Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3132322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: ghlLp6Pa1rFeopN9wx+Yib3P/IIYPj7BQlzYBFfr3aA=
Subject key identifier: 98:1F:2B:33:17:6B:32:ED:34:99:71:3A:4A:74:C6:1D:67:C0:EB:AB
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 38CDA7ECAB4A33C0CEAF47D2DCCFAF2D3C1A0923
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132322e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:03 +0000
ROA not before: Wed 20 Apr 2022 04:55:03 +0000
ROA not after: Wed 19 Apr 2023 05:00:03 +0000
asID: 24203
IP address blocks: 140.213.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:cd:a7:ec:ab:4a:33:c0:ce:af:47:d2:dc:cf:af:2d:3c:1a:09:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:03 2022 GMT
Not After : Apr 19 05:00:03 2023 GMT
Subject: CN=981F2B33176B32ED3499713A4A74C61D67C0EBAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:13:52:64:3d:1d:09:a2:58:5a:9c:e9:e1:
9b:63:78:0d:fd:59:7d:f6:c7:07:8e:0f:91:86:73:
c1:fd:e1:36:18:a7:ca:d7:7d:3c:86:83:61:ce:b1:
f0:ca:eb:b4:6f:f9:07:cb:1d:4b:7d:89:a0:ef:2e:
8f:9f:54:fb:1b:c1:87:93:63:17:f0:18:31:b9:4c:
c3:63:58:fe:4f:23:5c:b9:76:3b:84:95:48:04:b2:
ab:b7:48:cc:43:30:e6:03:8c:a0:9c:ff:54:e8:33:
d4:8d:89:74:2f:56:b1:88:27:18:9c:98:14:3a:59:
20:8a:c1:8f:3d:0a:78:39:75:9f:bd:1a:a4:71:91:
44:0f:de:3b:b6:aa:69:34:ae:e1:23:0d:d2:fc:c3:
0e:f9:1c:e2:22:6e:3c:c0:b9:84:cc:68:cb:15:ab:
99:bb:df:3a:2a:a7:ae:ac:20:42:0a:05:14:4b:91:
d2:ba:3f:42:9b:22:84:d2:fa:6d:7d:b9:22:15:ae:
69:7f:38:31:de:59:7d:bf:8e:a6:4c:b3:e8:74:fc:
7e:78:0b:3e:4a:35:82:34:56:e8:f7:d8:f9:b9:bd:
db:7f:a7:25:bd:34:3a:2e:19:fc:17:99:1a:5a:00:
0c:66:8c:5f:6c:32:a6:42:2d:16:f5:92:91:9e:dc:
50:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1F:2B:33:17:6B:32:ED:34:99:71:3A:4A:74:C6:1D:67:C0:EB:AB
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.122.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:19:41:3c:1a:4b:02:e0:10:01:56:17:18:b4:41:7c:85:04:
3d:d2:50:00:4d:2e:3f:78:6e:40:1a:e4:3a:94:9d:4f:34:17:
f1:7c:6d:c6:03:c9:fd:b1:a3:4d:72:34:6c:d3:64:6d:3e:1a:
bc:d1:20:a6:6a:6e:88:19:7a:6b:74:18:30:2a:73:f8:b1:e5:
c0:6d:67:df:a7:ec:1d:7c:2b:28:a5:4d:f6:b2:03:c3:ac:65:
94:9d:2a:af:31:38:2b:0d:1c:41:9c:cd:8f:0d:19:46:69:bd:
ab:dd:1b:e4:38:07:ca:26:40:95:92:25:7f:8f:9f:99:76:49:
ba:ec:cb:7e:ea:4e:d1:7b:93:f8:f3:c3:a5:64:45:95:8c:19:
4c:fe:ae:93:5e:16:fa:6e:87:f5:39:f5:0f:bf:5e:b3:21:a0:
f3:3e:7e:0c:0a:b1:67:d0:97:1a:d7:6c:88:8c:0b:e7:5a:5c:
c7:c6:97:aa:19:05:a8:f1:6c:b1:4b:6a:41:eb:9e:7d:a8:46:
6c:55:7a:1d:36:88:ae:44:cf:b5:3b:b2:8f:f7:3a:ec:ea:d9:
aa:7a:1c:2b:02:5e:99:65:34:c3:02:5a:2d:61:14:f6:0c:df:
cd:eb:90:c6:92:c5:3c:20:f7:dc:b4:af:e6:fb:a1:62:c1:ba:
33:85:8d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org