Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3137332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: xShXkypxRiwWMBpuXi7wDYvZReTtZ7mHILutSysrLEU=
Subject key identifier: E0:29:09:F2:76:8F:E2:7F:AD:FA:E6:B1:26:E6:A3:13:81:B7:F9:37
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5FCFB728771AC6672B23A2B3DA60F94D18350B5E
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137332e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:06 +0000
ROA not before: Wed 20 Apr 2022 04:55:06 +0000
ROA not after: Wed 19 Apr 2023 05:00:06 +0000
asID: 24203
IP address blocks: 140.213.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:cf:b7:28:77:1a:c6:67:2b:23:a2:b3:da:60:f9:4d:18:35:0b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:06 2022 GMT
Not After : Apr 19 05:00:06 2023 GMT
Subject: CN=E02909F2768FE27FADFAE6B126E6A31381B7F937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3c:a8:97:cc:a6:51:c0:83:db:64:2d:3a:e5:
f6:e0:bd:e2:c6:62:ed:18:4d:a9:02:47:aa:99:f8:
db:4d:09:18:b2:14:a9:8f:76:5a:f1:1c:0b:26:0b:
77:4f:83:32:ab:19:6a:35:47:22:c1:07:41:f7:3d:
e4:c3:ee:db:f7:c5:c9:77:e1:5a:fe:b1:05:05:36:
09:ef:73:84:8a:6e:d3:83:66:49:9c:3b:58:cb:1b:
52:af:99:76:37:cf:15:d9:46:74:0c:3d:0c:ad:05:
e0:82:b4:8e:63:f9:7d:c5:10:1c:54:73:67:6b:e1:
f9:61:0c:df:75:ae:21:0c:1f:ff:a1:52:c7:e5:8e:
f2:59:12:7b:03:14:2a:5c:74:df:02:27:c6:e7:dc:
f6:87:f6:bd:ea:e5:3c:0e:f9:60:42:91:17:32:8f:
d4:c7:bc:94:eb:a5:b7:d5:9d:35:40:d9:82:0d:f1:
6a:de:df:a9:a1:9e:46:c0:8b:cb:59:14:22:6b:23:
89:06:de:0e:78:32:74:10:b4:ae:67:25:d1:4c:d3:
af:77:77:57:f2:cf:bd:92:d1:b9:3e:e8:68:37:83:
19:12:91:fe:b9:54:c6:39:93:cd:d4:16:c7:68:40:
50:2a:11:44:22:89:23:f6:9c:76:ed:f9:68:1a:9e:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:29:09:F2:76:8F:E2:7F:AD:FA:E6:B1:26:E6:A3:13:81:B7:F9:37
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.173.0/24
Signature Algorithm: sha256WithRSAEncryption
98:a6:d2:bc:4f:79:ac:e9:65:36:6c:2e:b8:e3:f2:e2:b1:0e:
36:bf:6b:3b:74:c1:01:5a:af:64:c2:87:08:91:86:15:65:8e:
98:8a:d0:54:6a:52:2e:25:57:41:b3:f7:9f:ce:77:73:eb:11:
72:00:71:9d:56:00:f8:5e:f5:23:31:8d:3a:34:4d:8d:f9:0f:
ea:42:2f:e3:35:e3:13:d6:9e:8c:fe:67:2d:e1:47:fc:18:4f:
c6:f4:f0:85:70:da:60:84:1d:19:d5:ec:5d:90:ff:36:d2:e7:
fd:f3:e2:af:4e:30:79:3a:21:f5:5b:79:d4:a5:56:84:5a:e7:
85:34:2d:43:c8:bf:68:1c:dc:51:b5:90:76:d4:8e:07:5f:5b:
6a:2f:88:cd:ac:fd:13:50:a8:c4:04:04:52:f4:d1:de:28:2a:
fd:63:4f:8c:f1:9d:34:a2:21:03:33:ff:53:28:4c:50:86:09:
4b:f9:58:40:c3:06:7b:e5:b1:90:e2:0e:fa:61:34:22:79:b5:
d5:02:74:25:e3:ec:52:d2:27:6d:3a:76:da:d3:c1:79:29:65:
be:a8:32:ba:62:c3:84:26:1a:8a:45:79:17:dd:27:cc:66:c6:
d7:0e:b2:49:6f:0b:2c:64:1f:a0:5f:31:79:9a:cd:e3:4d:b9:
0d:ac:f3:e2
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUX8+3KHcaxmcrI6Kz2mD5TRg1C14wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDZaFw0yMzA0MTkwNTAwMDZaMDMxMTAvBgNV
BAMTKEUwMjkwOUYyNzY4RkUyN0ZBREZBRTZCMTI2RTZBMzEzODFCN0Y5MzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4PKiXzKZRwIPbZC065fbgveLG
Yu0YTakCR6qZ+NtNCRiyFKmPdlrxHAsmC3dPgzKrGWo1RyLBB0H3PeTD7tv3xcl3
4Vr+sQUFNgnvc4SKbtODZkmcO1jLG1KvmXY3zxXZRnQMPQytBeCCtI5j+X3FEBxU
c2dr4flhDN91riEMH/+hUsfljvJZEnsDFCpcdN8CJ8bn3PaH9r3q5TwO+WBCkRcy
j9THvJTrpbfVnTVA2YIN8Wre36mhnkbAi8tZFCJrI4kG3g54MnQQtK5nJdFM0693
d1fyz72S0bk+6Gg3gxkSkf65VMY5k83UFsdoQFAqEUQiiSP2nHbt+WganqgPAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU4CkJ8naP4n+t+uaxJuajE4G3+TcwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM3MzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNWtMA0GCSqG
SIb3DQEBCwUAA4IBAQCYptK8T3ms6WU2bC644/LisQ42v2s7dMEBWq9kwocIkYYV
ZY6YitBUalIuJVdBs/efzndz6xFyAHGdVgD4XvUjMY06NE2N+Q/qQi/jNeMT1p6M
/mct4Uf8GE/G9PCFcNpghB0Z1exdkP820uf98+KvTjB5OiH1W3nUpVaEWueFNC1D
yL9oHNxRtZB21I4HX1tqL4jNrP0TUKjEBARS9NHeKCr9Y0+M8Z00oiEDM/9TKExQ
hglL+VhAwwZ75bGQ4g76YTQiebXVAnQl4+xS0idtOnba08F5KWW+qDK6YsOEJhqK
RXkX3SfMZsbXDrJJbwssZB+gXzF5ms3jTbkNrPPi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org