Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138372e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3138372e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: oNT9B5YMgzop35yKSy5KvoroZbGRhNpKrFfDVxy86mw=
Subject key identifier: B8:42:62:6E:F8:4E:70:7B:A9:C8:BD:C4:E2:25:31:0A:D5:97:92:EA
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 42A8B3F91E383F12946B62D404E5476FF7256DFF
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138372e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 05:00:04 +0000
ROA not before: Wed 20 Apr 2022 04:55:04 +0000
ROA not after: Wed 19 Apr 2023 05:00:04 +0000
asID: 17885
IP address blocks: 140.213.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:a8:b3:f9:1e:38:3f:12:94:6b:62:d4:04:e5:47:6f:f7:25:6d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:04 2022 GMT
Not After : Apr 19 05:00:04 2023 GMT
Subject: CN=B842626EF84E707BA9C8BDC4E225310AD59792EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:9f:13:95:ac:56:b9:8e:a5:d5:06:6e:cf:
c4:37:e1:41:43:ba:aa:f5:2c:e9:6b:1b:65:f1:22:
34:b2:d0:df:f9:86:53:5b:53:dc:df:32:cd:e2:5e:
4f:ad:99:e8:fb:65:5e:65:1d:8c:f5:48:0d:bb:68:
60:08:93:05:67:75:7b:21:a9:13:16:9e:3b:47:42:
75:a7:be:b1:b4:e2:d8:30:84:ef:04:9c:02:c1:63:
00:64:01:e2:bd:c9:35:c4:6e:36:75:c9:59:19:4c:
da:d7:d1:7b:c5:b9:09:bd:de:6c:1a:05:72:06:fa:
16:16:52:db:b7:98:6b:f9:43:10:29:34:26:94:5f:
d2:8d:58:dc:55:5c:30:25:bb:82:1e:00:d7:4a:ad:
c8:a2:72:0b:47:76:4a:9a:22:57:ed:72:97:d6:2f:
82:4e:d7:d8:b5:d5:39:0a:35:6b:88:28:38:98:9f:
b3:26:fa:8c:5b:a9:e5:42:46:14:6f:08:cc:51:11:
25:b4:24:ef:40:dd:19:e6:35:5f:1e:0a:40:4f:dd:
d3:9d:a3:41:8c:63:fb:00:0a:c8:5f:89:36:c6:3b:
f3:90:aa:62:1d:c0:42:64:36:1b:94:19:b2:f6:cd:
6e:87:41:49:4b:ad:5b:ef:97:68:39:a7:12:53:ac:
f4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:42:62:6E:F8:4E:70:7B:A9:C8:BD:C4:E2:25:31:0A:D5:97:92:EA
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138372e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.187.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d3:8b:98:9c:e2:e8:b9:50:92:31:d0:29:7c:e9:fa:10:85:
d1:dd:f2:dd:87:d5:69:1a:de:24:32:46:62:b8:c7:69:cd:38:
16:b6:73:36:06:25:71:17:04:36:0e:8d:ee:cc:a6:87:68:5d:
5f:61:51:8d:19:2a:45:a7:6a:6d:d2:59:d7:90:75:c8:5d:68:
51:cb:ce:2e:10:b6:90:2d:f9:4b:61:ba:28:26:0f:01:3b:ae:
4e:11:85:63:1c:17:92:f6:16:03:ef:64:79:ee:b9:a8:13:20:
d1:cd:12:74:93:f1:d8:d4:67:79:49:66:fa:04:e0:49:63:d6:
2b:5c:4f:ad:10:e2:ce:81:fb:b9:f3:81:71:6f:f8:a6:c2:25:
e9:66:85:04:56:2a:79:95:29:78:17:0a:79:19:7d:1a:cd:29:
8b:1e:d5:25:09:82:22:b5:27:fb:db:30:8d:c0:2c:e0:8f:b9:
66:ab:ad:cd:8d:68:00:6f:33:60:ca:f4:f1:f9:b4:ee:7f:6b:
e7:ce:a3:b7:bf:5e:e9:d9:6e:ca:e2:d9:89:41:7a:72:d8:09:
ac:88:61:b4:a5:6b:75:e2:89:33:22:e0:06:eb:2f:66:56:f1:
eb:c9:30:24:cf:df:76:01:bf:86:2f:95:3c:a2:1f:75:c3:fb:
d5:8f:c8:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org