Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3136312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: cyoVSFxG5dW/oRcQA4I5m0qMPeSLedIslVATBKjLWmY=
Subject key identifier: BC:43:32:69:B2:BF:10:6D:60:80:09:2A:80:DE:38:D2:84:D1:A2:17
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 22D2CA130A3049DB887C3950F92309E75E1CD57C
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136312e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:03 +0000
ROA not before: Wed 20 Apr 2022 04:55:03 +0000
ROA not after: Wed 19 Apr 2023 05:00:03 +0000
asID: 24203
IP address blocks: 140.213.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:d2:ca:13:0a:30:49:db:88:7c:39:50:f9:23:09:e7:5e:1c:d5:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:03 2022 GMT
Not After : Apr 19 05:00:03 2023 GMT
Subject: CN=BC433269B2BF106D6080092A80DE38D284D1A217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8a:23:ca:2d:08:bd:fb:bd:c4:0d:5e:c4:b8:
a0:df:6a:b7:67:a6:52:99:41:c1:1a:38:a6:58:cb:
08:38:d8:15:5e:eb:94:be:6a:88:3f:d5:c3:2e:06:
ea:e1:4a:8b:75:8b:0d:dd:d5:85:c0:c4:34:c0:b0:
68:f4:3c:0f:f1:eb:07:c6:64:d6:1d:0d:ce:24:fd:
68:3e:cd:c7:1a:fc:91:70:fd:e7:a2:f4:67:80:98:
80:da:fe:13:b8:36:c2:da:26:6c:bc:5f:e3:9f:64:
9f:21:20:1a:e2:ef:41:b4:3b:70:e9:76:b8:fe:25:
72:0e:68:01:2a:c0:29:37:1d:f3:2f:ad:99:ad:fe:
40:ea:3c:d6:5b:b5:8e:d5:72:36:07:64:11:3e:ef:
01:24:d7:09:7f:82:22:f1:b7:76:3e:28:3f:a3:c1:
84:c0:96:1a:16:e8:cb:06:e8:36:27:da:c7:b5:8a:
e5:4a:ce:2b:5a:d8:02:4e:c5:b6:68:a6:d9:fc:73:
10:5a:45:fa:8b:02:a9:86:7d:f7:5d:29:85:57:07:
af:a7:fc:d8:15:e1:5a:13:31:42:7d:9f:97:f0:69:
4a:86:cb:e9:1f:5e:90:04:1d:6d:e3:3d:dc:68:16:
13:89:99:49:5a:68:6c:2b:ad:c4:bc:20:32:68:86:
c9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:43:32:69:B2:BF:10:6D:60:80:09:2A:80:DE:38:D2:84:D1:A2:17
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.161.0/24
Signature Algorithm: sha256WithRSAEncryption
18:98:36:4d:e8:18:43:2a:9d:4e:76:d2:59:fd:7a:6b:da:46:
d5:3c:82:e2:ce:97:6d:76:f8:77:2d:0a:d7:5d:1a:85:c1:75:
30:a3:a7:50:20:81:d6:2f:1f:21:83:95:53:43:1e:b9:4a:9d:
0b:77:bf:3e:76:97:eb:4f:26:d2:29:30:47:bd:e2:a3:57:f8:
0b:7c:2b:c4:25:d7:89:c9:2b:ba:60:e3:79:cb:70:d7:97:ca:
c4:72:aa:5c:c4:8d:e8:65:43:26:cf:6f:8a:2e:d5:e3:e0:73:
84:41:1b:ae:f1:e5:01:bf:12:d9:d0:1e:1b:13:dd:d6:1e:90:
93:e8:99:2e:6a:e4:87:b2:d2:ac:8b:6c:02:93:19:33:8b:50:
d3:d1:ab:18:f4:6e:d4:91:4a:37:68:66:bf:00:78:61:bf:82:
60:c5:01:d5:72:04:15:4d:4d:93:ba:cd:01:16:05:b1:7a:05:
4f:a1:7e:c0:66:16:39:c2:14:cd:b9:d2:3e:b3:99:ce:97:2e:
fc:24:70:f3:b0:44:ac:4d:d5:73:b3:6d:e0:b3:0f:bd:39:9c:
87:e3:a0:a4:97:28:e1:e6:39:4a:be:39:72:40:00:fa:4d:ca:
dd:0d:bb:e5:6b:0e:b0:19:d9:30:90:f2:42:cd:c0:00:cf:27:
83:a3:ee:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org