Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135342e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3135342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: iYVCimTKyoCVZvYD+s9LDwA3XEoIi3/sv2VPIaQfiak=
Subject key identifier: D1:B5:D2:E3:00:E1:DF:44:00:10:5E:F3:43:56:91:21:13:55:5A:BF
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 2A88DF2AD0D21B260441F4395A573CE11AF760F7
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135342e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:05 +0000
ROA not before: Wed 20 Apr 2022 04:55:05 +0000
ROA not after: Wed 19 Apr 2023 05:00:05 +0000
asID: 24203
IP address blocks: 140.213.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:88:df:2a:d0:d2:1b:26:04:41:f4:39:5a:57:3c:e1:1a:f7:60:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:05 2022 GMT
Not After : Apr 19 05:00:05 2023 GMT
Subject: CN=D1B5D2E300E1DF4400105EF34356912113555ABF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:85:80:20:ae:8d:af:db:fa:a8:e1:85:41:ef:
65:e4:7f:24:cf:b7:17:bc:9d:47:54:1b:a8:3b:74:
4d:9c:8b:91:65:9d:af:86:4f:e5:91:f4:d1:13:f0:
1b:b2:26:ce:5c:0f:05:e7:d2:3f:0b:06:69:76:a1:
06:b3:56:be:bc:63:ad:45:19:36:13:94:ed:82:21:
2f:70:f3:6e:b0:b0:74:15:69:6b:24:b1:96:7f:20:
94:12:15:e8:90:70:ce:c6:f5:f3:85:65:ff:c7:2d:
06:34:72:2b:15:82:a4:27:a7:57:f8:a3:48:71:73:
16:08:69:7b:e7:53:ba:39:31:03:9b:35:66:b2:c7:
78:10:b5:ca:6c:40:89:1d:9d:1a:08:fc:a8:1b:dd:
d1:51:bc:82:fe:7d:5c:de:c8:f1:74:bc:b0:f0:ca:
e7:e1:bd:0c:6e:d3:f4:83:2c:0e:b0:41:3f:2b:e3:
60:06:b9:b5:f1:af:33:eb:66:90:17:84:30:82:8f:
e4:7c:15:43:63:3d:e7:31:74:98:00:6a:89:2c:17:
73:96:b0:4f:71:8c:58:17:4f:d6:f2:68:24:3a:ac:
64:3c:21:88:1e:b3:a1:7b:2c:86:f6:a6:62:7a:76:
1f:e1:6b:6e:6e:87:98:d5:a9:d5:16:ad:5b:44:9a:
4c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B5:D2:E3:00:E1:DF:44:00:10:5E:F3:43:56:91:21:13:55:5A:BF
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.154.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:23:94:c8:32:72:1c:fc:df:be:bc:15:af:0d:59:b9:75:97:
90:b9:b2:26:87:ea:66:3b:e3:a5:27:16:af:ac:29:88:44:02:
79:bd:86:1c:b4:b8:0d:4f:20:d3:7b:96:34:6a:97:fe:56:ac:
55:e5:10:b4:0b:72:dc:ba:86:55:ed:74:a8:fc:57:0e:14:31:
4a:3c:12:b5:1d:7e:ce:dc:87:ce:ba:b2:b5:fd:07:4d:8d:87:
cb:39:7b:1a:98:0b:53:04:82:78:2f:e6:f8:9d:bb:19:45:73:
0d:34:d5:4b:b9:f7:d2:7a:59:53:48:17:8a:d8:23:03:a7:e8:
16:86:8e:89:ce:94:fb:e6:f5:a4:62:b0:0a:fa:c6:e5:9e:ea:
f2:31:af:b6:ba:45:99:82:b0:6f:48:8b:16:07:07:58:64:04:
37:43:de:39:3c:e3:ff:e4:82:09:8a:e0:5a:2a:13:c1:53:a7:
bb:54:a4:4a:a7:9d:59:e4:5a:ed:28:1c:7f:9c:f1:1b:d1:b1:
4e:69:d5:33:34:ad:2b:d1:b0:3a:1b:94:9a:83:60:28:31:2f:
1f:16:03:7f:71:1f:5f:e1:cf:04:f3:17:2a:9e:fc:12:67:25:
8b:33:0f:77:4a:d7:5b:a4:1a:98:a0:38:06:a8:c4:27:b0:03:
4a:1e:be:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org