Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3137322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: rVHXIbFdqCovrAtzg7zAVe7KMO4bphEXZCMl29uLeGM=
Subject key identifier: BA:95:12:C1:A7:EF:39:B7:A7:A9:A7:18:FF:8F:6B:5E:68:63:4C:FC
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5F455C2ED586A80ED81057F6E705BCBA9B775817
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137322e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:02 +0000
ROA not before: Wed 20 Apr 2022 04:55:02 +0000
ROA not after: Wed 19 Apr 2023 05:00:02 +0000
asID: 24203
IP address blocks: 140.213.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:45:5c:2e:d5:86:a8:0e:d8:10:57:f6:e7:05:bc:ba:9b:77:58:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:02 2022 GMT
Not After : Apr 19 05:00:02 2023 GMT
Subject: CN=BA9512C1A7EF39B7A7A9A718FF8F6B5E68634CFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:97:85:f5:95:5f:ed:11:ae:db:61:0f:eb:c2:
66:16:5f:f8:74:8d:2b:39:17:8d:dc:ef:66:f5:7d:
8a:86:39:8d:42:78:f9:30:4d:0a:05:1d:82:6d:f4:
41:39:e3:21:e4:b0:d4:18:be:7d:5b:08:e6:8c:cb:
8f:e1:fb:e8:31:ea:ff:92:27:86:0c:b8:e6:4a:76:
83:aa:f1:25:81:78:a6:fa:99:a4:b3:13:9e:a9:f4:
d8:f8:43:3d:ed:e3:1d:3f:26:bf:0c:55:49:45:a9:
72:65:a4:53:df:c0:24:d9:6e:a0:cf:9a:21:09:35:
bf:6d:c1:0f:c6:73:4f:9b:82:2d:09:a5:b1:86:c7:
85:41:51:a4:ef:8f:8b:d1:6f:1c:2a:a6:53:15:51:
1d:82:98:89:ec:01:eb:c9:7a:1f:3a:df:e8:2f:5c:
7a:8f:7a:67:8d:e5:c8:ae:84:5f:6c:00:3f:8f:79:
73:87:ac:18:b8:ef:a1:fd:b9:a8:26:e4:3b:4f:7f:
9a:40:3e:96:9c:f7:aa:1d:27:fc:bd:cf:76:f2:e4:
c9:bf:c2:fa:69:d7:24:1f:40:42:24:e1:ff:87:23:
dc:35:9f:d7:2d:aa:11:81:9a:8c:bb:78:a4:53:c8:
1b:10:45:e7:3b:fa:21:a4:6f:27:b5:e9:67:5d:4e:
a1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:95:12:C1:A7:EF:39:B7:A7:A9:A7:18:FF:8F:6B:5E:68:63:4C:FC
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.172.0/24
Signature Algorithm: sha256WithRSAEncryption
89:52:34:fa:fe:9b:6d:89:38:ab:4f:61:d8:5f:70:72:92:08:
15:be:7b:35:14:1b:9c:70:49:e1:c6:21:c6:85:15:c9:33:2a:
2f:2f:de:e8:44:59:68:78:1a:a5:33:ee:f3:aa:f1:bc:30:4e:
04:1b:2f:71:fb:04:44:0a:9c:e6:b4:95:1a:42:70:2d:4a:27:
5a:bd:f0:39:3e:af:16:2f:66:ec:d5:1d:72:bb:36:a9:01:f9:
80:bb:a6:de:f8:5b:e0:1b:f5:e7:69:18:76:39:e5:88:4e:6a:
80:3d:3e:94:d9:4e:2d:d1:08:ca:cf:4e:e7:3b:87:93:48:06:
db:5c:b2:c3:3e:91:05:7c:41:f8:6f:ff:be:b8:7f:ff:05:12:
d5:78:90:2c:76:b7:65:2e:e8:70:63:b1:89:f4:3b:e7:a0:c0:
f8:50:d9:95:ca:a7:c7:f8:59:78:6b:27:81:c5:5a:b1:65:16:
81:a5:14:09:d9:85:fd:41:9d:69:be:f3:6b:da:c0:89:97:09:
f1:0b:e3:55:95:2e:0d:89:55:c7:9c:ea:1c:23:22:99:58:23:
33:67:c9:ef:00:01:af:3f:eb:82:dd:36:e6:b0:50:9c:f3:26:
d9:24:b3:95:ef:ce:72:b4:c3:e1:88:a7:f8:f7:3a:da:f2:a9:
a2:14:2c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org