Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e32332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: rB4kNz2EwgK4cBYGF6vL0MLObcGtDycYZg7FLocs9/c=
Subject key identifier: 74:5D:DC:EE:D2:CA:04:6C:A3:03:DA:B1:B0:10:08:01:66:8B:72:25
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 68D5CBC1A14D4041C89519D925E3EB6AA38B28CD
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 05:00:00 +0000
ROA not before: Tue 19 Apr 2022 04:55:00 +0000
ROA not after: Tue 18 Apr 2023 05:00:00 +0000
asID: 24203
IP address blocks: 140.213.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:d5:cb:c1:a1:4d:40:41:c8:95:19:d9:25:e3:eb:6a:a3:8b:28:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 04:55:00 2022 GMT
Not After : Apr 18 05:00:00 2023 GMT
Subject: CN=745DDCEED2CA046CA303DAB1B0100801668B7225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:87:64:92:a9:10:2c:c2:fd:44:bb:04:89:6b:
56:00:24:60:b2:13:a0:bb:88:6f:1b:f1:9f:74:d5:
50:08:13:c9:21:2a:1a:b1:ab:11:55:5d:11:ba:46:
04:32:2c:aa:e0:78:aa:0b:fe:23:f7:62:75:f3:f0:
0e:00:7e:94:76:c2:ef:1a:b8:2c:84:ff:02:39:98:
9b:88:99:e0:c6:63:56:f7:74:36:de:4b:8e:87:f5:
83:20:52:37:bf:21:2b:d9:36:99:70:f7:12:24:45:
51:23:ef:f2:b9:93:3d:41:f1:b4:17:19:2a:53:90:
81:de:97:31:20:1e:23:b3:79:48:1d:62:b3:41:e2:
c8:84:74:f8:8f:e1:87:03:ec:13:20:56:e5:4b:01:
3f:01:36:e2:09:6b:e4:51:32:3b:80:7d:ef:44:3d:
eb:d0:66:dd:c3:7d:6e:68:b8:52:fd:69:c6:7e:68:
1b:6e:91:f8:1e:b8:6f:7a:9c:f1:e8:f7:ce:3a:7e:
8b:4e:9d:dc:1c:fb:f7:a0:78:b0:52:3f:10:9f:e1:
74:c6:8e:c3:cd:c0:a7:02:10:1c:ee:cb:a6:76:35:
90:5e:72:16:a8:7b:76:a9:94:2a:17:4f:09:5c:01:
eb:1a:2b:2a:c8:f6:16:ff:1e:e1:d8:07:c7:55:22:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:5D:DC:EE:D2:CA:04:6C:A3:03:DA:B1:B0:10:08:01:66:8B:72:25
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.23.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:11:76:4e:31:86:07:2f:f0:ab:0d:10:ab:ef:94:08:f6:ec:
ad:74:a6:35:0f:f8:2b:c7:46:0f:7d:4f:da:89:81:7a:e0:fd:
c3:9d:79:7b:13:44:77:b8:b4:51:97:fc:7d:69:bd:28:54:5c:
95:28:7b:85:80:96:d3:61:ce:18:3d:c3:ad:86:44:41:a2:d5:
83:dc:cc:68:5c:18:9f:d7:f9:3d:6f:4a:9c:8c:58:df:4d:13:
43:0e:99:26:a1:fa:89:cc:84:33:f0:91:5f:a2:38:1a:7d:04:
ac:3c:43:42:85:4b:64:39:f2:7d:35:2d:b7:c5:99:63:da:bd:
a9:33:7e:3b:ff:55:73:65:a6:ff:f5:d5:93:7d:93:2c:ff:7a:
c5:f6:46:66:9a:13:b6:e7:c3:06:87:0d:be:8d:96:86:a6:fe:
03:b5:3d:08:3e:c5:8f:9a:c4:47:46:5a:f7:c0:9c:0d:85:7e:
a0:fd:65:b8:9d:b4:03:40:dd:ac:f3:f4:0c:ee:25:fe:35:fa:
09:7c:e7:c3:33:5d:de:8c:b2:7f:d4:c3:bc:5d:4d:61:e3:60:
9c:20:f9:71:0a:75:57:be:76:14:83:6c:d2:50:62:e0:9f:68:
2b:a7:f9:a3:75:f6:53:07:6d:59:44:ca:90:76:d5:29:2a:fd:
3b:9f:0f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org