Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3132332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: dvv7CFtLiWDFOJ8zEDctqPyeBEUmWq0db1KSiQGtKWY=
Subject key identifier: 9F:3B:97:31:A2:6A:A3:1D:44:D4:EE:D6:F9:7E:ED:49:FC:90:3E:95
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 0DFD2802CC46E78EBBCB68D5E0D32A914F8ECF14
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132332e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:02 +0000
ROA not before: Wed 20 Apr 2022 04:55:02 +0000
ROA not after: Wed 19 Apr 2023 05:00:02 +0000
asID: 24203
IP address blocks: 140.213.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:fd:28:02:cc:46:e7:8e:bb:cb:68:d5:e0:d3:2a:91:4f:8e:cf:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:02 2022 GMT
Not After : Apr 19 05:00:02 2023 GMT
Subject: CN=9F3B9731A26AA31D44D4EED6F97EED49FC903E95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:cd:2f:5f:73:02:56:c5:c4:1c:50:57:3a:
02:db:6f:42:f9:47:79:f3:71:9e:0a:59:07:69:3e:
ad:eb:96:b1:f2:df:00:e9:53:f6:db:56:79:79:51:
95:86:ff:81:de:18:86:e9:52:c4:54:30:fd:12:fb:
f2:61:69:d0:e1:71:c7:c7:c3:f5:b8:cc:78:e7:35:
73:93:93:7e:3d:3b:41:cd:d1:21:dc:c0:10:3a:64:
11:7d:df:9e:4c:6c:b0:c8:0d:9f:9f:f5:5c:6b:cd:
f7:70:e0:1e:6c:a0:9f:24:bf:62:49:61:6a:60:30:
11:ae:47:ff:c5:48:ca:9a:38:a5:57:dc:cd:e7:90:
d6:d1:c4:61:71:2d:a9:f7:c2:d6:28:81:b6:61:d3:
46:7b:0b:01:0a:16:9a:22:73:1d:59:56:a7:e8:24:
7c:74:7c:55:34:45:86:8b:35:ba:0b:34:c2:93:36:
15:03:58:38:a1:b5:1a:bf:47:37:f5:49:38:86:1a:
75:91:7b:8b:51:c3:e1:6c:f8:78:4f:39:02:98:14:
47:31:5f:8c:a2:db:7b:f7:5f:bc:6e:12:e5:61:4a:
b4:eb:6c:64:5b:6e:26:70:b3:9f:c1:22:79:62:9d:
47:ce:fb:3f:56:f1:5b:1f:a1:52:60:98:94:a0:7f:
f4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3B:97:31:A2:6A:A3:1D:44:D4:EE:D6:F9:7E:ED:49:FC:90:3E:95
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:cb:ac:3d:f5:1b:11:98:44:1a:3e:77:61:5b:36:c8:60:c5:
32:5c:29:ad:a5:af:5d:d3:0b:05:e5:d0:57:45:cc:9e:c0:11:
d6:c6:43:5a:6b:4f:b4:07:bf:4d:00:6b:f8:71:a9:16:c0:b2:
c4:02:92:14:37:3c:e9:71:b0:88:99:c4:0c:30:ba:bf:89:01:
93:53:c0:83:1f:15:29:89:80:fa:88:60:94:07:d4:bf:48:45:
32:ca:5b:81:06:6f:d0:59:81:70:c9:08:d2:12:13:64:2d:a0:
90:84:de:ca:30:5e:b8:b3:dc:c9:17:cc:79:f6:2c:21:37:53:
36:23:2e:bf:fe:42:48:67:25:3c:98:df:59:10:64:7f:c5:d5:
5e:2b:4e:3b:4d:52:32:13:c2:59:7b:90:a3:c2:4b:f4:2e:eb:
82:da:dd:05:c2:6c:b5:ae:f9:35:45:e6:17:a2:cc:d8:9a:c8:
87:de:fc:1f:0b:fa:53:a4:b2:3b:7b:89:7a:e4:ce:ca:b7:84:
e9:4e:ff:fe:45:77:b8:4f:ef:22:ae:e3:59:fb:2c:82:31:c6:
0d:86:e9:2a:4e:2f:65:40:38:35:12:6f:0f:9c:5e:ce:ad:aa:
7d:42:c7:4b:61:c4:8a:79:8f:b6:fa:f8:43:e1:17:aa:6e:f7:
f3:7a:35:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org