Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3137382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: EI1XZMF/5NFOQmDwz2DS7WLME69nitzxo2SuZgOHpKc=
Subject key identifier: 97:E6:CC:78:AE:F0:13:50:4B:29:93:F4:40:E4:FF:41:B8:A6:0A:20
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6AEF650C5340C98AF7D79230AC041108AEF1A190
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:04 +0000
ROA not before: Wed 20 Apr 2022 04:55:04 +0000
ROA not after: Wed 19 Apr 2023 05:00:04 +0000
asID: 24203
IP address blocks: 140.213.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:ef:65:0c:53:40:c9:8a:f7:d7:92:30:ac:04:11:08:ae:f1:a1:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:04 2022 GMT
Not After : Apr 19 05:00:04 2023 GMT
Subject: CN=97E6CC78AEF013504B2993F440E4FF41B8A60A20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cb:c7:b5:da:df:74:79:7b:40:43:e0:0c:ba:
f4:67:5e:18:52:53:ff:b7:97:40:e6:d7:e8:d9:70:
50:03:48:53:98:5a:a2:44:b8:db:c5:4e:de:77:3f:
69:90:fb:75:0f:26:e2:96:e9:48:6c:ac:64:31:89:
5c:07:9b:ab:88:9a:e3:28:c9:a4:78:dc:e0:8a:b4:
64:02:ab:ea:0b:80:1c:71:18:de:c3:05:22:de:cb:
e3:87:4c:74:10:e6:49:fb:7c:76:95:40:ad:a7:4f:
56:5e:f7:b2:e0:dc:ee:e9:68:52:05:39:25:40:97:
eb:27:15:83:7f:c6:25:ad:ec:a4:bc:0c:9f:4e:75:
74:52:11:82:c8:99:4a:3a:3a:5f:84:39:b4:bf:25:
2c:1c:e6:25:24:15:d3:62:2b:13:e7:f3:58:f1:a6:
4f:50:37:ba:9a:ba:de:cd:cb:c5:15:c7:70:ba:89:
2b:34:2a:f1:54:5d:81:a9:2d:9e:55:28:49:17:e6:
d3:8d:c6:ad:4a:f3:8b:31:34:04:36:11:41:a2:b9:
44:9a:a6:87:16:d5:79:c7:52:c6:d1:1e:18:c6:85:
59:48:54:24:b9:aa:6e:73:3e:89:e5:ab:9f:d0:45:
1c:3a:58:41:e7:b2:bb:4d:73:e3:a6:cc:44:ea:45:
02:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E6:CC:78:AE:F0:13:50:4B:29:93:F4:40:E4:FF:41:B8:A6:0A:20
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3137382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.178.0/24
Signature Algorithm: sha256WithRSAEncryption
12:97:9d:0e:88:7c:09:3b:d8:d4:9f:1d:3c:74:43:44:ec:66:
6c:f0:f4:b3:f8:27:8d:f1:4a:22:19:dd:c0:dc:4e:df:e6:77:
3f:3f:b8:45:2b:13:1d:4b:8a:d2:b4:10:e5:8d:fe:85:78:ab:
31:b2:1f:ba:75:99:f4:30:fa:3d:23:da:03:9c:2c:0f:08:c4:
69:73:ff:7d:58:0a:dc:4b:c6:1e:26:80:04:06:c4:9b:93:7d:
76:b0:1f:33:ef:35:69:6c:66:0a:77:51:88:13:de:13:80:01:
47:94:fc:bc:2b:61:68:be:06:60:3e:41:b3:4a:45:2b:c2:d6:
a4:cd:50:4b:d4:2e:02:88:d9:b6:16:45:7c:90:52:22:c3:8c:
e0:31:ae:f6:04:be:1e:47:fa:08:77:d6:58:15:32:0b:78:62:
9d:2e:a2:ad:46:5a:dd:12:5d:9b:89:5e:dd:81:d1:e5:99:82:
13:85:79:ab:c3:f0:d4:2f:f1:15:3a:46:40:87:27:ee:4e:6d:
fe:74:96:de:2c:45:ee:83:6d:37:49:30:e4:eb:d1:88:9a:9c:
23:a6:cd:82:5c:87:3c:7c:6e:c8:09:b7:bc:34:9d:d1:ff:d0:
71:ae:74:90:6e:3a:e6:cc:c3:58:27:ad:48:cf:9f:8c:2e:71:
39:fa:20:60
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUau9lDFNAyYr315IwrAQRCK7xoZAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDRaFw0yMzA0MTkwNTAwMDRaMDMxMTAvBgNV
BAMTKDk3RTZDQzc4QUVGMDEzNTA0QjI5OTNGNDQwRTRGRjQxQjhBNjBBMjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsy8e12t90eXtAQ+AMuvRnXhhS
U/+3l0Dm1+jZcFADSFOYWqJEuNvFTt53P2mQ+3UPJuKW6UhsrGQxiVwHm6uImuMo
yaR43OCKtGQCq+oLgBxxGN7DBSLey+OHTHQQ5kn7fHaVQK2nT1Ze97Lg3O7paFIF
OSVAl+snFYN/xiWt7KS8DJ9OdXRSEYLImUo6Ol+EObS/JSwc5iUkFdNiKxPn81jx
pk9QN7qaut7Ny8UVx3C6iSs0KvFUXYGpLZ5VKEkX5tONxq1K84sxNAQ2EUGiuUSa
pocW1XnHUsbRHhjGhVlIVCS5qm5zPonlq5/QRRw6WEHnsrtNc+OmzETqRQLXAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUl+bMeK7wE1BLKZP0QOT/QbimCiAwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM3MzgyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNWyMA0GCSqG
SIb3DQEBCwUAA4IBAQASl50OiHwJO9jUnx08dENE7GZs8PSz+CeN8UoiGd3A3E7f
5nc/P7hFKxMdS4rStBDljf6FeKsxsh+6dZn0MPo9I9oDnCwPCMRpc/99WArcS8Ye
JoAEBsSbk312sB8z7zVpbGYKd1GIE94TgAFHlPy8K2FovgZgPkGzSkUrwtakzVBL
1C4CiNm2FkV8kFIiw4zgMa72BL4eR/oId9ZYFTILeGKdLqKtRlrdEl2biV7dgdHl
mYIThXmrw/DUL/EVOkZAhyfuTm3+dJbeLEXug203STDk69GImpwjps2CXIc8fG7I
Cbe8NJ3R/9BxrnSQbjrmzMNYJ61Iz5+MLnE5+iBg
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org