Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31372e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31372e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: bSu7wlCGr3pPcoDJCxlNMutRPUnzv60+Xcr9P8N5loU=
Subject key identifier: F6:DC:21:46:8B:9A:1C:01:07:93:BD:0E:B5:93:81:6A:58:69:37:74
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 65E56A48B953A47B35F1A20276ACA63C4FEC9BAD
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31372e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:02 +0000
ROA not before: Wed 13 Apr 2022 07:55:02 +0000
ROA not after: Wed 12 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 140.213.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:e5:6a:48:b9:53:a4:7b:35:f1:a2:02:76:ac:a6:3c:4f:ec:9b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:02 2022 GMT
Not After : Apr 12 08:00:02 2023 GMT
Subject: CN=F6DC21468B9A1C010793BD0EB593816A58693774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e8:98:95:da:3a:fc:3e:e7:3c:6d:e4:19:37:
ec:56:25:c8:05:2f:fd:b3:56:50:84:f0:90:1c:51:
2d:63:bb:0c:f9:d0:b0:29:9f:fd:8a:da:0b:50:02:
2b:1c:94:e0:d0:0c:5a:5c:88:6b:73:57:74:93:73:
b6:35:d1:66:2e:4a:7a:3c:b3:92:87:1a:fa:6b:3a:
6e:33:9b:7a:d0:1d:23:df:be:8f:e8:04:5c:23:7c:
b8:c6:be:ed:de:22:95:a2:fc:2d:38:10:5e:a4:09:
e4:c1:67:2c:23:28:9d:1d:ab:53:51:bf:cf:31:df:
33:8b:45:90:f3:96:f6:27:5a:40:f9:c8:20:27:f6:
40:cf:72:a1:fc:25:89:0c:16:0e:98:6b:8f:40:02:
08:72:3f:af:45:a4:77:32:1d:31:d8:b9:bc:04:8d:
21:0c:01:4a:8e:08:5d:d2:99:0f:98:8b:e2:8e:82:
1c:a1:7d:80:67:8c:e0:d3:6f:55:e7:c4:e9:3f:9a:
51:9a:2f:fe:2e:47:68:df:b8:0a:f7:6a:f7:d4:16:
98:4e:87:1d:0e:6a:24:98:8a:9d:9b:35:af:b3:0e:
d1:57:af:69:a8:5a:f3:d9:6e:45:f5:54:aa:47:b2:
d5:71:5d:2a:df:a2:b0:38:31:e2:f1:9d:87:1a:24:
8c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:DC:21:46:8B:9A:1C:01:07:93:BD:0E:B5:93:81:6A:58:69:37:74
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31372e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
74:79:75:a1:76:f5:00:43:ae:e4:26:74:ec:f7:3d:f5:ff:5a:
d7:27:13:20:f6:9d:26:b4:1f:99:30:7c:c3:5e:3e:e4:54:c8:
c3:9e:68:03:63:77:17:c3:5d:50:1c:bb:bd:89:20:0f:36:c7:
41:7e:cc:81:ee:72:a4:0d:92:b4:d8:c9:f1:0a:af:54:4d:54:
1a:86:fc:f8:2a:f8:7c:7f:a7:b9:06:91:5d:40:a3:d4:3e:f0:
38:1b:77:ce:96:f2:14:85:f4:08:76:26:e6:c2:b3:08:98:e1:
3c:f6:6d:fc:46:77:b4:50:62:5a:72:60:a0:c3:ec:b4:30:d5:
dd:10:97:1d:4b:ec:6f:a1:cd:6f:f5:3e:e4:70:f2:cf:53:e6:
41:54:00:2c:51:e4:e9:6a:9e:79:c2:bf:09:e8:d1:37:25:dc:
bb:d4:70:ed:80:31:b0:56:b5:55:1c:94:97:de:98:0d:cd:a1:
0f:f3:09:a6:a9:54:db:c1:8e:16:d3:21:bd:e3:96:2d:7e:98:
4b:95:04:49:75:f4:6e:c8:44:e2:07:0d:c9:41:6e:86:af:8f:
0e:d5:3f:11:e4:9e:59:67:5e:97:fb:08:8d:90:f6:3d:d4:6e:
9f:03:dd:07:82:7b:8d:9e:fe:c7:87:e2:2d:ed:f1:48:2a:19:
ff:11:b3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org