Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230352e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3230352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 7MUkCk4SU3kb7ENf038mnQULk9pfnBjCc6tNyhiGoYA=
Subject key identifier: 74:7C:A3:05:39:8E:D2:9F:AD:0B:A2:6C:89:20:9F:53:D9:1A:97:51
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 774231E9ECD2111DA426C12650EC3FFC59C08DDD
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230352e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:02 +0000
ROA not before: Wed 20 Apr 2022 05:55:02 +0000
ROA not after: Wed 19 Apr 2023 06:00:02 +0000
asID: 17885
IP address blocks: 140.213.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:42:31:e9:ec:d2:11:1d:a4:26:c1:26:50:ec:3f:fc:59:c0:8d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 05:55:02 2022 GMT
Not After : Apr 19 06:00:02 2023 GMT
Subject: CN=747CA305398ED29FAD0BA26C89209F53D91A9751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:db:36:52:4f:1e:ea:c5:96:61:ad:7f:fa:
e3:5b:df:57:16:3d:72:28:81:ef:cf:67:d2:20:df:
4b:ab:76:96:15:06:94:75:f1:62:1a:93:e5:31:ea:
b4:9c:5a:fc:f1:eb:0b:dc:9f:d1:ce:fb:1c:36:b8:
55:58:69:d6:31:23:90:e1:ba:72:de:22:4a:84:31:
04:ed:40:24:be:30:1d:6d:92:61:02:83:2a:12:2d:
ff:6b:d7:8f:53:28:c7:e6:c9:21:c9:85:e5:5a:d1:
3c:9e:f0:1f:60:fb:74:02:18:75:83:ad:82:c7:64:
1f:10:4e:67:d8:7a:73:73:35:0c:a8:5c:88:a4:39:
5e:18:f7:3e:ce:08:3c:dc:90:ba:66:84:79:17:5c:
42:99:ef:df:20:d9:6d:94:eb:12:06:22:79:0d:f0:
53:af:55:5c:a6:6a:1e:2c:37:c4:ce:9f:1a:64:cb:
d1:42:21:3b:9d:2f:fc:7a:5a:f8:33:6a:28:b8:53:
da:1b:a9:e3:40:d6:a8:a4:04:3d:a6:94:4e:0c:91:
cc:0c:26:54:ff:ac:96:01:84:7f:41:46:ed:37:fa:
b9:90:98:a6:f5:31:6c:e3:48:1e:46:d7:a5:9f:70:
45:ea:ec:aa:0c:20:5f:01:f2:cf:a6:2f:27:52:c6:
0f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7C:A3:05:39:8E:D2:9F:AD:0B:A2:6C:89:20:9F:53:D9:1A:97:51
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.205.0/24
Signature Algorithm: sha256WithRSAEncryption
10:38:9a:d7:4e:ac:20:0d:ef:fe:e9:f5:94:da:58:7f:74:12:
df:ee:e3:2f:4a:c7:fb:1c:1a:3b:63:ba:80:c6:b5:25:01:9f:
f3:48:f1:5c:dc:53:53:0b:a4:f6:a6:f1:3f:f0:10:e9:78:d4:
87:2d:86:0f:d4:eb:e7:cb:93:9a:8e:3a:e1:b8:8a:b8:e3:c6:
db:0d:1e:25:30:55:63:11:7c:c4:95:15:9e:54:9d:ee:c8:89:
56:5a:e8:cc:c7:fd:c4:7d:4f:d9:36:17:5c:94:98:e2:ec:04:
49:60:f7:32:7f:25:f7:6e:50:ea:a7:dc:83:dc:85:6a:d2:17:
d1:18:fe:f6:2c:3a:f3:dd:2b:da:49:c3:44:63:f9:b7:6d:00:
ba:b3:c9:5d:c0:68:a0:39:96:26:52:11:60:95:93:5b:ab:c0:
c3:3b:e7:6d:1b:db:ab:c8:7e:85:43:07:db:13:22:3e:bb:3f:
34:78:5a:64:70:64:ac:76:fa:c0:fe:e4:80:50:e3:b9:8d:86:
12:21:8e:e6:e8:47:c1:81:53:d6:a5:c4:73:4c:fe:17:cc:7b:
1d:d7:7e:ca:25:6c:a3:aa:bd:ec:ae:66:0f:5f:57:90:1d:20:
c0:f0:2b:94:ea:4a:02:17:30:f9:ff:e3:31:54:ee:8f:c1:57:
05:ec:af:42
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUd0Ix6ezSER2kJsEmUOw//FnAjd0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNTU1MDJaFw0yMzA0MTkwNjAwMDJaMDMxMTAvBgNV
BAMTKDc0N0NBMzA1Mzk4RUQyOUZBRDBCQTI2Qzg5MjA5RjUzRDkxQTk3NTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Tds2Uk8e6sWWYa1/+uNb31cW
PXIoge/PZ9Ig30urdpYVBpR18WIak+Ux6rScWvzx6wvcn9HO+xw2uFVYadYxI5Dh
unLeIkqEMQTtQCS+MB1tkmECgyoSLf9r149TKMfmySHJheVa0Tye8B9g+3QCGHWD
rYLHZB8QTmfYenNzNQyoXIikOV4Y9z7OCDzckLpmhHkXXEKZ798g2W2U6xIGInkN
8FOvVVymah4sN8TOnxpky9FCITudL/x6Wvgzaii4U9obqeNA1qikBD2mlE4MkcwM
JlT/rJYBhH9BRu03+rmQmKb1MWzjSB5G16WfcEXq7KoMIF8B8s+mLydSxg/xAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUdHyjBTmO0p+tC6JsiSCfU9kal1EwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMjMwMzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNXNMA0GCSqG
SIb3DQEBCwUAA4IBAQAQOJrXTqwgDe/+6fWU2lh/dBLf7uMvSsf7HBo7Y7qAxrUl
AZ/zSPFc3FNTC6T2pvE/8BDpeNSHLYYP1Ovny5OajjrhuIq448bbDR4lMFVjEXzE
lRWeVJ3uyIlWWujMx/3EfU/ZNhdclJji7ARJYPcyfyX3blDqp9yD3IVq0hfRGP72
LDrz3SvaScNEY/m3bQC6s8ldwGigOZYmUhFglZNbq8DDO+dtG9uryH6FQwfbEyI+
uz80eFpkcGSsdvrA/uSAUOO5jYYSIY7m6EfBgVPWpcRzTP4XzHsd137KJWyjqr3s
rmYPX1eQHSDA8CuU6koCFzD5/+MxVO6PwVcF7K9C
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org