Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3231382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3231382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: ethclQCqay3EO2MRgsfov8mUjUrRzsvGj8u0Yj0o8iM=
Subject key identifier: 53:A4:3B:0B:EE:83:9C:66:E1:3B:BB:7D:D4:97:26:33:B0:75:B5:01
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 70913ECF89787AA045F38F11DB7B61BCBADC7465
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3231382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 06:00:02 +0000
ROA not before: Wed 20 Apr 2022 05:55:02 +0000
ROA not after: Wed 19 Apr 2023 06:00:02 +0000
asID: 24203
IP address blocks: 140.213.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:91:3e:cf:89:78:7a:a0:45:f3:8f:11:db:7b:61:bc:ba:dc:74:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 05:55:02 2022 GMT
Not After : Apr 19 06:00:02 2023 GMT
Subject: CN=53A43B0BEE839C66E13BBB7DD4972633B075B501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e6:9f:9c:af:b7:bd:63:9e:47:e5:31:e5:ff:
d7:09:be:69:e0:e4:47:4d:a3:2a:0b:75:07:2c:43:
27:71:fa:b6:6b:6c:a8:b2:78:c4:e2:52:89:23:fc:
d5:a9:e1:a5:ca:02:97:93:30:cd:ee:36:5d:42:38:
63:3d:ef:08:79:f5:c0:76:59:9c:33:8a:d7:8a:05:
5e:da:4b:10:12:55:49:06:09:32:64:4d:94:11:aa:
92:1c:21:e2:b9:6c:22:e5:9d:1f:52:9d:ed:f2:20:
10:af:d0:8b:01:eb:17:99:65:2b:12:c6:b7:5b:56:
b7:01:54:a8:a8:11:a0:c3:0c:e0:23:a0:34:df:11:
f1:ea:4f:5f:25:6d:9b:46:bb:a2:7c:12:53:0a:eb:
b0:87:5a:c2:e3:94:88:d2:99:cf:ec:04:86:4c:27:
bb:a9:9f:7d:35:25:1b:32:a7:2e:57:a8:2e:54:60:
a1:f0:bc:75:49:5c:24:75:5b:95:a8:f2:85:f3:c2:
e7:67:51:27:37:04:69:db:ea:17:7d:a3:65:6e:33:
bf:8e:5f:6f:45:78:66:e1:c1:33:3e:02:5c:ad:aa:
71:64:95:f3:09:90:c1:e3:60:c0:12:3f:78:e5:2e:
b7:fa:c9:6e:46:5f:8e:07:73:19:41:31:a0:af:ae:
5b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A4:3B:0B:EE:83:9C:66:E1:3B:BB:7D:D4:97:26:33:B0:75:B5:01
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3231382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.218.0/24
Signature Algorithm: sha256WithRSAEncryption
09:8c:dc:6b:65:8a:e6:45:8c:37:5b:7e:65:64:3c:d8:82:a1:
fc:94:87:20:10:2d:bc:83:8e:39:b5:65:b9:aa:58:d2:7e:d9:
f6:da:42:da:6d:e4:08:99:89:4e:f4:db:a1:0a:e4:07:54:86:
6b:96:ed:11:c7:dc:3c:98:bc:95:e5:7e:a9:42:ad:fa:cc:f2:
c9:6c:ca:ba:53:c2:66:8c:28:46:60:a7:7f:62:5d:e8:e7:7a:
8c:42:38:db:7b:fc:95:ea:cf:16:cc:a2:84:79:70:80:cf:00:
9f:a2:0f:58:42:a1:72:06:4d:34:7c:fa:b8:79:67:09:90:10:
18:35:3d:dd:5d:f9:91:01:4c:d4:95:47:ec:88:10:a7:aa:f6:
03:4a:fa:89:a6:98:12:7e:71:fa:2e:4d:75:33:bf:d6:23:77:
40:12:6f:7b:eb:82:05:66:62:b6:55:54:d1:3d:2c:10:cb:3e:
4b:37:6d:53:03:63:40:6d:60:54:bb:e6:a6:cf:8d:9e:00:14:
5a:d2:e3:5e:e8:8b:0e:4e:f1:cd:39:77:dd:9b:df:0c:a8:6c:
b1:05:4e:f7:7b:9b:d4:3b:16:d3:54:2f:b5:3c:49:a7:40:bf:
f9:3c:d9:18:b1:34:d8:11:a0:08:df:cc:ee:17:3e:45:1d:7d:
29:b9:0c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org