Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3136322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 5TSgA6QH4trGp/HxFkLMGNjNyQP2XS/ftLb21rS9xVY=
Subject key identifier: 02:D6:6B:C8:25:18:68:C4:E5:73:E0:5F:E6:50:07:FD:88:D6:11:F6
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4FC05306C9EAF5A2CFA5A01AE044C117ABCF87C5
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136322e302f32342d3234203d3e203234323033.roa
Signing time: Wed 06 Apr 2022 08:00:00 +0000
ROA not before: Wed 06 Apr 2022 07:55:00 +0000
ROA not after: Wed 05 Apr 2023 08:00:00 +0000
asID: 24203
IP address blocks: 140.213.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:c0:53:06:c9:ea:f5:a2:cf:a5:a0:1a:e0:44:c1:17:ab:cf:87:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 6 07:55:00 2022 GMT
Not After : Apr 5 08:00:00 2023 GMT
Subject: CN=02D66BC8251868C4E573E05FE65007FD88D611F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4f:7a:76:e2:cb:ef:63:39:31:32:05:9a:4e:
04:d7:8c:d8:6e:5f:4f:20:50:b0:59:8d:f6:35:01:
54:10:57:c2:2c:8c:6d:24:16:89:2b:4f:6e:52:72:
7b:36:53:6e:ed:13:57:e4:a9:9e:7d:30:fd:47:3f:
07:e8:5e:be:ea:4d:67:62:33:f9:b4:e2:45:6f:68:
23:63:b1:59:4d:d7:75:7c:4b:28:76:97:ec:4b:2b:
02:21:99:e3:75:46:49:9b:b9:96:73:ef:d9:c5:d7:
7b:42:7d:9d:e4:5b:c0:17:97:a0:2d:1a:ea:c0:c3:
cf:17:95:c3:74:1b:ce:5c:f7:d7:17:87:5c:a1:a7:
5d:cc:7e:a5:32:2e:3e:a8:8c:a8:eb:df:c1:fd:fa:
ab:e9:c7:45:c9:9f:77:90:04:f9:c8:0f:fb:00:77:
5d:62:74:90:f6:2a:65:5f:3e:06:2e:aa:bf:a5:45:
b7:60:8c:a9:83:09:8d:d7:8d:ae:cf:5c:3f:2a:27:
48:b1:a9:cd:53:a8:d8:8d:59:73:d2:51:5c:a6:09:
c4:b4:f8:84:04:2c:2c:95:09:e3:81:89:7c:94:10:
b8:11:70:81:25:83:95:aa:b4:d5:8b:70:72:9e:5d:
90:84:bd:f2:0f:98:9d:91:12:74:8d:8b:07:08:7c:
bf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D6:6B:C8:25:18:68:C4:E5:73:E0:5F:E6:50:07:FD:88:D6:11:F6
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.162.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:37:3f:b5:bc:2b:e8:7f:76:b5:72:49:29:49:55:94:44:59:
34:fc:79:f1:dd:06:73:d1:15:d1:82:e0:cb:5d:56:34:cf:0a:
5f:cf:bf:5b:94:47:90:25:34:2b:8a:a8:61:34:a1:05:41:84:
68:de:ad:f9:6c:b6:c2:6e:65:a3:d8:96:c1:bf:4c:91:dc:ca:
82:9f:e9:2b:85:d7:97:da:46:db:da:dd:b7:e0:59:ff:be:b5:
56:67:33:6c:e0:ee:9f:6f:16:8d:b3:bd:03:14:52:99:32:f0:
6a:3f:72:ae:07:ad:af:3a:5c:92:d3:d2:d3:27:6a:8d:f1:da:
64:48:63:3c:33:d6:ad:af:a6:32:e4:88:04:42:40:7b:57:3a:
99:66:ec:6e:9e:48:e7:ee:3e:85:09:2a:ea:ff:26:f5:5a:9f:
f1:8b:96:55:de:72:a0:e3:78:7f:64:7f:9d:32:42:15:d4:7b:
02:d0:13:b7:e6:91:70:42:71:54:dd:25:a4:8f:b5:a6:2b:7f:
46:54:90:7b:b4:97:90:ec:f9:47:a7:e3:74:ce:d6:23:d4:18:
4d:08:72:67:76:f9:a2:9e:7f:60:0e:2c:39:5e:ee:31:f5:51:
2c:6e:fa:49:45:73:cd:3d:02:8a:0c:14:49:e7:0d:93:b3:1f:
c4:02:56:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org