Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3132392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: q2YSj0t8RFQEfDgvmsr+Gvq4xn8W3plhkyPmhIPpeFM=
Subject key identifier: 8E:61:02:19:88:E0:18:BE:D3:86:93:77:F5:F4:5A:DE:8B:A6:16:1A
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 738078C719DB09A6337E869772012A0AAC2E8A02
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132392e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:16:03 +0000
ROA not before: Sat 08 Jan 2022 17:11:03 +0000
ROA not after: Sun 08 Jan 2023 17:16:03 +0000
asID: 24203
IP address blocks: 140.213.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:80:78:c7:19:db:09:a6:33:7e:86:97:72:01:2a:0a:ac:2e:8a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:11:03 2022 GMT
Not After : Jan 8 17:16:03 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:44:3c:e1:ef:32:bf:b3:3a:c8:e7:37:c3:4c:
c2:0d:36:b3:96:6d:0a:00:30:a3:0d:d3:35:8c:86:
f4:b7:04:02:fb:08:c1:56:f3:a4:99:e1:3d:cf:17:
5d:0c:10:cf:69:92:f7:46:9f:5f:48:ca:a7:ca:d1:
12:e6:b7:6a:c6:91:19:83:6f:be:04:79:38:8e:4a:
a2:bd:56:88:b4:c8:3d:c1:c9:08:32:9d:31:06:f3:
36:5d:5d:99:e0:55:ac:f2:94:bc:43:7f:c4:8d:f6:
a6:a0:13:87:23:35:8f:92:37:11:34:55:98:6a:88:
b1:c6:f5:d1:e0:68:da:40:3d:57:e2:be:89:4a:4e:
da:68:37:5f:fc:9c:1f:a2:87:84:42:dd:19:90:a6:
dc:08:a1:88:66:a9:8b:da:53:9e:1b:1d:27:c2:d7:
70:04:ec:11:23:7a:a7:04:e2:65:73:04:86:27:c8:
0d:7f:3c:c0:1b:ea:2f:69:a0:bf:8f:59:d8:a4:c1:
00:64:9a:f4:1d:9d:2c:4a:c4:d1:64:e9:ac:97:38:
22:f4:93:2f:b0:3a:ee:ff:7a:26:ec:a9:0d:c1:db:
a1:17:11:9c:ce:dc:c7:2c:43:38:41:57:30:df:07:
3f:73:94:47:ef:c7:c4:fe:68:1c:64:96:c5:bb:b2:
b1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:61:02:19:88:E0:18:BE:D3:86:93:77:F5:F4:5A:DE:8B:A6:16:1A
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3132392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.129.0/24
Signature Algorithm: sha256WithRSAEncryption
64:bc:8b:b9:2b:a2:16:97:d9:97:32:9e:a3:76:98:96:7c:42:
f1:80:00:8c:d3:80:5b:87:78:88:1b:19:9f:fa:d1:5f:41:cf:
1d:d7:d5:34:f7:15:e5:de:83:09:1c:fc:0e:33:42:47:0c:ee:
2f:40:2b:c7:93:ba:83:87:5c:fb:ca:97:2f:aa:29:a2:6e:f7:
16:49:bd:90:0d:8c:40:9d:cf:85:86:6d:13:ed:21:49:ce:a3:
f8:ed:b9:43:76:ef:96:3b:1d:e5:aa:95:ff:7e:db:bd:16:9c:
df:7f:1b:6b:82:93:6f:d0:59:8c:d4:d5:fb:e0:b5:da:58:38:
83:34:ac:30:d5:3a:73:46:5e:ea:eb:f7:f8:dd:8a:d2:0d:d6:
68:17:b9:79:0e:69:8e:30:9a:97:6a:c2:6c:24:4e:ae:f8:bc:
cf:dc:11:d7:f2:4c:a5:41:dd:aa:92:89:f1:9b:f1:8d:7a:df:
6c:e6:cc:29:67:47:de:f9:0e:d8:0d:3d:b4:fd:25:83:a4:f5:
df:0a:77:6c:2e:2a:1c:11:1d:ad:7d:dc:d9:91:3f:fc:a9:fd:
20:91:6e:ac:d3:88:86:41:be:6d:61:58:72:6a:e5:86:8d:05:
94:e2:54:43:ec:7e:86:36:d3:e1:5a:73:eb:20:5d:b4:b6:42:
71:6b:cd:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org