Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3134382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: uuasZ7rZEh8Ya3wg8mr+wkkJxz5CdYL8vPjabRtbYKU=
Subject key identifier: A5:A3:FE:A6:85:11:06:08:6E:F2:F1:43:43:0D:78:D4:BF:14:41:19
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 1AF325D0A08DD44A9F32BB9033565005CDD64262
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:03 +0000
ROA not before: Wed 20 Apr 2022 04:55:03 +0000
ROA not after: Wed 19 Apr 2023 05:00:03 +0000
asID: 24203
IP address blocks: 140.213.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:f3:25:d0:a0:8d:d4:4a:9f:32:bb:90:33:56:50:05:cd:d6:42:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:03 2022 GMT
Not After : Apr 19 05:00:03 2023 GMT
Subject: CN=A5A3FEA6851106086EF2F143430D78D4BF144119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:79:79:86:ed:79:1d:13:2b:c6:5e:81:44:8b:
60:3b:f7:38:6e:b1:7f:b1:0c:d0:17:e5:4d:ba:31:
79:80:08:f2:2b:3f:04:f4:66:f3:63:10:e5:5a:61:
7c:92:95:a9:d4:b3:42:7b:f6:cc:cf:88:f4:93:58:
e7:f7:47:e1:b2:3a:0a:b3:fe:2a:57:2d:e0:b7:15:
38:5e:ac:f5:0d:6f:e8:8f:d0:38:55:1a:e7:66:20:
f4:45:42:e3:1d:e9:cc:43:a8:a8:60:5a:3f:58:2c:
e5:12:1e:b3:40:eb:28:a5:69:62:66:dd:cc:4f:3c:
ae:5f:34:2b:9f:25:85:55:df:9d:e0:9e:4e:00:19:
06:e7:68:29:a9:a3:88:80:a0:46:77:8b:9f:bb:a9:
f7:01:e3:90:07:56:ed:7f:0c:df:c7:61:ed:f7:a2:
d1:d4:4a:0f:3a:79:21:c6:84:72:49:f9:54:fe:8e:
55:77:a0:f2:81:07:9d:d2:06:35:16:73:5e:23:3c:
3d:08:93:46:94:8b:b3:34:04:5e:43:98:f1:3c:5d:
a0:66:5d:4c:ba:8c:9c:24:69:bf:81:2e:c6:e4:f1:
32:b2:1a:78:a9:e7:18:a8:74:37:da:12:d2:b1:69:
e8:fe:b5:66:25:54:3e:a1:45:45:3d:e0:ca:f7:12:
4d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A3:FE:A6:85:11:06:08:6E:F2:F1:43:43:0D:78:D4:BF:14:41:19
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.148.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:65:88:e6:3e:25:a6:be:fc:56:5c:29:9c:aa:15:26:9f:e9:
ed:60:f9:a0:2b:96:39:54:df:70:7c:a8:a5:29:97:3c:58:ca:
38:74:e4:f1:d4:24:e1:2a:99:64:89:fb:54:f1:d6:bb:d1:91:
74:98:f0:ae:e5:39:56:8b:6b:83:6b:e9:c0:9a:d2:33:5e:da:
5a:b2:8f:c5:d7:8b:8c:cc:37:10:a9:78:52:48:06:a7:56:47:
c9:67:0e:8d:9e:fd:c7:d6:99:69:f8:96:b9:fc:b7:92:be:2f:
c7:5f:82:01:c3:79:0b:9f:4d:5d:2e:53:08:27:48:93:5f:41:
09:96:77:1e:d4:3a:7d:a6:5e:5e:b9:1a:02:50:9c:78:e7:17:
0d:12:3b:61:49:88:57:82:a1:ba:3c:7f:5a:9f:1d:fb:95:85:
a5:4d:21:49:90:79:3e:27:30:f9:d9:7e:87:a4:f4:ec:cf:80:
31:f1:9d:f7:f2:fe:a1:c2:00:80:d9:69:60:32:fc:12:7d:26:
3c:5a:18:41:e4:a1:b1:cd:3f:9f:bb:d4:87:06:48:a0:9d:8b:
41:cf:7f:a1:b2:67:10:c6:e9:d5:72:51:7e:d8:56:18:d6:be:
65:e0:d7:ea:a0:be:ec:f9:2b:ea:6e:46:b2:22:f0:a9:f5:6e:
a7:06:3f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org