Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138362e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3138362e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: mJ3JP9JR0p6tVdrWmnWR6mMMTkIUa9i8Jzi9exjEyxA=
Subject key identifier: FE:AE:41:28:65:CC:81:67:BF:25:B6:BA:2E:CF:97:41:98:09:62:07
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 0C99966A061DE172BB55FABCA86D8704994EE333
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138362e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 05:00:02 +0000
ROA not before: Wed 20 Apr 2022 04:55:02 +0000
ROA not after: Wed 19 Apr 2023 05:00:02 +0000
asID: 17885
IP address blocks: 140.213.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:99:96:6a:06:1d:e1:72:bb:55:fa:bc:a8:6d:87:04:99:4e:e3:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:02 2022 GMT
Not After : Apr 19 05:00:02 2023 GMT
Subject: CN=FEAE412865CC8167BF25B6BA2ECF974198096207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:46:71:70:fa:72:53:27:ab:a9:d3:7a:ff:42:
8b:d6:00:70:c0:0b:1e:40:6e:ab:ae:be:34:94:d1:
d0:4a:06:66:b8:0d:95:39:f8:53:8e:cd:f0:b8:ef:
f8:f8:0a:1e:81:6b:1d:e5:74:c5:4f:36:32:a2:95:
a1:80:84:14:06:e9:bf:6b:e5:79:2f:48:a6:f7:ca:
c0:55:36:41:58:01:46:48:19:da:c0:d3:63:dc:fd:
94:e7:9e:29:b6:47:91:5a:be:17:60:e7:fd:3b:bd:
2e:c4:4f:e5:1e:31:8e:ec:78:7a:1b:e4:dc:7b:65:
8f:42:8b:ea:90:4c:88:17:bb:e3:0e:f7:9a:d9:11:
6a:1d:82:71:89:07:05:a5:57:97:9d:b5:60:85:d4:
30:3c:02:0d:17:c2:a4:1f:3b:b5:e6:50:9f:02:82:
c1:04:d2:1a:4f:96:35:a3:18:6a:2e:f2:f7:1e:8d:
19:40:80:4e:3c:6a:fe:b3:53:6b:b0:d0:91:95:fd:
2d:5c:ad:19:aa:7e:e0:71:8e:27:87:dc:79:48:6d:
d1:9f:b0:da:51:4f:e8:e4:32:ab:48:de:70:74:fc:
b2:c7:f6:d9:24:20:4d:27:92:e4:7b:f2:d1:8d:46:
10:ce:d4:d9:cb:bd:ef:ee:0b:5d:ed:87:be:e6:bb:
39:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AE:41:28:65:CC:81:67:BF:25:B6:BA:2E:CF:97:41:98:09:62:07
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138362e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.186.0/24
Signature Algorithm: sha256WithRSAEncryption
58:7c:c6:26:a3:c7:3b:e2:fd:36:ba:55:64:8f:ea:8a:d6:59:
5b:37:f3:ee:b0:19:a2:90:a1:3d:64:ee:e5:9f:e6:76:9e:20:
e8:d9:34:7d:41:bb:50:0a:90:11:c7:06:02:54:ec:08:9b:17:
3e:7b:f7:5a:be:e0:85:28:dd:ea:32:03:12:e3:fc:d9:aa:d1:
1f:d4:08:78:76:46:8c:f1:55:13:26:02:cb:a0:08:e2:c5:bf:
a1:82:29:c0:71:81:c2:b2:6f:51:4c:4b:1d:16:cd:d2:c8:87:
5d:34:68:fa:38:ba:5f:8f:4c:37:bf:c8:65:9f:7c:75:80:c0:
d9:ba:3d:61:92:2b:48:3a:31:8f:5d:da:1f:d5:0f:f7:56:72:
52:d1:b8:7a:a6:c8:76:b0:01:49:ef:7d:bd:3c:5f:b6:b8:c6:
9e:ee:36:8f:a3:19:20:27:a7:34:40:eb:48:30:35:34:25:93:
5c:ad:22:7d:4f:b5:5f:ed:a6:e9:57:06:54:10:4d:2a:ab:82:
f1:e3:60:a1:fb:b8:1a:54:f3:d4:f4:db:a7:da:a4:a4:90:aa:
d6:d5:81:53:b2:46:b1:a2:d5:7f:c8:e8:c0:e4:bb:b5:4a:a7:
a0:a8:7f:03:d0:f9:6f:4d:19:5e:03:97:b8:98:67:e3:df:1e:
d0:57:17:ab
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUDJmWagYd4XK7Vfq8qG2HBJlO4zMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDJaFw0yMzA0MTkwNTAwMDJaMDMxMTAvBgNV
BAMTKEZFQUU0MTI4NjVDQzgxNjdCRjI1QjZCQTJFQ0Y5NzQxOTgwOTYyMDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDURnFw+nJTJ6up03r/QovWAHDA
Cx5AbquuvjSU0dBKBma4DZU5+FOOzfC47/j4Ch6Bax3ldMVPNjKilaGAhBQG6b9r
5XkvSKb3ysBVNkFYAUZIGdrA02Pc/ZTnnim2R5Favhdg5/07vS7ET+UeMY7seHob
5Nx7ZY9Ci+qQTIgXu+MO95rZEWodgnGJBwWlV5edtWCF1DA8Ag0XwqQfO7XmUJ8C
gsEE0hpPljWjGGou8vcejRlAgE48av6zU2uw0JGV/S1crRmqfuBxjieH3HlIbdGf
sNpRT+jkMqtI3nB0/LLH9tkkIE0nkuR78tGNRhDO1NnLve/uC13th77muznBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU/q5BKGXMgWe/Jba6Ls+XQZgJYgcwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM4MzYyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNW6MA0GCSqG
SIb3DQEBCwUAA4IBAQBYfMYmo8c74v02ulVkj+qK1llbN/PusBmikKE9ZO7ln+Z2
niDo2TR9QbtQCpARxwYCVOwImxc+e/davuCFKN3qMgMS4/zZqtEf1Ah4dkaM8VUT
JgLLoAjixb+hginAcYHCsm9RTEsdFs3SyIddNGj6OLpfj0w3v8hln3x1gMDZuj1h
kitIOjGPXdof1Q/3VnJS0bh6psh2sAFJ7329PF+2uMae7jaPoxkgJ6c0QOtIMDU0
JZNcrSJ9T7Vf7abpVwZUEE0qq4Lx42Ch+7gaVPPU9Nun2qSkkKrW1YFTskaxotV/
yOjA5Lu1SqegqH8D0PlvTRleA5e4mGfj3x7QVxer
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org