Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3132362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: KII5R2LLJIjf5yhaYkaxXiA8r5TFTUekAVc5sWpMXf8=
Subject key identifier: A1:9B:E4:9A:AA:C9:2B:48:DE:FD:9A:5F:CB:33:EF:6B:37:F0:1E:2A
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4619D6FB8A55CE8487040E034F09990CEC770AD6
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132362e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:00 +0000
ROA not before: Wed 20 Apr 2022 04:55:00 +0000
ROA not after: Wed 19 Apr 2023 05:00:00 +0000
asID: 24203
IP address blocks: 140.213.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:19:d6:fb:8a:55:ce:84:87:04:0e:03:4f:09:99:0c:ec:77:0a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:00 2022 GMT
Not After : Apr 19 05:00:00 2023 GMT
Subject: CN=A19BE49AAAC92B48DEFD9A5FCB33EF6B37F01E2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:64:c0:78:57:38:4f:60:b9:bf:5c:3d:ee:80:
15:82:1e:34:eb:ed:52:ca:de:38:d2:5d:30:f6:c9:
77:0c:c0:f4:d3:f1:fa:83:2a:99:de:93:e4:68:20:
b5:26:74:2a:a8:e2:1c:97:39:08:b4:09:0b:3e:f4:
43:ba:4d:0c:08:cc:37:a9:70:52:97:15:ce:63:6f:
9c:37:63:34:d7:e1:c2:f4:7e:dd:18:ef:64:23:fe:
e0:49:0b:6e:34:b4:a5:49:08:46:70:af:3e:1d:3e:
5a:8e:32:ca:7c:88:c1:66:e0:c3:1f:e8:75:be:40:
20:f7:c5:17:b3:ab:c4:6d:27:90:cd:9c:c1:f1:a8:
ed:bb:4c:f4:9f:15:77:fc:20:d4:a5:ab:49:f2:cb:
3b:31:ba:b7:26:0b:72:5c:2b:fa:4f:5b:7e:5e:16:
78:3f:5d:ae:e6:a8:2d:b5:d5:49:02:53:3b:ee:ac:
51:d2:53:a6:a2:e4:f9:dd:69:02:72:c5:18:85:26:
bc:b4:81:97:8f:94:0c:98:87:d6:62:a3:bf:bb:de:
7a:2a:b3:37:3a:88:7a:6d:6b:dc:ad:02:be:f9:ba:
1a:0f:6f:e1:4e:0f:ab:68:25:59:53:cb:44:46:e8:
f0:b7:25:5d:7b:e1:9a:9a:73:23:9d:2c:40:64:b2:
9c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9B:E4:9A:AA:C9:2B:48:DE:FD:9A:5F:CB:33:EF:6B:37:F0:1E:2A
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.126.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:de:8d:95:7c:75:87:69:84:8f:8d:c7:af:b8:af:05:35:0f:
45:27:21:69:73:b2:7a:d9:94:22:ce:a5:0b:bc:d7:2a:db:9e:
49:5e:90:4b:f1:14:7b:77:c3:29:78:5a:d3:a6:29:1f:b1:3f:
b5:70:ed:31:c2:a5:2c:3c:c5:2a:a4:44:20:ad:70:cc:18:4a:
83:1f:94:df:2d:21:a2:da:bb:5d:fc:ed:f2:b4:77:5d:86:72:
4d:25:7b:24:29:c6:5f:64:98:23:17:7e:ca:3b:43:0e:22:10:
76:ed:d7:16:2d:fd:a1:d4:1a:21:ea:c5:26:79:0e:2e:e0:96:
c1:d2:1b:50:43:c9:3c:5b:8d:31:4a:00:89:0e:d7:81:d8:1c:
bc:2b:a7:83:6c:db:9f:1c:20:c3:d5:26:3d:6b:7e:83:e5:58:
a3:23:03:94:b0:95:8d:c9:bc:e5:a6:66:1c:e2:af:fc:81:85:
95:88:dc:cc:9c:e1:e6:9f:e7:a3:18:d5:ff:bf:2c:aa:09:d7:
78:fa:8e:c7:f4:83:12:52:8e:77:86:44:7e:94:f7:2c:43:82:
ff:54:99:b2:3b:99:a1:64:49:d7:7a:6c:bd:70:f8:cc:fa:0d:
7c:98:a7:6a:a3:0e:26:2c:83:a2:94:9d:7e:15:2d:97:fa:d4:
5f:8a:c3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org