Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3134312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: HxW+6Xx5WHVaVndwSy40humTGiTw1nKMAb9p7xqONEA=
Subject key identifier: 3E:FF:7E:30:38:B3:B0:B7:17:57:57:54:AA:62:12:F3:38:57:16:11
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6BFB3D43ABE2D84F38516F0E5BC87FCA83754B1F
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134312e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:19:34 +0000
ROA not before: Sat 08 Jan 2022 17:14:34 +0000
ROA not after: Sun 08 Jan 2023 17:19:34 +0000
asID: 24203
IP address blocks: 140.213.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:fb:3d:43:ab:e2:d8:4f:38:51:6f:0e:5b:c8:7f:ca:83:75:4b:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:14:34 2022 GMT
Not After : Jan 8 17:19:34 2023 GMT
Subject: CN=3082010A0282010100B8AA18EF18D92C4E58B17404981169A1B9E53E7BBD17CE491D1388DE4C001BFCFB243DDF3903F08D63909E646E0137AE3E15B3D6330CD20AECDBD1D75F031B3A9087525FB5B9E0128CB79EE08C3B21C3E495406433CAC2617A14121DA788823E603D17C3939F3D35652DCE3BB012DE7BF3F43C908014250C5180225B0C24F27274BC7DE78AD2C29A899ABE48CB79290712E28E603B0F74592A897AEDAD33542BA4842BF6D33195311E30FAEA3B56E8D9581B459242FB9904647C9791BFD7E3A88207396AAEC376918E50F1BEAF68D92F445937DCE74CFF59F840319261DEB438A769D498A8C135C11B471C45180EC1FEF3F162CFD01A2DFFC935C0E142C695CF0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:18:ef:18:d9:2c:4e:58:b1:74:04:98:11:
69:a1:b9:e5:3e:7b:bd:17:ce:49:1d:13:88:de:4c:
00:1b:fc:fb:24:3d:df:39:03:f0:8d:63:90:9e:64:
6e:01:37:ae:3e:15:b3:d6:33:0c:d2:0a:ec:db:d1:
d7:5f:03:1b:3a:90:87:52:5f:b5:b9:e0:12:8c:b7:
9e:e0:8c:3b:21:c3:e4:95:40:64:33:ca:c2:61:7a:
14:12:1d:a7:88:82:3e:60:3d:17:c3:93:9f:3d:35:
65:2d:ce:3b:b0:12:de:7b:f3:f4:3c:90:80:14:25:
0c:51:80:22:5b:0c:24:f2:72:74:bc:7d:e7:8a:d2:
c2:9a:89:9a:be:48:cb:79:29:07:12:e2:8e:60:3b:
0f:74:59:2a:89:7a:ed:ad:33:54:2b:a4:84:2b:f6:
d3:31:95:31:1e:30:fa:ea:3b:56:e8:d9:58:1b:45:
92:42:fb:99:04:64:7c:97:91:bf:d7:e3:a8:82:07:
39:6a:ae:c3:76:91:8e:50:f1:be:af:68:d9:2f:44:
59:37:dc:e7:4c:ff:59:f8:40:31:92:61:de:b4:38:
a7:69:d4:98:a8:c1:35:c1:1b:47:1c:45:18:0e:c1:
fe:f3:f1:62:cf:d0:1a:2d:ff:c9:35:c0:e1:42:c6:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FF:7E:30:38:B3:B0:B7:17:57:57:54:AA:62:12:F3:38:57:16:11
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.141.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:52:08:4e:cd:38:66:d9:12:f9:43:df:1d:42:c8:75:83:01:
17:b8:bf:63:a4:0c:8f:ac:e9:06:63:97:9e:ab:53:87:5b:c7:
3f:c9:1d:d2:b7:ab:a0:55:b2:56:36:d3:88:c6:3a:00:4e:3c:
35:fe:53:a4:c8:49:65:74:f9:8d:f1:47:f1:28:ec:cd:b1:19:
36:d8:b9:d0:63:10:2d:82:1e:dd:2a:07:5e:c6:14:03:38:ca:
8c:77:4e:90:18:04:54:dc:4a:6d:1d:f5:cc:35:09:b9:78:62:
27:2c:6d:56:43:ff:d3:73:c9:a7:70:65:06:1e:66:df:1c:88:
18:7c:89:cc:71:f7:83:7d:ee:2d:92:1e:bd:a5:1c:14:52:2e:
60:6b:b5:b8:ba:9b:15:2c:bf:7d:fd:08:fd:d4:9a:3e:63:07:
c7:b1:24:66:58:ba:f8:dc:07:fa:b7:27:78:6c:15:d4:7a:ac:
1f:2e:64:30:9d:c7:36:9e:4d:cf:62:63:8a:81:2d:a4:21:66:
6e:cc:e6:76:44:15:c5:53:1c:87:89:d2:4c:f3:f5:5d:69:0e:
b8:dd:b5:e4:45:31:8d:c4:dc:80:75:9d:42:bd:77:c3:ac:34:
8c:a8:ae:25:6b:cf:a7:b8:de:11:ff:55:1d:f7:9a:00:79:c5:
74:b6:de:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org