Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3230392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: s1SOQ8PUqqRy2h6zPRpJD6YY7drgxdkgpJN24ZO0PfA=
Subject key identifier: BF:DA:73:8A:FC:F3:B5:86:C8:9A:08:C3:CD:6B:EA:22:80:7F:5F:B1
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 0C7EA83FE20082E6FEDCCFD16D8342A5C3914828
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230392e302f32342d3234203d3e203234323033.roa
Signing time: Mon 25 Oct 2021 09:52:17 +0000
ROA not before: Mon 25 Oct 2021 09:47:17 +0000
ROA not after: Tue 25 Oct 2022 09:52:17 +0000
asID: 24203
IP address blocks: 140.213.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:7e:a8:3f:e2:00:82:e6:fe:dc:cf:d1:6d:83:42:a5:c3:91:48:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Oct 25 09:47:17 2021 GMT
Not After : Oct 25 09:52:17 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f7:22:6f:2e:43:4c:d4:32:9a:29:b9:af:a6:
ac:5e:9e:72:d5:3e:48:02:44:61:d6:73:2f:33:fb:
e7:52:ea:75:30:a8:41:41:27:ff:ae:38:99:ef:f8:
74:4d:b0:82:c0:01:c8:1d:4d:5e:ae:8c:14:cc:67:
c8:fc:ef:32:ad:85:7b:22:7b:72:91:ac:a5:72:1b:
e5:d7:9f:de:46:f2:c7:88:78:b7:af:67:5a:3a:30:
a9:10:66:d4:3f:a9:ab:f5:f9:05:77:71:1b:59:53:
8c:e0:5c:0f:b8:8d:97:3f:9c:d0:cd:2d:f8:ac:3e:
ce:93:b6:a9:52:66:b7:b7:56:26:5d:bc:05:b2:4a:
ac:76:2f:42:bc:fa:9e:83:66:2a:15:a6:ef:f9:4e:
3f:3a:c2:db:d7:63:3c:df:f6:22:d3:c4:de:86:0c:
11:ae:0b:5a:20:82:ba:9d:17:01:3c:b0:8b:08:50:
f6:82:60:52:83:d4:bb:58:1c:60:dd:ac:e3:1a:13:
80:9a:bc:40:67:49:2a:32:d9:dc:a0:72:4f:45:83:
74:e0:c5:bd:3e:0e:7a:ec:bc:20:11:b2:63:bb:0d:
b3:a8:d5:3c:b9:0f:cf:05:07:d2:10:75:ac:ae:66:
ee:26:a2:74:91:1f:15:e2:e0:25:ec:fb:30:4f:11:
2b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DA:73:8A:FC:F3:B5:86:C8:9A:08:C3:CD:6B:EA:22:80:7F:5F:B1
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3230392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.209.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:54:1d:b3:76:36:c7:12:5e:73:9d:db:5f:9e:fe:b4:d4:a0:
b1:13:de:88:6b:5a:1c:04:db:28:99:40:11:9a:e6:40:c0:f6:
d2:ec:85:c3:c9:80:d8:7a:84:cf:39:18:d9:23:7c:fe:f8:8e:
b9:68:b1:b7:dd:80:19:83:1d:29:ba:de:86:77:af:ff:63:78:
ba:45:95:4a:fc:d1:53:0e:85:72:cd:e6:bb:93:b8:c8:74:e4:
21:88:84:51:c9:4e:7d:9a:69:8b:88:34:f3:43:92:b1:fb:a4:
dc:84:08:3e:15:22:54:eb:1d:ca:e8:10:32:f0:9b:ec:a5:ec:
f6:39:74:75:1f:b4:b7:23:6a:c7:56:e7:6f:29:4c:17:a7:2b:
46:29:c2:60:8a:7b:2a:ad:2c:33:97:e2:ac:e3:00:7a:8a:4e:
00:87:2b:5f:1f:0d:3b:77:b9:f7:9a:70:3c:75:47:2d:83:91:
9e:bd:62:e5:11:1e:e9:d4:ac:66:51:0b:a5:4f:47:4a:e7:2d:
fb:de:80:dc:97:19:3e:8f:2b:a7:a3:67:a9:e5:7c:f9:36:e1:
23:5d:22:b6:4e:5d:94:3c:64:f2:6c:7c:f0:a0:f3:18:ed:09:
00:23:54:ed:69:4c:93:87:65:79:88:ae:fe:53:28:89:e6:46:
c9:3c:3a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org