Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3135362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: ndUthPKghKaB9lLysVrSdCXnFncizHAO4BFXKD5EqfA=
Subject key identifier: 8C:CD:15:6F:D4:85:DF:B1:F4:F0:91:4D:97:06:E5:DE:C4:C9:F7:FB
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6D4ED5729A030B132FCF04ACA5E91C658A375B5A
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135362e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:00 +0000
ROA not before: Wed 20 Apr 2022 04:55:00 +0000
ROA not after: Wed 19 Apr 2023 05:00:00 +0000
asID: 24203
IP address blocks: 140.213.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:4e:d5:72:9a:03:0b:13:2f:cf:04:ac:a5:e9:1c:65:8a:37:5b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:00 2022 GMT
Not After : Apr 19 05:00:00 2023 GMT
Subject: CN=8CCD156FD485DFB1F4F0914D9706E5DEC4C9F7FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:11:a2:44:f6:6e:66:50:3b:e2:cc:08:26:1a:
46:9f:09:16:ed:60:7e:1d:95:34:11:11:f4:4f:d2:
49:06:19:6e:fe:8a:18:a7:67:6f:92:b5:75:00:ef:
67:32:ac:e0:2a:b1:c4:dd:c7:28:7f:4b:3f:2a:ee:
73:da:59:f1:f6:56:8c:05:89:36:67:00:a2:af:90:
81:fe:d1:45:6e:e1:2a:30:c7:e4:8e:b4:3c:82:f7:
1e:42:64:29:3b:c7:a2:5b:8f:ce:21:3e:48:2b:ce:
22:6e:fa:57:70:4a:50:a1:d8:96:90:62:57:c3:db:
c3:26:ba:e8:50:e7:43:a9:08:b8:bc:24:2d:8f:23:
af:ad:37:f6:27:9e:51:df:eb:e9:aa:42:12:aa:4b:
3a:00:fb:8b:f6:18:b5:e5:90:54:f9:92:6c:02:f3:
c3:a0:c1:87:b3:99:2b:51:c1:a9:d2:67:3b:49:89:
11:0a:dd:62:c6:3d:1b:b8:06:82:d6:55:71:61:bf:
3d:12:50:3c:30:03:85:b2:6a:d5:cf:f0:54:ea:91:
12:ce:03:f1:72:1e:a2:80:1b:2d:21:95:11:d0:a7:
f5:f8:52:0b:93:b2:75:c5:67:07:a4:42:ab:a1:0b:
0b:3a:ef:72:b6:e0:ed:1e:d9:9b:7c:86:c3:08:d3:
54:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CD:15:6F:D4:85:DF:B1:F4:F0:91:4D:97:06:E5:DE:C4:C9:F7:FB
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.156.0/24
Signature Algorithm: sha256WithRSAEncryption
37:32:91:76:45:e0:81:05:62:72:d2:ff:23:47:0b:13:6f:6f:
cc:94:e9:c3:b2:ac:a7:8a:a4:00:be:63:1c:a2:62:04:0f:31:
53:3f:47:6b:67:3d:70:6f:1a:d1:73:d5:a8:9d:ab:c4:c5:36:
07:ba:bc:39:6e:f2:65:b7:ac:7a:67:b3:60:c5:e5:dc:08:17:
60:69:99:46:d7:03:4a:80:b6:d4:93:a9:45:eb:e4:09:a5:50:
d7:90:80:00:13:ef:45:6c:b8:74:54:ab:1e:d9:a7:61:83:d5:
a3:23:73:37:ad:a8:0b:2e:08:e9:ba:d5:66:ee:3f:37:59:de:
b8:7f:d8:05:9b:04:0b:09:c0:02:be:3f:0a:e9:57:f9:e0:7c:
5d:8b:d4:6d:f5:75:1f:fd:d4:8f:04:d9:66:00:53:3b:9e:30:
b6:51:92:a7:6b:aa:53:24:3b:2e:cc:7e:9b:3b:00:27:73:8f:
45:ab:d3:94:67:e2:75:4a:3c:3a:46:3c:14:48:9a:ac:2e:bb:
c0:fc:dc:88:f9:cb:49:32:bd:0d:70:20:51:b7:5b:fd:80:b2:
8e:21:4b:50:6c:45:de:ca:a3:79:16:fc:4e:f8:68:a0:f2:c6:
93:87:fb:d6:ad:8e:39:08:cc:b5:c0:38:e4:35:d6:5f:94:09:
d0:88:bf:23
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUbU7VcpoDCxMvzwSspekcZYo3W1owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDBaFw0yMzA0MTkwNTAwMDBaMDMxMTAvBgNV
BAMTKDhDQ0QxNTZGRDQ4NURGQjFGNEYwOTE0RDk3MDZFNURFQzRDOUY3RkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYEaJE9m5mUDvizAgmGkafCRbt
YH4dlTQREfRP0kkGGW7+ihinZ2+StXUA72cyrOAqscTdxyh/Sz8q7nPaWfH2VowF
iTZnAKKvkIH+0UVu4Sowx+SOtDyC9x5CZCk7x6Jbj84hPkgrziJu+ldwSlCh2JaQ
YlfD28MmuuhQ50OpCLi8JC2PI6+tN/YnnlHf6+mqQhKqSzoA+4v2GLXlkFT5kmwC
88OgwYezmStRwanSZztJiREK3WLGPRu4BoLWVXFhvz0SUDwwA4WyatXP8FTqkRLO
A/FyHqKAGy0hlRHQp/X4UguTsnXFZwekQquhCws673K24O0e2Zt8hsMI01QvAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUjM0Vb9SF37H08JFNlwbl3sTJ9/swHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM1MzYyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNWcMA0GCSqG
SIb3DQEBCwUAA4IBAQA3MpF2ReCBBWJy0v8jRwsTb2/MlOnDsqyniqQAvmMcomIE
DzFTP0drZz1wbxrRc9WonavExTYHurw5bvJlt6x6Z7NgxeXcCBdgaZlG1wNKgLbU
k6lF6+QJpVDXkIAAE+9FbLh0VKse2adhg9WjI3M3ragLLgjputVm7j83Wd64f9gF
mwQLCcACvj8K6Vf54Hxdi9Rt9XUf/dSPBNlmAFM7njC2UZKna6pTJDsuzH6bOwAn
c49Fq9OUZ+J1Sjw6RjwUSJqsLrvA/NyI+ctJMr0NcCBRt1v9gLKOIUtQbEXeyqN5
FvxO+Gig8saTh/vWrY45CMy1wDjkNdZflAnQiL8j
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org