Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: KdQEW/FJxltcmuwSfGxXelHnIRGjGU2bMZ38gXnrZl8=
Subject key identifier: D2:9C:6D:26:81:71:6F:11:B7:5B:AE:99:70:C6:8E:CC:0B:A4:6B:54
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6E6A87263C20AB16192639A7C0F9A7F3C87C66D0
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31362e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:02 +0000
ROA not before: Wed 13 Apr 2022 07:55:02 +0000
ROA not after: Wed 12 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 140.213.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:6a:87:26:3c:20:ab:16:19:26:39:a7:c0:f9:a7:f3:c8:7c:66:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:02 2022 GMT
Not After : Apr 12 08:00:02 2023 GMT
Subject: CN=D29C6D2681716F11B75BAE9970C68ECC0BA46B54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:8b:ea:27:71:3a:39:5f:a7:c6:fd:dd:51:
08:79:78:2b:19:58:a7:09:0a:d9:91:4b:47:2a:8c:
99:77:e2:47:4d:bb:2a:40:be:73:1f:55:9b:d5:7e:
98:c4:75:25:09:80:14:1c:57:2e:56:d5:af:97:05:
7f:fa:e7:49:16:07:29:51:f1:78:bf:bb:e0:56:c6:
8a:21:0d:1a:2d:0a:11:ab:a1:e9:4e:4d:8d:ad:c6:
c0:b4:1e:fe:cb:f6:b4:72:a5:74:4e:e4:64:7b:cd:
27:06:14:b7:09:a2:e3:e4:91:33:a4:68:26:39:fa:
07:55:58:0e:5c:6f:2d:08:f7:25:e5:19:c7:27:dc:
b5:40:77:7b:e2:a8:7c:0f:1c:78:e7:d0:85:60:3a:
4a:cb:2b:fc:1a:ab:7f:40:38:df:f2:28:10:28:e7:
d0:b3:33:b9:4d:4d:4c:2b:63:c9:71:de:86:9e:cd:
ca:42:c8:01:df:23:3a:0c:bb:7d:84:6b:f7:fd:61:
89:4a:e1:d2:d6:25:5a:77:dd:a4:d6:41:14:03:89:
be:30:16:81:38:2f:82:2c:6a:5c:38:d0:fd:9f:70:
36:89:c4:03:7a:ef:be:41:5e:b7:10:de:e5:ab:e9:
df:ba:03:8a:84:d5:a2:12:45:e6:65:e4:cd:e0:4e:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9C:6D:26:81:71:6F:11:B7:5B:AE:99:70:C6:8E:CC:0B:A4:6B:54
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.16.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:a6:9d:7b:65:12:bf:65:dc:e3:a9:30:8a:e2:3b:ac:a3:04:
d5:87:3b:82:fc:d9:6d:d9:9d:4c:f6:22:5e:85:7c:36:10:33:
49:e4:e6:9d:1b:ab:c9:87:7e:6e:87:06:94:3c:28:ba:1b:b8:
17:40:d8:1a:2a:ba:9d:f7:cc:4a:ec:7e:ce:f2:ad:90:c4:c6:
38:f0:bf:7d:0c:29:b9:57:1c:03:56:07:c9:39:e5:bf:fd:d8:
c0:09:d9:16:8b:5d:a1:bd:bc:86:7b:05:8c:a7:d9:2f:30:eb:
d0:b9:f4:16:8a:46:57:cb:30:07:60:d9:11:58:9b:4d:45:a6:
15:28:9f:5b:5c:d9:2d:09:03:7f:ac:60:40:84:15:31:5d:18:
f3:8a:61:dc:45:e3:4e:6e:cd:e1:e5:80:06:4e:4a:4f:ce:e0:
d9:c0:13:f0:08:6d:98:a2:01:77:95:de:fb:46:72:96:41:c8:
0b:5b:19:72:9b:1a:90:28:3d:0d:b4:a0:f0:ad:85:f2:c5:c7:
6e:a2:d4:35:fa:a9:93:2e:ad:f9:be:07:df:c6:e6:89:eb:3f:
01:f9:65:7f:79:ef:bd:d6:20:8a:1c:77:ad:c2:58:17:14:0c:
d1:da:a3:67:b5:89:63:f4:aa:8e:35:ff:71:bd:20:4f:58:17:
e5:0d:87:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org