Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138382e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3138382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: LlTlZzEmBx0fPap1+zM0gGOx/ZnQIRdA+GwAauSh+a8=
Subject key identifier: F2:68:5F:1A:67:16:FB:10:05:CB:FB:C2:61:81:29:9F:2A:17:61:B7
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 279A49D9F52C31EECBB0C8C7F29F57FF53D0A523
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138382e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 05:00:06 +0000
ROA not before: Wed 20 Apr 2022 04:55:06 +0000
ROA not after: Wed 19 Apr 2023 05:00:06 +0000
asID: 17885
IP address blocks: 140.213.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:9a:49:d9:f5:2c:31:ee:cb:b0:c8:c7:f2:9f:57:ff:53:d0:a5:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:06 2022 GMT
Not After : Apr 19 05:00:06 2023 GMT
Subject: CN=F2685F1A6716FB1005CBFBC26181299F2A1761B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6c:84:d2:49:80:99:2e:c8:fc:b7:76:55:0a:
44:40:24:39:be:2c:06:01:32:6a:67:3b:78:e4:c1:
79:6a:18:88:0f:98:eb:44:fa:f1:82:27:30:ec:68:
fe:f5:f7:09:7b:29:33:90:7f:d3:a7:4e:c6:1a:03:
fb:9f:60:a3:d6:6d:e8:46:81:5e:63:dc:b9:e4:00:
56:78:01:0b:58:eb:85:6e:9e:8a:1e:9d:6e:b8:a4:
ff:ae:8c:c7:77:23:43:d3:88:0b:67:c9:11:21:1d:
04:f3:c7:b7:f5:86:b0:c4:ea:d8:cd:d8:c4:5c:07:
4b:bb:60:f4:b6:49:d6:f7:89:63:0f:c6:12:8e:9b:
2a:61:3d:66:c8:d4:38:99:b4:5a:30:13:51:c3:08:
43:da:90:ca:da:96:3a:95:4d:ad:56:ce:30:a9:8c:
7d:79:68:d6:0a:0c:8e:25:ff:b0:4e:b9:5a:94:79:
e5:c1:cb:73:74:1f:a8:61:bf:9c:3f:16:36:86:8c:
21:48:af:bc:da:c1:53:29:c1:4b:60:6e:e5:ed:27:
97:ca:84:bd:16:14:c6:c7:5a:4b:25:0e:36:0b:88:
83:c7:fb:de:b6:f1:9c:5f:05:0c:22:37:92:b6:76:
08:10:e7:72:e1:c6:49:7d:4f:6f:63:23:df:9a:a9:
1a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:68:5F:1A:67:16:FB:10:05:CB:FB:C2:61:81:29:9F:2A:17:61:B7
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:0b:81:59:1a:a9:2a:cc:37:a7:27:3e:43:fb:1c:e8:4f:42:
08:e0:b0:e0:de:cc:f1:06:6d:81:51:2b:0f:d0:38:3c:19:9e:
31:36:2f:4b:2c:90:e8:e4:65:a8:88:7e:dd:9d:6b:f6:01:61:
ce:8e:8d:e5:b5:db:55:fe:cc:7b:dc:ac:cc:be:71:db:a7:34:
fe:36:0f:a4:81:84:28:20:f2:f3:b2:a0:a7:52:7b:da:ec:8f:
fe:46:a8:09:3c:c1:25:38:8e:dc:de:61:a9:01:59:c1:de:df:
e6:d0:48:2a:db:36:a2:fc:a7:a1:4b:2a:bb:36:5e:38:1a:f8:
dd:94:ef:84:cb:58:5d:bc:fc:db:c0:64:c8:c4:37:ff:c2:47:
75:25:18:ef:b7:f6:b7:6a:65:9a:49:4b:58:65:df:03:ca:b2:
d9:50:c2:84:f2:6d:19:c5:a7:17:5b:99:ce:b9:b4:a8:ed:ac:
25:80:87:51:04:3f:b5:f9:7e:de:5c:79:58:5d:41:4e:e9:ee:
38:22:2f:13:52:22:b2:0d:fb:80:5f:56:2f:13:dd:f8:b2:12:
d8:e2:a7:81:d2:c7:81:23:85:b5:64:f7:44:ed:09:60:69:06:
ac:06:2a:18:08:f2:7d:35:bb:8d:41:1d:0f:98:48:3e:84:44:
85:1a:93:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org