Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: 9pjcaqM0jPDUDn55e7raYWQEsA9d45jhI3Yve2DkZfs=
Subject key identifier: CA:2B:89:54:34:AC:41:5D:F8:7E:07:AA:10:27:40:1D:52:24:AD:57
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 7529F77A6FF4A894B1A254E05EF764FD6BEC2B28
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa
Signing time: Sat 08 Jan 2022 17:33:51 +0000
ROA not before: Sat 08 Jan 2022 17:28:51 +0000
ROA not after: Sun 08 Jan 2023 17:33:51 +0000
asID: 139994
IP address blocks: 140.213.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:29:f7:7a:6f:f4:a8:94:b1:a2:54:e0:5e:f7:64:fd:6b:ec:2b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:28:51 2022 GMT
Not After : Jan 8 17:33:51 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e2:4c:f0:25:fe:56:ea:7c:9d:eb:da:0a:a9:
03:a6:ee:57:fa:61:80:33:e3:ce:01:bd:76:a2:a0:
81:fc:60:5a:ff:9f:67:fa:08:3a:1b:83:65:06:ac:
52:3c:46:03:e3:70:bf:31:19:9a:ed:e8:f7:4e:b9:
85:40:a7:ce:d6:5d:ce:a5:10:15:48:bf:26:10:1c:
9c:5a:34:db:79:ac:54:1c:7b:a8:01:bd:57:0f:db:
de:52:a0:0e:e5:6d:fa:8d:62:67:59:a7:e5:83:90:
02:ad:7b:7f:2a:31:40:66:78:02:5c:c9:c0:1d:d7:
99:c1:ce:9b:64:ac:26:1b:0f:e8:13:d0:d4:44:93:
cb:ac:86:b6:36:a0:1c:24:80:7c:bd:50:27:cc:c3:
89:2c:3e:de:a7:f1:a7:15:de:f4:ba:e4:a4:72:2d:
2d:fb:2b:c1:c7:fb:cd:d6:55:9a:a3:30:1a:3e:16:
c0:22:9e:e3:cc:fa:e3:30:54:dc:3c:ba:cd:b6:30:
db:fc:09:cf:9a:64:72:66:61:24:80:1d:ab:76:c0:
03:95:e0:48:db:cb:84:5d:e7:b7:96:90:4e:67:57:
18:2f:af:1d:29:a3:44:86:31:65:2e:35:79:46:92:
a3:e0:e5:9f:03:49:53:8e:d2:50:18:59:67:ac:91:
a7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2B:89:54:34:AC:41:5D:F8:7E:07:AA:10:27:40:1D:52:24:AD:57
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.201.0/24
Signature Algorithm: sha256WithRSAEncryption
07:e8:e4:ec:3d:f6:96:a9:38:88:b3:c7:5f:be:e7:71:40:12:
18:83:26:d8:a1:42:63:43:42:c5:87:5b:0e:14:86:88:32:7f:
c2:5a:53:ac:82:61:b5:44:82:9a:8b:08:ee:14:fe:31:4c:32:
aa:e7:17:b4:65:85:dc:f5:e6:ee:81:7d:0e:61:51:7b:18:a3:
d2:78:89:14:e6:65:72:ef:39:48:f8:49:05:d0:2a:d0:1f:9f:
70:ce:e0:ad:f8:fd:76:df:04:00:2a:15:cd:75:f7:7c:17:76:
4b:27:c8:9c:be:cc:12:cc:bf:45:62:f2:fb:25:6c:98:09:1c:
71:69:91:45:7a:12:18:0c:bb:4f:73:f7:e7:39:8a:9c:fc:17:
ec:a6:a6:1c:33:17:1d:8d:7a:eb:6f:61:a4:74:50:b2:3a:e8:
5b:fd:42:fa:5f:68:ea:c0:23:8e:c0:81:f3:47:49:8a:c7:25:
74:62:f2:f2:18:16:28:ea:77:f1:07:f8:f3:26:42:48:66:6b:
bd:c7:76:bd:c0:5e:66:d9:f6:64:30:18:3b:fc:74:1a:e4:6e:
33:b3:b4:4b:a5:09:33:aa:6d:aa:b2:0b:28:43:aa:99:6d:c6:
6a:a7:8c:8c:2b:9a:e2:34:11:d6:0a:24:7d:e9:ad:44:bb:ee:
3c:39:ab:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org