Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136352e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3136352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: QxKI1gfDmK3wvINPmYiuDP39ATHHNF8DYUaBhp4V3LM=
Subject key identifier: 78:6C:79:03:62:48:D3:10:D2:28:DA:86:EA:DD:42:39:27:B4:8F:80
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 47CD8B38BB3E9A811E6CA9A1C8C4716D748DA338
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136352e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:05 +0000
ROA not before: Wed 20 Apr 2022 04:55:05 +0000
ROA not after: Wed 19 Apr 2023 05:00:05 +0000
asID: 24203
IP address blocks: 140.213.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:cd:8b:38:bb:3e:9a:81:1e:6c:a9:a1:c8:c4:71:6d:74:8d:a3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:05 2022 GMT
Not After : Apr 19 05:00:05 2023 GMT
Subject: CN=786C79036248D310D228DA86EADD423927B48F80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:97:f4:b9:a2:b2:5e:aa:74:5c:c6:aa:d3:25:
a8:c1:7e:7f:7f:51:2e:04:3b:6d:bd:14:77:b6:b2:
24:ce:d4:74:bc:7c:2a:df:72:a2:8f:8a:5a:e5:95:
b2:68:6d:39:24:58:47:44:a5:23:38:82:e7:50:a1:
dd:c5:b3:e7:f0:2d:0d:f9:2a:ad:14:ee:be:cf:b2:
55:9a:47:b0:88:ab:64:02:1c:d9:12:8a:3b:b3:15:
4e:3c:59:63:99:21:86:4c:e9:2e:14:23:ac:73:d9:
38:94:e9:96:72:02:90:15:40:24:04:6a:2c:38:b7:
b5:d1:b9:99:a9:71:ce:cd:9c:43:a9:9f:4f:29:2b:
72:c8:bb:9e:b3:c9:e4:50:70:a4:86:f4:73:63:83:
56:c8:62:be:7f:fc:4c:a6:19:c0:85:70:a7:e9:3e:
39:a0:4c:c7:9a:0b:bc:64:c1:32:51:24:dd:61:0e:
67:78:10:49:cb:86:da:52:6a:68:23:9f:dd:c8:97:
65:6c:d1:30:a4:9f:17:65:d0:e9:66:a5:d7:71:45:
0c:64:e7:60:dd:1c:4c:e9:52:64:45:c3:17:fa:f2:
be:3d:48:19:89:fb:18:c4:e4:7a:51:3d:57:9e:06:
43:b6:08:3d:4d:22:67:19:63:e0:08:df:40:85:cb:
3f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6C:79:03:62:48:D3:10:D2:28:DA:86:EA:DD:42:39:27:B4:8F:80
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.165.0/24
Signature Algorithm: sha256WithRSAEncryption
94:62:fb:71:35:b9:41:d4:d5:88:07:8f:9a:3f:e8:9d:ff:90:
4f:53:d7:34:e3:15:6d:e8:52:f8:8f:96:e1:bf:28:1f:56:8d:
78:37:27:6e:63:df:55:22:aa:c3:f2:42:ec:16:1b:d0:8a:f7:
ab:e7:ea:b2:a6:e7:d0:44:5f:7e:39:01:54:be:3b:00:8a:4e:
ad:b1:4f:ea:5a:77:d6:91:72:7a:1f:67:10:92:73:e1:6a:e4:
09:e1:0c:1a:bb:ac:ed:0d:5c:65:c2:7f:9f:99:ce:39:6d:e8:
0e:3e:54:2a:3c:7c:72:e5:0b:b7:bf:85:81:23:46:e7:75:ce:
fb:16:5f:f9:64:5d:bf:b6:6a:5f:7c:81:82:c1:3c:b3:fa:b8:
91:02:f6:9f:a2:c3:b9:ad:5e:14:fb:c3:e0:fe:59:ec:a6:02:
a0:a1:51:ad:41:c6:d4:b7:db:11:0c:09:66:db:41:2f:ab:23:
4f:eb:8e:ce:97:d9:97:11:12:e6:b6:14:a8:09:b2:7e:55:5e:
4e:7b:b9:f7:48:9c:2c:c1:32:fb:65:73:2f:1d:8a:41:67:80:
4a:91:1f:ca:eb:25:79:3d:49:bb:95:88:fa:c0:60:8a:9c:c8:
14:bf:f3:fb:7d:b0:dc:7b:cb:13:89:dd:e2:22:29:70:c4:9d:
fb:62:8d:d7
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUR82LOLs+moEebKmhyMRxbXSNozgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDVaFw0yMzA0MTkwNTAwMDVaMDMxMTAvBgNV
BAMTKDc4NkM3OTAzNjI0OEQzMTBEMjI4REE4NkVBREQ0MjM5MjdCNDhGODAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpl/S5orJeqnRcxqrTJajBfn9/
US4EO229FHe2siTO1HS8fCrfcqKPilrllbJobTkkWEdEpSM4gudQod3Fs+fwLQ35
Kq0U7r7PslWaR7CIq2QCHNkSijuzFU48WWOZIYZM6S4UI6xz2TiU6ZZyApAVQCQE
aiw4t7XRuZmpcc7NnEOpn08pK3LIu56zyeRQcKSG9HNjg1bIYr5//EymGcCFcKfp
PjmgTMeaC7xkwTJRJN1hDmd4EEnLhtpSamgjn93Il2Vs0TCknxdl0OlmpddxRQxk
52DdHEzpUmRFwxf68r49SBmJ+xjE5HpRPVeeBkO2CD1NImcZY+AI30CFyz+BAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUeGx5A2JI0xDSKNqG6t1COSe0j4AwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM2MzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNWlMA0GCSqG
SIb3DQEBCwUAA4IBAQCUYvtxNblB1NWIB4+aP+id/5BPU9c04xVt6FL4j5bhvygf
Vo14NyduY99VIqrD8kLsFhvQiver5+qypufQRF9+OQFUvjsAik6tsU/qWnfWkXJ6
H2cQknPhauQJ4Qwau6ztDVxlwn+fmc45begOPlQqPHxy5Qu3v4WBI0bndc77Fl/5
ZF2/tmpffIGCwTyz+riRAvafosO5rV4U+8Pg/lnspgKgoVGtQcbUt9sRDAlm20Ev
qyNP647Ol9mXERLmthSoCbJ+VV5Oe7n3SJwswTL7ZXMvHYpBZ4BKkR/K6yV5PUm7
lYj6wGCKnMgUv/P7fbDce8sTid3iIilwxJ37Yo3X
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org