Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3231392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e3231392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: S0obenkTKOQFq5QgZYm61hczrj8uuduV7lZCaQEbvYA=
Subject key identifier: C4:77:7F:B2:69:9E:9C:B3:CB:72:E1:FF:A5:FB:4B:B3:60:14:FA:E3
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 408CBC325455300B0BFCA30E7D4D9BAD8A16C843
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3231392e302f32342d3234203d3e203234323033.roa
Signing time: Wed 20 Apr 2022 06:00:02 +0000
ROA not before: Wed 20 Apr 2022 05:55:02 +0000
ROA not after: Wed 19 Apr 2023 06:00:02 +0000
asID: 24203
IP address blocks: 140.213.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:8c:bc:32:54:55:30:0b:0b:fc:a3:0e:7d:4d:9b:ad:8a:16:c8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 05:55:02 2022 GMT
Not After : Apr 19 06:00:02 2023 GMT
Subject: CN=C4777FB2699E9CB3CB72E1FFA5FB4BB36014FAE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2e:0d:72:7b:a3:e1:8b:28:a8:97:06:51:b2:
a2:48:dd:58:86:9c:91:14:4e:2e:b7:9b:4f:27:83:
58:ab:4e:2e:bf:2c:f4:c2:13:5c:b3:bc:1e:ef:8b:
d0:28:97:46:8c:24:a2:e1:72:4c:6d:bc:a4:34:5b:
04:77:75:57:8e:a8:b2:e7:5f:39:d4:fd:bd:16:3c:
c7:96:80:8e:c7:f0:07:04:1c:db:1d:b4:93:af:61:
15:1e:96:33:48:18:00:28:92:b3:86:f7:c3:5b:92:
b9:04:80:95:81:c4:c0:e9:f8:7c:d6:b4:e3:fd:45:
8a:53:50:8b:47:30:2e:07:ac:0f:4c:a7:bf:6b:0d:
3b:3c:4c:17:6a:2c:67:8e:1f:f5:3a:8e:e4:b2:82:
9e:0c:c7:9c:54:1b:8c:0b:df:30:3d:b5:4e:fe:d3:
9c:6c:1c:96:88:3d:e5:90:6a:59:9a:cb:0e:a1:da:
a4:7d:7d:1c:03:e4:5b:75:ff:81:d6:e3:b7:93:4e:
dd:e1:1b:13:d4:ce:3c:8b:95:ee:e1:c0:98:0b:e7:
ca:b3:5c:fa:a8:24:43:a8:2b:d2:9b:64:3d:9f:4c:
80:61:0b:18:d9:6c:ee:25:8d:f8:f8:34:21:80:f2:
c9:d8:12:9e:41:80:e7:22:c5:dd:f3:41:6d:56:42:
81:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:77:7F:B2:69:9E:9C:B3:CB:72:E1:FF:A5:FB:4B:B3:60:14:FA:E3
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3231392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.219.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:3c:06:7a:64:81:78:6f:8c:5c:79:ce:b5:95:de:54:29:17:
04:bc:6c:b0:9a:4d:cc:35:b7:3e:7b:b9:bf:ae:30:b7:04:2b:
72:38:44:77:2d:1d:95:aa:8b:56:6c:c4:1d:1f:6d:fd:98:02:
5e:39:11:f6:ed:67:88:37:a0:d9:7a:06:7f:78:78:f5:0f:03:
0b:60:d1:d7:00:1b:26:f0:2c:bc:1e:7e:7c:5d:48:5e:fc:f1:
17:0c:a6:ee:89:f4:5a:09:c9:e0:c1:85:05:55:95:c3:9c:90:
91:f0:72:0e:f7:b8:9c:0f:52:2d:e3:b5:ee:ca:80:a3:35:d2:
7a:45:4e:16:67:94:d7:13:40:2c:ed:a9:6b:1f:22:66:15:2f:
0c:c2:84:4e:c7:b8:fc:75:0f:bc:33:a2:80:2c:2e:35:52:cb:
f3:44:84:46:30:12:0b:7d:ac:ed:bd:e9:38:a7:b1:8c:13:ec:
70:ac:b8:34:3a:a1:83:29:f6:db:20:fd:53:65:5f:d3:45:46:
da:1e:3b:5f:ad:d3:b1:e1:ae:2c:57:bf:5d:3a:a1:13:ca:de:
28:ed:66:4d:ba:ef:96:c1:df:04:ea:cb:48:98:fe:85:b3:ae:
38:e8:21:bd:d5:bf:10:6d:54:30:d8:3e:b3:45:54:39:72:e8:
db:ce:3b:ee
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUQIy8MlRVMAsL/KMOfU2brYoWyEMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNTU1MDJaFw0yMzA0MTkwNjAwMDJaMDMxMTAvBgNV
BAMTKEM0Nzc3RkIyNjk5RTlDQjNDQjcyRTFGRkE1RkI0QkIzNjAxNEZBRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiLg1ye6PhiyiolwZRsqJI3ViG
nJEUTi63m08ng1irTi6/LPTCE1yzvB7vi9Aol0aMJKLhckxtvKQ0WwR3dVeOqLLn
XznU/b0WPMeWgI7H8AcEHNsdtJOvYRUeljNIGAAokrOG98NbkrkEgJWBxMDp+HzW
tOP9RYpTUItHMC4HrA9Mp79rDTs8TBdqLGeOH/U6juSygp4Mx5xUG4wL3zA9tU7+
05xsHJaIPeWQalmayw6h2qR9fRwD5Ft1/4HW47eTTt3hGxPUzjyLle7hwJgL58qz
XPqoJEOoK9KbZD2fTIBhCxjZbO4ljfj4NCGA8snYEp5BgOcixd3zQW1WQoEFAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUxHd/smmenLPLcuH/pftLs2AU+uMwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMjMxMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNXbMA0GCSqG
SIb3DQEBCwUAA4IBAQC0PAZ6ZIF4b4xcec61ld5UKRcEvGywmk3MNbc+e7m/rjC3
BCtyOER3LR2VqotWbMQdH239mAJeORH27WeIN6DZegZ/eHj1DwMLYNHXABsm8Cy8
Hn58XUhe/PEXDKbuifRaCcngwYUFVZXDnJCR8HIO97icD1It47XuyoCjNdJ6RU4W
Z5TXE0As7alrHyJmFS8MwoROx7j8dQ+8M6KALC41UsvzRIRGMBILfaztvek4p7GM
E+xwrLg0OqGDKfbbIP1TZV/TRUbaHjtfrdOx4a4sV79dOqETyt4o7WZNuu+Wwd8E
6stImP6Fs6446CG91b8QbVQw2D6zRVQ5cujbzjvu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org