Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3135332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: e8EpnSMLrzdjFIC4OR++ySEHr7GhP+yiCoOKPWmSk6o=
Subject key identifier: 83:34:C6:33:FC:B0:50:4D:9C:71:94:3B:E0:AD:C0:82:1F:AF:B1:44
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5DC60F82B481F65568DD0C95A245A327F10BA7F6
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135332e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:01 +0000
ROA not before: Wed 20 Apr 2022 04:55:01 +0000
ROA not after: Wed 19 Apr 2023 05:00:01 +0000
asID: 24203
IP address blocks: 140.213.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:c6:0f:82:b4:81:f6:55:68:dd:0c:95:a2:45:a3:27:f1:0b:a7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:01 2022 GMT
Not After : Apr 19 05:00:01 2023 GMT
Subject: CN=8334C633FCB0504D9C71943BE0ADC0821FAFB144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:60:a3:25:97:47:6e:7a:b4:e0:7d:bd:e1:54:
90:d3:f0:2b:46:a8:d5:e0:fd:1f:4c:11:d3:cb:c0:
9d:b5:b1:eb:6a:d6:98:2a:ce:eb:aa:0a:d1:51:76:
14:da:d3:8d:86:9b:54:3e:dc:46:15:1f:a8:29:71:
a3:8c:fb:27:5c:4a:f0:0f:65:77:10:a2:95:72:37:
50:ab:ec:8a:38:f1:17:47:c6:6a:03:d7:85:9f:34:
01:90:1d:a1:63:2e:a6:06:8d:57:6a:21:28:c4:63:
49:62:d4:1d:45:b6:13:aa:46:3b:18:fc:97:ff:6c:
e3:5d:7b:d5:47:39:07:79:01:86:ea:3d:3c:ac:cb:
19:58:cf:da:73:90:2e:25:6b:68:ae:06:10:c3:10:
bc:39:64:7e:da:5b:0a:41:f6:66:16:13:4b:3b:ba:
96:4f:08:23:62:dc:92:6b:c1:93:a4:06:4f:ad:63:
bb:31:13:e7:1d:b2:61:ef:a7:40:53:9b:90:08:b2:
d7:a9:4c:c3:5d:f9:43:74:0a:e1:71:3b:6e:13:b3:
f9:d1:e2:13:b7:76:73:19:55:dc:e7:12:71:fc:99:
f8:2c:49:c2:65:6b:5d:6f:5c:8c:46:0d:dc:9c:f2:
89:93:6d:4e:b8:2c:70:86:36:ca:5b:c0:ef:10:68:
af:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:34:C6:33:FC:B0:50:4D:9C:71:94:3B:E0:AD:C0:82:1F:AF:B1:44
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.153.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:86:23:d5:5c:a1:73:1a:95:b4:70:ff:d2:73:3d:39:b8:df:
73:5d:be:5f:d1:6a:4d:2a:cd:83:37:9a:3a:0b:23:d1:6d:25:
ea:4e:7b:ea:05:61:7c:e4:54:f7:c2:2b:f8:9a:9b:f8:42:3f:
b3:52:87:e7:1e:cd:54:f1:81:7e:4d:db:ac:d5:a6:16:1c:46:
29:b9:94:bc:d0:53:29:94:3a:e5:24:71:12:f4:31:1a:07:31:
0f:91:3c:7d:73:42:c0:b8:49:eb:33:24:75:54:a8:cf:ea:54:
15:c0:aa:35:98:17:e3:df:29:e5:e9:36:07:62:21:2d:aa:a6:
9d:7d:82:90:8d:2f:0f:15:0e:fe:30:2d:ff:23:9a:fc:c1:57:
cb:5a:ad:f1:05:ba:da:31:b5:d6:30:08:d0:3a:04:54:87:1a:
b4:a0:63:7b:6a:e9:ee:5a:6b:1d:01:9a:8f:15:97:c6:99:a8:
0d:86:b1:43:5a:03:42:16:b4:f2:a3:c6:54:d0:42:c1:09:41:
bd:67:3a:9f:00:16:ea:3b:cd:74:c8:1b:71:4c:81:a9:f7:d3:
44:d8:18:8e:68:ee:66:62:a7:79:66:15:22:a4:6b:5d:aa:f9:
a1:ac:98:33:c6:e7:4b:89:6e:37:0c:8c:67:63:bf:5c:74:61:
32:34:0c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org