Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138392e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3138392e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: YJRbkmuM8i5h4eenq1I/u0OwGvr9VHsulLM719EFdd8=
Subject key identifier: F8:98:FA:DC:1B:A0:1A:A3:5A:D7:FC:FB:0D:B6:C6:B5:20:C4:C2:8C
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 35248440FACB4980B2AF2F86FF712DF23C13D256
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138392e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 05:00:00 +0000
ROA not before: Wed 20 Apr 2022 04:55:00 +0000
ROA not after: Wed 19 Apr 2023 05:00:00 +0000
asID: 17885
IP address blocks: 140.213.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:24:84:40:fa:cb:49:80:b2:af:2f:86:ff:71:2d:f2:3c:13:d2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 04:55:00 2022 GMT
Not After : Apr 19 05:00:00 2023 GMT
Subject: CN=F898FADC1BA01AA35AD7FCFB0DB6C6B520C4C28C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:29:11:c3:7d:2c:f7:01:0e:b3:b4:d6:00:46:
c3:07:57:5a:c0:29:3e:84:04:f5:46:d3:aa:e0:b0:
14:a3:5d:06:04:c2:ba:12:8a:d1:a6:f0:8b:0a:a1:
24:ee:06:f5:9f:59:a6:e8:1f:4f:0a:0f:c6:5e:f0:
70:05:54:92:62:42:c6:39:9d:83:40:fc:4a:06:e9:
d2:48:b1:97:a3:a8:8c:86:b4:f1:62:aa:98:d9:27:
b6:93:12:06:d1:6a:e3:88:17:89:c9:9f:13:1e:d4:
ff:95:94:7c:78:ef:3e:c9:e9:7d:67:62:82:c7:be:
47:b4:1a:36:dd:ff:4d:58:6d:8b:37:bc:3b:58:e7:
e9:5c:08:b5:32:c0:b0:d1:b7:fe:95:bf:05:68:28:
41:79:e4:90:b0:76:40:f7:29:89:2d:ad:b0:ce:8c:
2f:19:d2:52:78:7e:08:b7:4b:fd:f7:3a:bc:16:c1:
93:1b:6c:03:34:0d:97:9d:77:d7:ae:14:27:89:8d:
dd:1f:3e:8c:26:bd:63:01:a1:cc:ef:8d:c8:89:6c:
dd:cc:05:13:41:ce:20:bf:8b:51:5d:5f:a4:9e:5b:
9b:62:16:8b:e4:0a:92:06:95:10:b4:f7:de:b1:53:
fb:5c:cd:ce:35:75:13:4a:b2:ef:ac:c0:b4:0f:b7:
42:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:98:FA:DC:1B:A0:1A:A3:5A:D7:FC:FB:0D:B6:C6:B5:20:C4:C2:8C
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3138392e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.189.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:a2:e4:ae:a6:e1:fc:96:20:eb:78:7b:7f:d5:e1:9e:22:e0:
4f:c9:49:a6:70:07:46:3e:05:7b:6a:09:86:87:01:ba:ae:49:
85:2f:6c:db:af:d6:57:c3:8e:4e:07:23:8e:a6:93:8a:21:17:
9d:0a:e4:4b:e1:ea:b8:39:39:f4:de:79:d6:1e:ab:a3:1a:03:
5c:a2:6f:45:1d:92:76:03:73:a9:8f:46:df:2f:13:2e:80:5d:
ac:6e:5e:1a:7e:47:99:31:7d:09:2c:1d:f8:95:00:67:f4:45:
2e:0e:d5:71:8f:9d:8d:22:f6:0d:37:0c:42:ff:eb:f4:6f:50:
09:5a:4e:c2:53:ed:23:1b:75:da:e0:16:99:c9:6c:52:39:db:
b5:01:98:d1:79:26:a8:5f:1c:44:5c:69:82:31:aa:53:d7:43:
91:67:b3:25:62:b8:b3:32:f3:67:03:de:93:3f:bc:46:9e:a5:
2b:ed:a8:88:98:83:58:d7:8b:28:9e:c5:df:da:f0:de:57:b4:
0e:d0:39:53:e0:ca:59:71:79:bc:80:e9:59:54:b1:c1:47:f5:
61:4b:28:d1:27:f2:fc:13:22:96:f3:18:32:2d:69:be:d7:1f:
ac:1c:95:ff:0d:86:0e:53:be:b4:71:6a:e0:0b:f6:f2:c3:6c:
4c:80:30:86
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUNSSEQPrLSYCyry+G/3Et8jwT0lYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNDU1MDBaFw0yMzA0MTkwNTAwMDBaMDMxMTAvBgNV
BAMTKEY4OThGQURDMUJBMDFBQTM1QUQ3RkNGQjBEQjZDNkI1MjBDNEMyOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKRHDfSz3AQ6ztNYARsMHV1rA
KT6EBPVG06rgsBSjXQYEwroSitGm8IsKoSTuBvWfWaboH08KD8Ze8HAFVJJiQsY5
nYNA/EoG6dJIsZejqIyGtPFiqpjZJ7aTEgbRauOIF4nJnxMe1P+VlHx47z7J6X1n
YoLHvke0Gjbd/01YbYs3vDtY5+lcCLUywLDRt/6VvwVoKEF55JCwdkD3KYktrbDO
jC8Z0lJ4fgi3S/33OrwWwZMbbAM0DZedd9euFCeJjd0fPowmvWMBoczvjciJbN3M
BRNBziC/i1FdX6SeW5tiFovkCpIGlRC0996xU/tczc41dRNKsu+swLQPt0INAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU+Jj63BugGqNa1/z7DbbGtSDEwowwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTM4MzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNW9MA0GCSqG
SIb3DQEBCwUAA4IBAQBuouSupuH8liDreHt/1eGeIuBPyUmmcAdGPgV7agmGhwG6
rkmFL2zbr9ZXw45OByOOppOKIRedCuRL4eq4OTn03nnWHqujGgNcom9FHZJ2A3Op
j0bfLxMugF2sbl4afkeZMX0JLB34lQBn9EUuDtVxj52NIvYNNwxC/+v0b1AJWk7C
U+0jG3Xa4BaZyWxSOdu1AZjReSaoXxxEXGmCMapT10ORZ7MlYrizMvNnA96TP7xG
nqUr7aiImINY14sonsXf2vDeV7QO0DlT4MpZcXm8gOlZVLHBR/VhSyjRJ/L8EyKW
8xgyLWm+1x+sHJX/DYYOU760cWrgC/byw2xMgDCG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org