f9:5e:8c:88:
95:c4:f5:b3:31:af:79:e5:de:34:f7:2f:c1:f7:7f:52:d3:60:
d9:e0:6a:e4:ce:ff:a3:19:81:b0:3c:8d:b7:24:98:c5:d5:6d:
98:f0:59:1f:45:9f:39:1a:c1:07:a6:c8:7a:44:ad:69:bd:15:
4b:6b:95:d5:2d:7f:56:1f:47:30:27:64:91:1c:bb:63:49:c7:
0d:2b:ac:bf:79:9c:65:f1:0a:c4:8f:83:d2:d6:99:80:03:94:
27:8c:93:16:19:6d:d5:0f:a5:03:77:db:b8:2e:af:c1:8f:2f:
f0:c6:33:dd:b5:c9:a6:bf:83:0a:4e:ec:ba:b3:13:9a:42:ed:
16:cf:33:59:5e:32:29:e0:67:79:c4:c2:f0:e9:a7:6d:00:d1:
ef:4f:d2:76:a6:58:1e:2e:3e:55:13:b1:26:ce:a8:d5:c3:38:
79:92:82:cf:ac:3a:6e:95:06:6c:96:1a:5b:07:f8:c5:9d:bb:
4f:3f:ff:e1:b6:59:1a:ba:c6:09:0d:7f:3f:9b:b1:a1:84:f7:
0b:19:5c:91:a9:40:fb:8a:13:52:0e:a9:91:43:88:f4:ed:b7:
17:a5:27:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org