Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3134362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: QjyvFUWqVBTKtHDEAhjO6jtHhv8zB2DyJOFwdSXuSyw=
Subject key identifier: 7F:44:A2:8C:70:3D:C5:87:6F:23:85:6C:BD:F4:46:FB:9B:D7:35:CB
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 59433182943B1180555BBE9BBD616EEF64FAA5BD
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134362e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:04 +0000
ROA not before: Wed 20 Apr 2022 04:55:04 +0000
ROA not after: Wed 19 Apr 2023 05:00:04 +0000
asID: 24203
IP address blocks: 140.213.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:43:31:82:94:3b:11:80:55:5b:be:9b:bd:61:6e:ef:64:fa:a5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:04 2022 GMT
Not After : Apr 19 05:00:04 2023 GMT
Subject: CN=7F44A28C703DC5876F23856CBDF446FB9BD735CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:71:3d:98:13:10:2a:1d:a7:b0:9e:07:59:f3:
52:ea:fc:52:38:a4:08:57:85:58:7e:28:d2:05:c8:
5a:77:30:1b:92:2a:c9:63:47:19:0a:56:6c:de:d4:
e4:cb:8a:d1:86:6f:d7:43:2a:e5:ee:a2:d6:82:47:
96:58:3d:fd:c7:95:ac:da:23:1d:f3:c4:a1:ed:7d:
85:90:77:fc:63:56:f8:bf:90:24:cc:36:55:bb:da:
c9:89:08:b4:7f:e9:83:c6:28:5b:ed:56:c0:a5:5b:
7f:d5:b6:3e:0c:9e:23:bb:4f:b4:10:d6:93:59:dc:
bd:a5:33:64:41:66:00:de:04:e5:39:53:89:07:92:
d2:06:b9:61:2b:8a:69:4d:47:df:f6:cf:38:4e:4e:
32:63:dd:a5:26:0a:2c:10:81:22:b0:6c:a9:f1:0b:
b5:c0:5b:79:ca:c4:df:58:8e:81:ad:fc:ad:88:f5:
b5:74:5d:92:82:a8:6a:cc:57:7f:91:a2:17:5a:43:
e3:c9:46:a3:91:63:07:e2:be:15:43:1b:ec:75:51:
8c:f0:c1:60:1d:60:25:bb:d6:b8:5a:b0:21:34:c7:
3a:96:45:e6:d5:61:5f:e0:05:90:49:2f:0c:b9:0a:
5f:7a:7c:de:69:43:bb:44:6d:ff:fb:c8:ee:53:90:
e0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:44:A2:8C:70:3D:C5:87:6F:23:85:6C:BD:F4:46:FB:9B:D7:35:CB
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.146.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:25:d5:2a:0a:56:bc:92:53:24:fc:e0:07:ea:13:0f:72:3f:
46:a2:99:66:d8:82:e3:4e:ca:88:19:5a:9f:d9:6b:50:b4:7d:
4f:1c:ec:da:ed:26:7c:e2:af:56:4d:01:31:7a:a0:7c:07:fd:
25:0b:ee:b3:4a:b8:19:2f:c9:cf:06:00:7d:98:1c:ed:f1:42:
24:7a:47:84:02:93:f3:0e:c1:1a:1e:89:07:ff:c1:c7:23:94:
23:4e:bc:64:27:2d:d9:34:55:17:11:5d:38:88:8a:78:ba:cf:
bc:2a:b2:a3:30:05:0e:77:d3:a8:d0:1e:a7:96:18:35:04:ce:
d7:a0:42:c9:7b:9e:11:94:60:f7:13:e5:81:f4:68:6c:12:fb:
ba:cb:0b:cb:44:64:1e:06:e8:39:d5:45:76:14:d0:5b:18:d5:
c9:66:46:75:3b:fb:0c:b2:7a:06:65:1a:1a:eb:86:eb:13:2a:
50:94:1e:73:65:8f:80:b3:d3:ad:af:b2:a7:6f:ec:51:f6:5b:
53:3a:1e:07:69:03:67:b1:e2:bf:ff:e8:18:70:56:04:bf:31:
0b:db:4c:1f:48:2e:11:cd:90:52:5c:ad:d8:94:67:56:39:ce:
34:1d:c9:13:bf:67:3d:f6:bc:02:3b:dd:5c:ac:00:19:fe:fd:
18:f0:b5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org