Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3134332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: /099r8iqbSsCtBuA+DZtdRPi5i+LAQNIAkJKVaNlLwI=
Subject key identifier: 8B:30:A5:61:71:B5:CA:77:4A:25:10:33:F3:28:14:96:7C:D2:F3:0E
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 47B3E24BFFA9AF4F78706B772E1FC2A97673230D
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134332e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:01 +0000
ROA not before: Wed 20 Apr 2022 04:55:01 +0000
ROA not after: Wed 19 Apr 2023 05:00:01 +0000
asID: 24203
IP address blocks: 140.213.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:b3:e2:4b:ff:a9:af:4f:78:70:6b:77:2e:1f:c2:a9:76:73:23:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:01 2022 GMT
Not After : Apr 19 05:00:01 2023 GMT
Subject: CN=8B30A56171B5CA774A251033F32814967CD2F30E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:27:be:90:bc:77:44:be:20:c6:a0:a5:bc:
7c:ab:27:1f:f2:ee:53:e6:a2:8b:a8:84:65:54:7b:
9f:cb:aa:c8:be:8d:a0:ea:c9:58:50:19:d3:30:b5:
84:2c:5a:ad:dc:cf:4e:87:d5:a1:fa:d7:29:20:b4:
a2:8a:46:4a:b3:b1:e5:07:b0:b8:fc:dd:e9:2b:0e:
d0:f7:ff:a2:6a:d1:c5:d9:be:6f:32:a5:0f:99:bb:
83:29:4c:2a:ec:57:e9:76:d5:cf:9a:ac:94:2e:4b:
4a:65:65:90:47:a8:1a:5a:38:8e:ce:9e:de:57:77:
11:37:38:59:3d:4a:ba:42:ee:c8:05:f2:22:2b:ad:
e0:fe:d6:75:96:db:04:c3:49:1c:dd:fe:76:39:d0:
3b:77:58:d0:c0:38:b5:44:3a:44:22:ba:0d:b1:28:
b1:ad:21:e8:19:15:6e:74:6b:60:24:b6:77:7e:f2:
c1:51:b9:04:22:3f:b5:c3:cd:69:35:23:41:85:f5:
e8:c7:dd:6a:b6:2d:85:05:b3:de:00:af:e4:3f:45:
41:4e:52:f7:c5:c1:d6:c4:d1:31:5e:63:24:5a:7d:
29:95:03:b8:37:68:9a:14:4a:d8:13:1b:99:80:95:
e8:b3:84:cf:e9:b8:51:32:2d:92:0c:1c:5e:44:47:
9e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:30:A5:61:71:B5:CA:77:4A:25:10:33:F3:28:14:96:7C:D2:F3:0E
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.143.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:c2:33:0f:be:1d:ad:1d:b2:3d:dd:9c:0e:27:0b:ba:20:e8:
f8:89:73:9b:bf:7f:8f:d9:39:e5:17:e6:03:8e:03:84:b2:a3:
94:67:a4:50:18:a2:f2:1d:75:37:c3:7d:cc:62:aa:e2:92:12:
a5:fd:f7:b5:9d:bc:d8:ec:d3:f3:6b:a1:8a:98:17:88:72:13:
28:c3:6e:f9:f0:7e:0e:69:06:e7:5e:a4:b3:f2:17:12:af:24:
43:d2:59:aa:21:65:46:22:7e:9d:53:10:7b:8c:dc:83:a4:98:
4b:2f:8c:32:07:eb:ec:1c:55:96:f9:e9:bf:2e:31:ed:2d:ed:
e6:34:52:87:b7:1f:58:38:b2:e0:e0:18:7d:bd:c3:5f:12:c6:
e4:47:5a:64:fc:25:47:36:2c:6f:c7:61:28:79:5f:0a:32:76:
c4:e1:1b:9b:65:f1:12:a8:98:37:fc:c3:4b:c0:ea:8b:1b:58:
0a:a9:13:56:f6:94:1c:64:0a:c1:ae:3d:12:29:3e:b4:fe:c6:
dc:04:2d:bc:61:3d:b7:d5:8f:10:3f:87:21:4d:f7:7d:a1:6e:
af:17:f8:f6:73:0b:b2:dc:80:fa:1f:cc:5f:f4:d2:90:25:25:
08:5c:32:71:c9:d9:c5:bb:e7:4b:83:be:39:84:4b:10:a0:18:
84:5c:72:60
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUR7PiS/+pr094cGt3Lh/CqXZzIw0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDFaFw0yMzA0MTkwNTAwMDFaMDMxMTAvBgNV
BAMTKDhCMzBBNTYxNzFCNUNBNzc0QTI1MTAzM0YzMjgxNDk2N0NEMkYzMEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzdie+kLx3RL4gxqClvHyrJx/y
7lPmoouohGVUe5/Lqsi+jaDqyVhQGdMwtYQsWq3cz06H1aH61ykgtKKKRkqzseUH
sLj83ekrDtD3/6Jq0cXZvm8ypQ+Zu4MpTCrsV+l21c+arJQuS0plZZBHqBpaOI7O
nt5XdxE3OFk9SrpC7sgF8iIrreD+1nWW2wTDSRzd/nY50Dt3WNDAOLVEOkQiug2x
KLGtIegZFW50a2Aktnd+8sFRuQQiP7XDzWk1I0GF9ejH3Wq2LYUFs94Ar+Q/RUFO
UvfFwdbE0TFeYyRafSmVA7g3aJoUStgTG5mAleizhM/puFEyLZIMHF5ER553AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUizClYXG1yndKJRAz8ygUlnzS8w4wHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM0MzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNWPMA0GCSqG
SIb3DQEBCwUAA4IBAQDFwjMPvh2tHbI93ZwOJwu6IOj4iXObv3+P2TnlF+YDjgOE
sqOUZ6RQGKLyHXU3w33MYqrikhKl/fe1nbzY7NPza6GKmBeIchMow2758H4OaQbn
XqSz8hcSryRD0lmqIWVGIn6dUxB7jNyDpJhLL4wyB+vsHFWW+em/LjHtLe3mNFKH
tx9YOLLg4Bh9vcNfEsbkR1pk/CVHNixvx2EoeV8KMnbE4RubZfESqJg3/MNLwOqL
G1gKqRNW9pQcZArBrj0SKT60/sbcBC28YT231Y8QP4chTfd9oW6vF/j2cwuy3ID6
H8xf9NKQJSUIXDJxydnFu+dLg745hEsQoBiEXHJg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org