Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3136382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 3eWC2Od3Sq2NEDGWiVyqP62Kp3bYlr7GDoWcRDNaY+0=
Subject key identifier: 8B:3E:38:89:44:50:35:6A:27:D0:60:0A:93:D7:9F:71:67:BB:E6:DC
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6DBE2BD4F37C6AD63D239209DDBC3AA8B1A07640
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:04 +0000
ROA not before: Wed 20 Apr 2022 04:55:04 +0000
ROA not after: Wed 19 Apr 2023 05:00:04 +0000
asID: 24203
IP address blocks: 140.213.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:be:2b:d4:f3:7c:6a:d6:3d:23:92:09:dd:bc:3a:a8:b1:a0:76:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:04 2022 GMT
Not After : Apr 19 05:00:04 2023 GMT
Subject: CN=8B3E38894450356A27D0600A93D79F7167BBE6DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e7:89:2a:3d:54:1a:5c:7d:52:50:94:43:4b:
4f:bb:27:c4:83:bf:f1:a6:74:95:72:ae:66:db:0c:
92:77:c8:6d:7e:22:c9:7a:e0:f4:9e:6e:8d:7a:59:
48:e8:5f:a1:16:82:9e:9b:4f:0d:03:e2:71:b2:9f:
fa:9c:95:6a:71:b4:0d:d0:55:59:18:dd:99:ca:b9:
58:46:60:b1:d0:5f:c6:67:1e:eb:e2:38:24:3d:0f:
da:fb:c4:a0:09:fe:c7:da:24:da:ff:88:d0:7c:14:
56:c9:06:cb:4a:04:12:f9:28:0b:e0:c9:55:8f:dd:
b5:b0:18:3b:a6:49:89:67:59:bb:6b:cb:35:b6:af:
5d:df:3f:92:b8:9d:8d:c0:d5:54:a2:5e:7b:c9:fa:
3c:86:59:0a:11:10:57:f2:df:a3:be:0c:42:bf:07:
96:32:df:72:84:8b:4b:dc:eb:fb:c4:17:2a:4e:2c:
14:e4:50:96:34:87:fb:5a:a6:23:ee:a8:70:52:42:
49:b8:fc:85:c9:a5:c9:0d:4e:16:52:59:2b:ce:6c:
96:73:54:18:09:f9:06:5e:51:97:c1:13:b4:13:43:
3d:5a:d4:17:65:fe:18:71:6f:0b:a9:10:c6:11:a0:
1d:06:6f:bb:f6:47:bd:c8:88:b3:d0:05:14:ed:ab:
10:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3E:38:89:44:50:35:6A:27:D0:60:0A:93:D7:9F:71:67:BB:E6:DC
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3136382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.168.0/24
Signature Algorithm: sha256WithRSAEncryption
40:1c:46:15:b8:8f:df:f3:b6:38:c9:d6:27:5b:d1:e0:1f:ef:
a9:0a:c8:15:56:9a:b8:23:9b:c0:35:3c:be:30:0e:31:db:cb:
84:48:d1:64:91:36:3c:f3:ec:69:aa:3c:70:05:c1:f2:3b:37:
2c:ce:33:af:43:d8:70:8f:ab:66:4f:55:f6:67:5f:f7:78:35:
4e:1b:ca:e7:0a:7b:4a:c3:9e:14:75:8a:2a:b9:6d:e4:e2:72:
3f:82:84:4b:e5:d8:c5:d2:29:5b:47:39:86:b9:fc:15:54:df:
fd:69:a7:df:06:26:4d:87:84:3f:2d:d6:fb:e9:69:aa:fc:26:
39:c8:1f:1b:a3:a6:a9:d6:ae:4b:5e:d8:50:fd:d3:dd:ae:7b:
5b:0c:7e:fd:53:26:ab:3c:d1:78:98:8c:cc:f0:ae:d3:62:b3:
7a:f2:cb:d8:7c:9f:76:56:04:11:d7:ab:49:6a:df:87:5d:93:
fc:28:5d:05:04:bf:da:d0:70:fb:bf:ec:91:97:a8:5a:fe:88:
b5:d9:7e:8c:05:90:7d:67:ce:89:2b:1d:b0:ad:6e:cc:5f:d8:
6b:fd:21:07:0c:93:b6:f4:1f:87:ba:b5:6d:fc:cc:2e:d9:8f:
bd:a9:d2:e1:85:97:09:02:2c:40:cf:ae:8b:f1:39:09:b5:b9:
45:50:0c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org