Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3135392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Ox02yE87LlnQDZroqPaZXStTD98dezOJMdQUxzhiQRI=
Subject key identifier: 70:CD:0A:88:74:87:73:2A:5E:CD:3B:27:66:87:C7:AB:07:84:F9:90
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 78CEA233DCC708DF05360C17675E38871397A187
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135392e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:02 +0000
ROA not before: Wed 20 Apr 2022 04:55:02 +0000
ROA not after: Wed 19 Apr 2023 05:00:02 +0000
asID: 24203
IP address blocks: 140.213.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:ce:a2:33:dc:c7:08:df:05:36:0c:17:67:5e:38:87:13:97:a1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:02 2022 GMT
Not After : Apr 19 05:00:02 2023 GMT
Subject: CN=70CD0A887487732A5ECD3B276687C7AB0784F990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:20:49:bd:98:1a:ed:12:b6:13:8b:dc:90:8c:
03:7f:3f:60:6e:d3:44:8e:8b:15:0d:0a:f1:ab:1b:
bd:9b:e5:f8:d8:64:aa:78:f0:f1:1b:ee:63:ea:2a:
09:d5:89:30:70:4f:72:db:3d:fc:de:be:63:2d:f4:
0c:4e:38:ea:33:e7:c4:f8:14:b9:c5:d0:29:44:ec:
ec:57:35:21:8a:33:83:e7:81:30:7c:5c:d2:46:86:
0b:62:18:ee:df:10:81:e1:58:60:01:5b:b4:ed:27:
e1:ec:72:70:5d:43:e2:cd:57:85:f5:13:18:d2:3c:
c8:5f:8a:31:21:3a:31:74:4d:c0:3c:9c:ce:81:ad:
4b:4f:1a:af:54:c2:5a:94:81:e0:f0:dd:b7:41:fd:
1a:14:8f:99:d4:6d:5e:17:27:66:16:5f:0f:b6:15:
ef:94:f8:48:26:24:3a:1f:3a:f4:27:83:11:e0:68:
a1:f3:46:8e:53:2d:9c:2a:ad:56:75:d8:bc:52:c9:
d2:31:f8:76:f9:48:f1:c9:89:b5:2a:7a:97:f3:c3:
31:7a:9e:e5:e5:dd:e1:dc:44:32:29:6e:03:a1:a4:
73:de:5b:9e:d8:0f:50:89:ca:14:f4:4c:d7:9f:11:
33:6b:93:f5:37:6e:ef:c1:7b:9d:b7:ad:0f:22:eb:
d6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CD:0A:88:74:87:73:2A:5E:CD:3B:27:66:87:C7:AB:07:84:F9:90
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3135392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.159.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ad:c7:f9:87:10:c9:93:9d:1f:05:44:5e:a8:b6:4b:68:d6:
d2:10:17:61:17:f6:57:8b:9b:a2:1e:a3:3e:a0:46:b5:ff:67:
55:09:44:17:10:76:69:01:b5:29:60:c0:13:cd:c5:2d:97:0d:
bb:c6:06:d1:5a:31:ab:5a:4a:b0:25:8f:b0:14:a5:ca:43:16:
6f:15:bc:e5:9b:c0:39:85:87:e9:52:b8:e3:73:40:d9:6e:64:
b9:95:b0:e0:ea:68:df:f2:f3:58:c1:fe:9b:da:db:d1:52:88:
b0:ff:b0:b4:b9:80:55:fb:74:6a:f1:58:57:a6:12:ac:16:a9:
ef:1b:77:99:07:a7:cb:26:46:b2:ac:7b:10:85:69:ac:91:10:
63:fe:6e:89:31:80:12:a1:82:36:e4:68:78:f1:53:cc:dd:a7:
fb:a2:21:52:19:bb:0a:63:09:fb:79:b5:80:1f:0a:13:80:d1:
54:c1:33:95:c9:ed:ac:6a:89:55:2c:d4:5e:ae:b9:ad:35:0b:
d4:e8:a0:78:e2:4a:ae:b8:a6:86:a6:7c:62:88:be:da:8b:17:
57:7f:b0:a8:12:53:bf:ca:7d:21:ac:61:ae:e1:24:2e:f7:2d:
18:f2:3c:69:b1:e6:0e:56:70:cc:24:50:3c:66:f0:44:f7:ad:
b5:ae:a8:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org