Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3135382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: stsHPN9UnXtjeKkFH/6O7jRbWF8cEJfxHtvBy20pxqY=
Subject key identifier: 88:78:7E:C2:22:EC:E3:2A:F0:CF:7D:37:1C:EF:E4:78:C5:9F:5B:68
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 74231CAA7D3ACFA43E7F145D83D815D4DBF7FE1D
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:06 +0000
ROA not before: Wed 20 Apr 2022 04:55:06 +0000
ROA not after: Wed 19 Apr 2023 05:00:06 +0000
asID: 24203
IP address blocks: 140.213.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:23:1c:aa:7d:3a:cf:a4:3e:7f:14:5d:83:d8:15:d4:db:f7:fe:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:06 2022 GMT
Not After : Apr 19 05:00:06 2023 GMT
Subject: CN=88787EC222ECE32AF0CF7D371CEFE478C59F5B68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8e:50:53:55:d9:9d:c3:f2:10:5b:fc:6d:bb:
7b:43:56:74:b9:53:7f:4e:09:6d:b2:86:be:0e:2f:
34:a9:d8:1e:a5:f6:16:20:e1:ec:1d:1c:74:15:c1:
5d:ed:1a:e8:b1:bc:40:02:08:90:a1:9b:b1:af:9f:
4b:81:02:22:4b:bf:2e:1c:ca:63:07:4f:32:19:1c:
20:8e:f5:22:c3:4d:ee:14:a5:c9:a4:28:cc:b1:72:
7d:73:36:fc:ed:50:56:49:d3:5d:75:32:65:68:8f:
fa:cd:a8:2d:21:e2:7f:44:9f:e7:16:6f:a1:2c:a9:
53:84:e4:21:a9:bf:bc:d4:e6:88:31:36:bc:5f:09:
b0:ef:c1:df:cb:6f:95:e0:aa:1e:5a:bc:33:e0:4a:
cd:5e:1e:79:5d:ab:64:a0:c1:f2:1f:e8:04:f1:81:
54:13:ca:36:3d:9f:ea:14:b3:65:b9:40:6c:68:61:
ab:6e:97:e4:91:f9:40:75:d0:a2:50:37:44:95:81:
72:08:3c:93:dd:95:df:9e:52:37:d1:e6:97:1e:71:
6f:32:aa:b6:f7:85:db:3d:c7:a6:28:64:41:39:c0:
4c:e6:da:74:39:f6:85:34:f8:dc:df:52:57:5d:cc:
cc:45:31:0e:1e:d4:df:0b:ef:57:6b:97:b1:43:0b:
97:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:78:7E:C2:22:EC:E3:2A:F0:CF:7D:37:1C:EF:E4:78:C5:9F:5B:68
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.158.0/24
Signature Algorithm: sha256WithRSAEncryption
36:c2:bc:14:00:a5:9b:0f:33:7f:0e:6d:3e:6c:57:1b:e5:56:
91:41:1f:58:7d:e8:e1:4b:7d:50:57:3f:bf:31:df:6d:44:75:
06:48:97:db:21:2a:00:57:9c:c4:d2:b0:d8:55:9e:4f:bc:ec:
6e:bb:60:34:dd:b2:a6:dc:bb:db:9e:fe:ac:a0:3b:e4:7a:ff:
01:0e:4c:06:d9:2d:41:c4:39:64:c9:2a:a8:53:3f:ee:6e:2d:
ac:58:56:7e:9c:d0:36:6f:f2:a8:96:52:1d:0f:10:4d:f0:36:
1f:85:c9:c7:84:50:b8:7e:12:eb:14:3e:4c:ce:d1:8d:c8:b3:
ed:d7:dd:48:bc:cd:6b:05:6f:e4:7e:d1:7a:0f:75:3d:4a:5a:
05:25:44:48:86:0d:35:cd:6b:cd:c5:fa:97:57:67:9b:47:0d:
a2:75:1b:0d:66:d4:ae:cd:7e:c2:ac:38:f3:92:f9:f2:50:c7:
fb:d5:36:4e:d8:57:0c:4a:a9:0e:2d:34:3f:c6:35:c8:d0:a5:
27:e6:e0:17:ae:98:13:a9:d1:11:e1:40:b0:27:96:b3:c8:d1:
d6:0f:8e:57:1f:b1:7b:24:7d:a2:26:31:45:c8:4d:db:11:50:
dd:2a:b9:af:bd:7f:7c:2e:a6:8b:99:fa:1b:ed:f6:01:45:25:
3a:ac:31:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org