Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3135312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: TJboUiZpaD7UfBlHlzaf+XD3liSGYrOwCZrHQ3VmC6E=
Subject key identifier: 60:A7:D8:69:36:7F:CE:B2:2A:9B:FB:0F:66:E6:8F:A8:C0:0B:EF:CE
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 67A929A0A488A8AD5E476F68F399C87B699A461D
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135312e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:03 +0000
ROA not before: Wed 20 Apr 2022 04:55:03 +0000
ROA not after: Wed 19 Apr 2023 05:00:03 +0000
asID: 24203
IP address blocks: 140.213.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:a9:29:a0:a4:88:a8:ad:5e:47:6f:68:f3:99:c8:7b:69:9a:46:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:03 2022 GMT
Not After : Apr 19 05:00:03 2023 GMT
Subject: CN=60A7D869367FCEB22A9BFB0F66E68FA8C00BEFCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:40:dc:88:bb:21:80:cb:02:97:6f:96:1c:9c:
00:5c:b5:12:ba:98:99:c6:06:11:13:f5:97:18:d8:
b4:d3:4a:33:30:91:47:3a:3a:ab:a3:e4:27:c5:68:
21:38:71:ca:c3:e4:51:ff:e5:9d:15:26:da:5f:9e:
33:fa:b8:88:39:99:30:ea:44:4e:9d:9e:6d:b3:50:
ab:7c:a3:04:e5:c6:8c:60:64:87:c6:c9:2c:78:69:
e3:9e:bf:28:dc:a4:68:d7:7a:ca:9e:40:7e:2a:13:
f4:7f:23:84:32:af:7e:0c:a6:76:2a:f8:14:59:b8:
bf:9c:95:92:1a:3f:9b:77:c3:c5:6a:18:ad:74:ef:
74:4b:6b:0f:ec:e5:9f:69:0d:02:5c:67:dd:52:3c:
1e:b1:ab:db:5b:6c:61:b7:1c:a8:d3:f0:0a:75:c4:
ff:35:cd:8d:be:40:ab:92:fd:55:9f:35:a8:11:b6:
10:5b:d5:0e:fc:86:2e:b7:d4:53:2e:4c:fa:59:09:
5f:03:b5:41:1f:72:97:3b:44:da:8e:fb:27:36:e8:
fe:03:62:84:1c:0f:94:c5:e1:35:c5:f8:29:ee:d4:
00:54:e8:b5:8e:3a:62:4a:76:56:8e:46:5f:79:16:
3a:40:92:ee:b6:e7:e7:98:02:14:ff:ca:9f:fb:cc:
b9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A7:D8:69:36:7F:CE:B2:2A:9B:FB:0F:66:E6:8F:A8:C0:0B:EF:CE
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.151.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ed:33:08:c1:90:ff:fe:9b:a4:f7:25:90:06:d3:34:2c:c1:
6e:10:bb:c5:eb:a9:18:e2:c3:27:ef:be:67:38:ce:91:ff:e4:
d9:e3:db:22:6f:20:10:03:6e:75:fd:cf:fe:6e:d1:9a:ee:f6:
9f:76:99:33:3a:0e:40:36:c8:a4:05:d5:93:77:8a:35:54:e6:
39:30:b7:9b:c4:48:9c:ff:cb:70:0f:c4:1c:c1:aa:32:af:72:
c0:1a:fc:2f:bf:89:35:c6:c6:a3:00:85:1b:c3:51:dd:a6:5f:
b0:c7:49:eb:01:0f:b3:dc:8a:7d:c8:c7:89:ac:b3:c6:20:e8:
1e:55:ff:94:f0:9a:fe:1a:ed:38:9c:8b:98:7e:85:12:74:ab:
5b:65:14:fa:30:ab:90:e0:41:f0:61:d4:87:ea:2c:75:83:f4:
d3:ea:11:9b:08:39:90:88:62:79:d1:10:c0:b4:4d:05:18:7a:
4a:1f:ee:e6:c5:4d:46:12:13:58:04:26:cb:f8:6f:ea:f5:40:
e4:ef:51:ac:e9:38:ee:99:ae:e0:b3:02:68:22:e7:f4:b3:4f:
a9:17:1b:aa:92:8f:73:8f:83:d0:b4:52:8b:5d:2a:76:4d:c3:
ac:8c:44:40:d5:de:b4:99:c5:75:7b:4f:f3:28:09:63:66:80:
8a:0e:4a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org