Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3137312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: DGPuu0UzLwz9AEYVUcV2Otj4cPS/6NmqEupjm2EGvVs=
Subject key identifier: 88:61:90:B0:0A:28:6D:88:CF:3B:1A:41:47:1E:08:F7:4B:05:C6:C1
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5DDCD1E4C9C495607F25D82BBA57660F8353B0C1
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137312e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:03 +0000
ROA not before: Wed 20 Apr 2022 04:55:03 +0000
ROA not after: Wed 19 Apr 2023 05:00:03 +0000
asID: 24203
IP address blocks: 140.213.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:dc:d1:e4:c9:c4:95:60:7f:25:d8:2b:ba:57:66:0f:83:53:b0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:03 2022 GMT
Not After : Apr 19 05:00:03 2023 GMT
Subject: CN=886190B00A286D88CF3B1A41471E08F74B05C6C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1f:3d:59:b0:ba:95:f7:b0:0e:f0:0f:3f:42:
4c:1a:46:49:25:e9:2a:a4:e9:2d:bf:e7:1c:07:9c:
2f:e5:4f:91:24:39:bb:7e:df:48:b9:6e:6b:bb:11:
3d:05:97:f5:20:b1:6a:c2:9e:5a:d9:4f:d6:5c:17:
cb:46:4b:c8:c3:3f:0b:b6:eb:ea:28:f9:1f:4b:4a:
7c:08:53:0f:11:25:1b:94:f3:80:31:68:2c:f8:3a:
2e:63:dd:f1:77:54:2a:1b:29:4c:6a:a6:69:1e:d7:
d3:60:e7:c0:71:14:80:01:f3:ee:77:2b:f3:99:46:
5c:d0:a3:e3:42:27:24:d8:e8:30:44:24:dd:93:65:
94:d1:fb:b2:ef:12:cb:74:f0:68:9b:05:a1:6b:f1:
91:17:47:b9:d5:9a:67:ab:82:a0:db:3b:c7:6e:09:
9a:8f:9e:02:29:22:46:23:85:6a:94:51:a5:55:5d:
58:f2:bc:6f:a0:9f:bc:9b:d3:54:1e:1d:92:29:a0:
35:5d:77:40:37:87:23:1d:de:ee:bb:b5:ce:f1:62:
b8:3c:98:44:66:13:d5:e7:15:fe:91:32:10:1b:dd:
39:7a:aa:cb:0b:d9:7e:47:9c:65:a9:83:ec:67:4a:
97:f0:65:6f:38:c2:13:7d:8e:df:82:eb:00:fd:16:
41:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:61:90:B0:0A:28:6D:88:CF:3B:1A:41:47:1E:08:F7:4B:05:C6:C1
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.171.0/24
Signature Algorithm: sha256WithRSAEncryption
49:cc:24:54:71:10:14:e8:8a:86:a5:a7:5b:f0:26:f7:2b:bc:
2b:f1:1b:3f:67:b7:e8:a6:5f:d9:79:f7:df:32:02:a9:8a:76:
0c:91:4e:03:a7:2b:c1:c3:7e:c5:16:e4:57:db:18:19:69:02:
92:7d:7d:8b:3a:20:a1:e2:8c:38:ee:ae:44:81:b0:0a:0c:19:
25:f0:65:d3:5d:59:e6:1a:1b:42:8e:c0:e8:07:c8:92:a0:a1:
a7:2a:38:ee:8c:0a:b7:3d:f7:c6:e0:35:74:84:ba:2e:fd:e6:
cb:2e:92:eb:0d:35:28:59:a8:b9:f2:2b:08:4f:95:40:54:7e:
7b:40:be:4f:c5:5b:0d:0b:db:7c:03:0a:c4:e4:fd:2e:76:d7:
c3:07:14:b1:33:d2:e0:6f:cb:a6:f6:c6:68:b9:83:fd:30:c7:
d2:a4:94:53:52:d6:2c:67:ac:3a:f8:a7:ce:21:6a:ad:e6:77:
2b:25:07:cd:c5:7c:23:93:7b:0d:5c:4b:8d:6e:ca:af:4d:16:
1a:d6:53:8e:5c:4f:a2:cb:a1:79:06:0c:ed:45:d3:7e:8e:cf:
44:2b:af:3e:cf:69:d0:ac:58:45:ad:8c:e3:db:04:af:ea:10:
63:83:76:5b:e3:c3:b5:60:b7:c4:4d:ae:f3:93:25:72:34:f9:
a8:8e:fc:25
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUXdzR5MnElWB/JdgruldmD4NTsMEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDNaFw0yMzA0MTkwNTAwMDNaMDMxMTAvBgNV
BAMTKDg4NjE5MEIwMEEyODZEODhDRjNCMUE0MTQ3MUUwOEY3NEIwNUM2QzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Hz1ZsLqV97AO8A8/QkwaRkkl
6Sqk6S2/5xwHnC/lT5EkObt+30i5bmu7ET0Fl/UgsWrCnlrZT9ZcF8tGS8jDPwu2
6+oo+R9LSnwIUw8RJRuU84AxaCz4Oi5j3fF3VCobKUxqpmke19Ng58BxFIAB8+53
K/OZRlzQo+NCJyTY6DBEJN2TZZTR+7LvEst08GibBaFr8ZEXR7nVmmergqDbO8du
CZqPngIpIkYjhWqUUaVVXVjyvG+gn7yb01QeHZIpoDVdd0A3hyMd3u67tc7xYrg8
mERmE9XnFf6RMhAb3Tl6qssL2X5HnGWpg+xnSpfwZW84whN9jt+C6wD9FkFNAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUiGGQsAoobYjPOxpBRx4I90sFxsEwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM3MzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNWrMA0GCSqG
SIb3DQEBCwUAA4IBAQBJzCRUcRAU6IqGpadb8Cb3K7wr8Rs/Z7fopl/ZefffMgKp
inYMkU4DpyvBw37FFuRX2xgZaQKSfX2LOiCh4ow47q5EgbAKDBkl8GXTXVnmGhtC
jsDoB8iSoKGnKjjujAq3PffG4DV0hLou/ebLLpLrDTUoWai58isIT5VAVH57QL5P
xVsNC9t8AwrE5P0udtfDBxSxM9Lgb8um9sZouYP9MMfSpJRTUtYsZ6w6+KfOIWqt
5ncrJQfNxXwjk3sNXEuNbsqvTRYa1lOOXE+iy6F5BgztRdN+js9EK68+z2nQrFhF
rYzj2wSv6hBjg3Zb48O1YLfETa7zkyVyNPmojvwl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org