Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3138322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: iUXFOP1IJoiVP+e512Xb46wTYS9h16mDQIUrBF67Fus=
Subject key identifier: 23:10:A8:E3:A4:29:C9:36:F0:AF:CC:5D:7F:32:56:A2:81:01:54:76
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4B74758C0329B7557E197068F9066C582643303F
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138322e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 05:00:03 +0000
ROA not before: Wed 20 Apr 2022 04:55:03 +0000
ROA not after: Wed 19 Apr 2023 05:00:03 +0000
asID: 24203
IP address blocks: 140.213.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:74:75:8c:03:29:b7:55:7e:19:70:68:f9:06:6c:58:26:43:30:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:03 2022 GMT
Not After : Apr 19 05:00:03 2023 GMT
Subject: CN=2310A8E3A429C936F0AFCC5D7F3256A281015476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a1:e9:01:33:05:61:cb:82:5b:9f:6c:ca:d9:
97:df:ff:7c:e0:b7:99:5f:b9:0c:e3:84:ea:58:92:
49:9a:d4:b1:e0:df:64:76:71:ef:55:0f:5c:9c:04:
ba:c5:a1:90:52:27:08:fa:d2:fe:42:99:8d:85:d1:
7f:0a:dd:32:54:1a:f1:e7:3e:8a:6f:65:ac:66:c1:
7d:a2:e9:d6:5a:dc:a4:7c:ac:b6:e7:73:18:8f:9d:
9a:69:3c:e3:db:25:2b:41:aa:82:47:e3:7b:4b:9f:
91:cf:79:07:1a:e4:f8:da:df:9e:1a:e1:77:ea:6c:
90:4d:b3:85:3b:d8:a8:d3:c4:4b:f1:f7:64:96:be:
18:9c:c5:49:b5:64:ee:7b:20:1f:c3:f9:5e:4d:f1:
05:50:c2:93:46:44:59:3f:01:71:6d:4a:a9:ef:41:
8c:83:b8:44:bc:93:07:d9:e7:97:bd:ff:32:01:9e:
67:48:c7:98:0f:fd:55:6e:0d:93:94:bf:36:e6:3d:
77:76:46:eb:76:30:fd:4e:fc:36:0b:2a:22:eb:d1:
1b:2d:49:1d:7e:3a:23:be:1e:e2:ed:68:49:44:9a:
0a:53:46:df:4a:f0:b2:c6:4e:60:ee:1d:a8:4a:67:
b1:c5:bc:c8:87:8b:6a:93:b6:17:30:9a:07:24:63:
fe:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:10:A8:E3:A4:29:C9:36:F0:AF:CC:5D:7F:32:56:A2:81:01:54:76
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.182.0/24
Signature Algorithm: sha256WithRSAEncryption
23:02:d1:fb:47:d2:bc:7f:c4:58:a1:d6:c9:45:eb:fd:7b:2b:
d9:a0:f3:ac:0e:77:bd:4c:d8:2b:0a:7c:72:49:33:35:ce:06:
18:df:ba:ca:47:cf:cd:81:a5:32:c4:9d:f2:c8:cf:40:32:67:
7a:3b:47:94:d7:0d:f7:cb:7d:e1:33:ca:96:a0:94:ea:22:ba:
b6:36:a5:9d:b2:20:a6:9f:e0:0c:db:60:2c:23:33:f0:95:5f:
71:d7:cc:f8:09:d3:94:27:73:fa:04:a0:47:7e:9d:bd:f0:18:
36:9f:48:d3:94:d7:8d:ee:65:aa:4c:41:a0:36:d8:38:e3:78:
ce:5a:08:35:c0:98:bd:06:61:ae:96:d5:ca:f4:ff:e6:f4:81:
f1:00:4d:df:52:7b:83:b8:60:9f:66:f4:fd:31:58:74:a8:5a:
d3:b1:1b:27:79:3e:07:8c:9b:7d:cc:80:f6:ec:5d:dc:6d:59:
ed:7e:f5:a8:42:9f:b8:8b:35:0b:2d:00:c9:ae:cc:88:1a:c0:
39:07:2c:34:20:c4:b8:29:4b:ad:bb:ff:8a:bd:2d:a4:d1:ce:
ef:bd:a9:07:d7:5f:2f:88:dd:46:c1:a8:26:44:b9:fb:e1:74:
c7:ef:c1:49:36:70:f7:23:3a:f6:97:b0:91:20:1b:6e:59:9d:
51:88:4c:1c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUS3R1jAMpt1V+GXBo+QZsWCZDMD8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDNaFw0yMzA0MTkwNTAwMDNaMDMxMTAvBgNV
BAMTKDIzMTBBOEUzQTQyOUM5MzZGMEFGQ0M1RDdGMzI1NkEyODEwMTU0NzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0oekBMwVhy4Jbn2zK2Zff/3zg
t5lfuQzjhOpYkkma1LHg32R2ce9VD1ycBLrFoZBSJwj60v5CmY2F0X8K3TJUGvHn
PopvZaxmwX2i6dZa3KR8rLbncxiPnZppPOPbJStBqoJH43tLn5HPeQca5Pja354a
4XfqbJBNs4U72KjTxEvx92SWvhicxUm1ZO57IB/D+V5N8QVQwpNGRFk/AXFtSqnv
QYyDuES8kwfZ55e9/zIBnmdIx5gP/VVuDZOUvzbmPXd2Rut2MP1O/DYLKiLr0Rst
SR1+OiO+HuLtaElEmgpTRt9K8LLGTmDuHahKZ7HFvMiHi2qTthcwmgckY/6fAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUIxCo46QpyTbwr8xdfzJWooEBVHYwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM4MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNW2MA0GCSqG
SIb3DQEBCwUAA4IBAQAjAtH7R9K8f8RYodbJRev9eyvZoPOsDne9TNgrCnxySTM1
zgYY37rKR8/NgaUyxJ3yyM9AMmd6O0eU1w33y33hM8qWoJTqIrq2NqWdsiCmn+AM
22AsIzPwlV9x18z4CdOUJ3P6BKBHfp298Bg2n0jTlNeN7mWqTEGgNtg443jOWgg1
wJi9BmGultXK9P/m9IHxAE3fUnuDuGCfZvT9MVh0qFrTsRsneT4HjJt9zID27F3c
bVntfvWoQp+4izULLQDJrsyIGsA5Byw0IMS4KUutu/+KvS2k0c7vvakH118viN1G
wagmRLn74XTH78FJNnD3Izr2l7CRIBtuWZ1RiEwc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org