Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: +RiKo1NaYlrCaB1ruyWpemgdKcUG1qqegA7ezRNYHAA=
Subject key identifier: 3E:23:45:5E:49:73:63:29:CB:BA:0E:1F:5F:B6:A5:C7:84:3B:26:AD
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 3F0A95E9CEA2C31A5B6879427912D4EA46A8C80B
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa
Signing time: Sat 08 Jan 2022 17:34:14 +0000
ROA not before: Sat 08 Jan 2022 17:29:14 +0000
ROA not after: Sun 08 Jan 2023 17:34:14 +0000
asID: 139994
IP address blocks: 140.213.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:0a:95:e9:ce:a2:c3:1a:5b:68:79:42:79:12:d4:ea:46:a8:c8:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:29:14 2022 GMT
Not After : Jan 8 17:34:14 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:80:96:77:4f:f5:9d:57:2d:36:25:3a:bf:d6:
fe:5d:5d:63:cd:2a:b8:b1:d6:ae:48:1a:a8:64:1b:
cc:9b:f8:82:30:9b:4e:00:fe:aa:1b:a6:2c:7e:89:
72:0a:51:2a:ce:ad:d0:fe:e4:13:dc:3c:17:3e:90:
80:68:a7:02:d6:fb:a8:d4:8c:16:8f:f4:25:ae:07:
c2:7e:0a:66:b4:02:33:13:11:c4:22:63:27:7a:d0:
28:2a:ae:29:df:60:29:26:33:b1:24:d4:0b:09:b0:
53:8c:62:49:bb:07:ee:d7:42:eb:72:2f:8c:e6:e4:
a0:64:64:d7:85:09:37:dc:b9:6e:a7:f8:ca:38:75:
e9:9d:66:e4:c5:dd:4e:66:f6:6a:67:a0:ba:c9:0c:
41:9d:f9:eb:9d:6b:8e:47:01:fa:a3:44:1c:62:4a:
d1:2a:57:17:01:2c:9e:70:19:b8:a6:6b:40:a6:8a:
1b:1a:6e:91:d8:5a:49:4b:0e:2a:4a:34:df:7a:dc:
7c:32:ec:64:c9:f6:96:1d:ca:d3:9c:91:10:b1:fa:
53:b2:08:b2:8b:dd:72:ec:64:5f:98:0e:d1:ce:70:
cb:51:4b:f4:52:1a:22:60:94:d1:25:26:0a:ed:7b:
73:c5:88:29:e6:23:2e:28:03:6f:93:ca:51:61:a4:
7e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:23:45:5E:49:73:63:29:CB:BA:0E:1F:5F:B6:A5:C7:84:3B:26:AD
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230332e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.203.0/24
Signature Algorithm: sha256WithRSAEncryption
02:dd:f8:e7:89:6f:92:a6:55:f0:74:80:16:fa:44:90:36:49:
6d:24:5d:bb:0e:5d:04:49:7f:eb:82:59:11:fe:29:e1:a9:dc:
d5:54:2e:16:9b:dd:66:dd:df:96:ab:e9:00:4a:6a:9d:48:d0:
68:92:be:0b:bf:39:53:ff:a0:42:22:6c:e6:7c:1a:7b:bb:11:
2c:b1:a0:e5:be:db:10:8c:b0:ff:7b:2f:52:e7:18:93:c8:16:
7e:e6:15:44:88:d5:65:99:a6:cb:2b:48:90:1a:84:47:b1:fd:
cf:fe:99:f0:6b:30:9c:05:30:10:d4:b2:2a:19:4f:f9:db:b9:
9e:ac:e8:f2:a8:5a:cb:04:c7:33:28:fa:03:70:32:a5:1f:c7:
f0:6e:49:f4:33:e3:1f:f2:e1:ac:fa:66:d6:70:2f:1f:1b:9f:
e3:7b:ba:b7:46:78:58:78:85:a5:cc:a1:69:cd:15:2f:a8:34:
8b:5f:82:7c:dd:eb:d6:ba:53:5f:ed:9d:c7:90:aa:6e:61:be:
67:f7:08:c4:00:fe:56:77:2e:e8:16:56:e2:92:ab:34:ec:28:
fc:ec:17:a7:f9:95:2f:ad:a9:1d:dd:bb:70:59:d0:7b:90:88:
1d:ab:6d:c4:ca:fd:47:21:e1:bf:46:4b:44:3e:01:08:a6:89:
f0:62:45:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org