Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3136332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: ubUU13za+PogNAseQaZP8WdNfxmJ+Oy7fywGyqxAHZE=
Subject key identifier: 52:BA:38:45:B1:92:AC:D8:FC:86:86:40:B0:DE:C3:6E:B0:02:1E:B1
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4F01DABC6511E071D0A342654C89AB63237B6B26
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136332e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:02 +0000
ROA not before: Wed 20 Apr 2022 04:55:02 +0000
ROA not after: Wed 19 Apr 2023 05:00:02 +0000
asID: 24203
IP address blocks: 140.213.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:01:da:bc:65:11:e0:71:d0:a3:42:65:4c:89:ab:63:23:7b:6b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:02 2022 GMT
Not After : Apr 19 05:00:02 2023 GMT
Subject: CN=52BA3845B192ACD8FC868640B0DEC36EB0021EB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:68:e2:6a:f2:a3:09:41:02:4c:07:b3:3b:fc:
96:f0:e7:5e:0d:db:6f:00:d0:cb:dc:71:1a:9f:3d:
df:10:fa:b8:03:93:65:20:2f:fa:f6:fb:d7:0e:b6:
e8:60:ce:88:42:3b:8b:8f:d0:e9:18:cd:d3:a5:55:
45:d2:48:b4:88:d2:a1:aa:fa:47:2c:5a:69:9e:4e:
3d:a4:71:8c:dd:85:c6:77:31:bd:10:c7:be:26:97:
a8:c5:4f:29:7a:cc:71:16:04:71:48:ad:f3:44:aa:
32:06:8d:bf:ac:3e:9f:fe:d5:5a:df:cf:f3:78:65:
16:b2:38:a2:17:75:11:0c:b9:45:2c:ee:e1:84:de:
83:fb:e9:70:11:18:ae:35:ed:95:0d:b0:18:ef:66:
4a:34:bb:69:9b:f1:7c:d0:41:a5:9e:b9:74:5c:9c:
70:11:21:04:1e:90:75:89:88:fe:14:14:ea:c8:d1:
dd:98:c2:a6:75:5d:71:6b:b1:38:b5:b2:62:7f:12:
8a:db:dc:cc:cf:ad:e3:92:11:c0:2d:e0:05:c6:26:
67:1e:b5:a2:01:e3:84:09:ce:71:7f:0a:5f:da:32:
dd:51:55:a6:b4:49:1e:78:ce:ab:be:7c:c3:5f:9c:
af:d3:0e:f8:f1:a3:be:b5:5d:97:e8:7e:11:03:35:
38:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BA:38:45:B1:92:AC:D8:FC:86:86:40:B0:DE:C3:6E:B0:02:1E:B1
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.163.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:67:fe:34:66:0d:62:f0:6f:fc:b7:be:32:34:36:fa:28:a9:
d0:9d:31:87:84:c0:2f:6e:a0:01:f7:3c:6b:ed:ed:83:66:f0:
0a:11:77:37:2b:03:9e:c8:71:3b:4b:24:25:bd:92:0d:d2:a1:
25:4e:d6:05:a1:45:ad:b5:6c:c9:dc:92:0e:09:77:d2:07:f5:
48:0a:59:12:07:84:a3:a0:9a:38:06:48:3b:bf:83:f9:5e:3e:
01:fe:12:99:7f:c2:48:cb:b3:b1:e4:f5:78:32:9f:6b:5f:5d:
e2:c6:70:3c:39:b0:ec:58:7e:53:cc:f5:6d:0c:db:b4:d0:85:
2f:ed:2a:91:ac:eb:c7:ea:a0:31:6e:2d:a4:de:b4:df:06:9b:
97:3f:cc:f1:15:02:54:b7:f6:ea:be:d3:13:c4:d7:34:27:39:
eb:69:af:ab:e8:8d:ec:19:11:6c:b5:ae:ec:6a:6d:55:ca:cf:
fb:fb:47:79:1d:7c:ab:96:45:0b:0d:52:51:14:80:48:db:31:
89:5f:c9:6a:89:29:22:22:ee:79:c2:ff:e1:97:22:21:1e:fe:
5a:2c:ba:7e:c5:6c:c9:23:f2:55:e6:8a:5c:78:99:4b:d0:b5:
4a:b4:a2:15:d2:10:c3:78:87:b6:07:0b:b9:58:35:77:f0:b6:
df:b3:52:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org