Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3134392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: j5SCOjHx73byz8eqbvxzCBfroyIZU4AKvNnQ7D4HZCo=
Subject key identifier: ED:2A:00:63:5E:8B:71:3E:F6:56:A0:AB:A7:FA:B8:37:8E:DD:94:A8
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 14C39FC49E1C0980C67F7658D1DF106E94EAEE21
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134392e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:02 +0000
ROA not before: Wed 20 Apr 2022 04:55:02 +0000
ROA not after: Wed 19 Apr 2023 05:00:02 +0000
asID: 24203
IP address blocks: 140.213.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:c3:9f:c4:9e:1c:09:80:c6:7f:76:58:d1:df:10:6e:94:ea:ee:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:02 2022 GMT
Not After : Apr 19 05:00:02 2023 GMT
Subject: CN=ED2A00635E8B713EF656A0ABA7FAB8378EDD94A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:8c:3c:a1:75:27:d9:f5:f0:5d:22:7a:98:
fa:0f:f6:9d:17:53:ec:69:88:49:99:ef:69:70:32:
85:03:66:5f:b2:5d:ac:3e:d9:ef:df:83:44:7b:0e:
8d:85:10:f9:90:42:9f:f5:c8:0c:a1:e9:e4:ae:0d:
fb:86:77:8a:e6:92:fb:39:ee:7e:7e:6f:ae:98:fd:
bd:55:4f:3c:d3:35:2b:3d:f5:63:49:70:e2:1b:9d:
82:a1:19:38:44:e3:e4:a1:97:27:9a:53:6f:64:64:
41:b7:73:a0:40:5f:f6:9b:a3:7b:31:3a:e9:0d:a8:
fc:8d:fd:de:29:b7:fb:1f:ad:de:34:0a:f4:b3:42:
97:b2:a3:37:3c:0e:62:1c:6b:a4:57:33:5e:40:0a:
dc:49:3d:f2:c3:98:1d:8b:d8:a6:c2:3b:cb:2a:c4:
f7:b3:96:87:0b:73:c7:d4:7b:b3:af:3a:75:56:8f:
28:68:1a:17:63:08:72:9e:c4:bf:0f:93:1e:c8:fa:
96:86:85:e2:1a:0a:82:0c:88:81:c5:d8:4c:80:59:
d4:66:75:5f:ed:99:db:e5:04:94:f6:45:f4:27:31:
c5:89:3f:5a:b8:47:0c:cd:5b:64:53:9f:7b:a0:56:
7c:51:aa:99:a3:78:1d:cc:e5:2a:db:a3:7b:c3:d4:
ce:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2A:00:63:5E:8B:71:3E:F6:56:A0:AB:A7:FA:B8:37:8E:DD:94:A8
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3134392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.149.0/24
Signature Algorithm: sha256WithRSAEncryption
39:0c:d3:b7:25:10:b6:1d:32:9c:5c:94:21:0c:a7:b4:72:93:
cd:21:b3:10:55:0c:a1:c6:4d:31:ea:7d:4d:b2:f3:17:18:84:
62:70:8f:41:5f:29:40:46:48:51:dd:86:a0:17:f7:ee:34:c4:
ae:d3:9f:37:e1:3b:c0:79:74:d9:dd:b9:1b:80:c0:77:31:24:
62:cb:32:40:1c:e9:62:a6:ca:8b:8f:09:0b:d8:e6:ae:bf:e1:
4b:13:56:ee:3f:cf:ef:a1:ba:a7:c7:1e:8e:d8:8e:11:6f:ab:
81:11:e0:c4:60:6c:d6:a2:6b:05:5b:5d:ec:fb:a7:9f:d6:78:
37:37:1f:2a:9a:87:46:64:ed:fa:7f:1e:55:41:ae:3f:be:56:
a1:a5:43:9b:7b:df:c7:05:c7:5c:16:15:ce:25:bb:a5:a5:bc:
61:08:d6:47:39:fb:b5:62:fb:4d:d3:ca:62:93:40:6f:ba:bc:
ac:bb:1c:e7:2e:39:f3:83:ff:35:97:f1:16:cb:33:54:f2:02:
71:e9:2a:e3:35:39:ba:b0:1b:96:4c:0d:4d:c5:10:90:ac:39:
6c:53:d0:41:99:cb:c8:51:86:c7:0f:6b:8c:96:41:39:24:02:
19:96:c2:b2:e0:af:39:0a:6f:35:53:32:fa:67:23:8f:db:d1:
56:b2:9c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org