Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3233342e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3233342e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: 3j3WCaABeM8AThARn8QzeeVObVDP+AAbqfqA1yJkf78=
Subject key identifier: 9E:78:51:0D:A9:7D:1A:EF:B1:90:86:BD:6F:D9:A5:81:68:48:2A:89
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4CFDDE15F92653B1E031D2B31B55C66E37CC9EA6
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3233342e302f32342d3234203d3e20313339393934.roa
Signing time: Fri 14 Jan 2022 07:01:43 +0000
ROA not before: Fri 14 Jan 2022 06:56:43 +0000
ROA not after: Sat 14 Jan 2023 07:01:43 +0000
asID: 139994
IP address blocks: 140.213.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:fd:de:15:f9:26:53:b1:e0:31:d2:b3:1b:55:c6:6e:37:cc:9e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 14 06:56:43 2022 GMT
Not After : Jan 14 07:01:43 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7a:4a:e4:06:2c:b7:a3:45:40:37:e7:f9:53:
de:5d:81:6d:2e:da:c6:74:ed:65:9d:fd:50:9b:a0:
d1:12:f8:7b:52:86:ce:21:20:f8:44:28:bb:11:9b:
5f:2c:ba:78:92:5d:65:c4:b5:a9:ca:7a:e6:78:17:
e5:9a:1e:83:69:55:4b:17:bc:86:3f:fb:a7:cc:22:
fd:a3:01:88:5d:44:2e:b3:cb:e1:71:5f:fc:40:e6:
14:c2:9b:c4:bd:ef:f4:20:22:49:8b:a1:5c:51:c5:
0a:c1:50:5f:13:d3:9d:2d:41:cd:21:a9:6c:fc:7d:
0c:73:f4:3b:29:9b:83:ec:ec:42:eb:9f:54:8c:8f:
64:48:aa:59:05:16:ac:67:f2:5c:61:8c:a4:82:e1:
e0:36:68:06:33:cf:6d:a0:24:7e:c0:2a:85:06:8d:
79:eb:66:2f:25:54:d3:ca:db:04:22:c6:a4:2a:2f:
42:08:f3:bc:99:b7:5a:2d:7a:a1:ee:7d:86:9e:01:
d1:bd:3f:ea:12:45:24:d6:b7:74:50:9a:2e:13:13:
77:9e:24:91:76:8f:5f:d3:4c:6a:2c:8b:46:b6:5e:
5d:30:80:4f:b5:e8:5f:39:fb:b1:be:21:74:9f:af:
ec:ff:25:6d:d8:27:9e:ff:35:c0:b9:09:7e:07:06:
1f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:78:51:0D:A9:7D:1A:EF:B1:90:86:BD:6F:D9:A5:81:68:48:2A:89
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3233342e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.234.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:23:07:9f:84:21:62:cb:89:ba:a0:21:52:d9:d0:d8:85:5b:
2a:21:63:2f:61:fa:23:24:e1:15:ce:f6:b5:f8:7e:e4:4e:ff:
92:3f:d4:66:fc:c9:aa:13:f6:33:85:5f:c8:e6:a8:b3:82:84:
d3:1a:69:83:89:72:0d:13:15:52:d2:7e:04:d7:7f:60:78:8a:
3b:c8:17:d3:0c:83:2f:0a:c3:9f:60:a9:f1:c3:3b:a4:52:fe:
97:ac:0e:53:c0:4e:1e:13:e6:4f:95:44:14:5b:70:f4:91:f9:
dc:4b:f5:a0:4e:00:9b:57:0e:fe:2a:a3:99:76:16:bf:d2:78:
b5:20:14:8f:58:8b:c4:41:0e:1e:59:95:04:54:58:fa:13:35:
2c:3f:e1:0e:b1:3b:d7:17:c4:3e:eb:d3:da:a0:14:1e:d2:94:
af:a5:8e:84:a8:fd:fe:9e:8b:63:a3:64:15:fb:03:dd:6f:a7:
cf:10:4e:4d:5f:f7:71:6b:40:42:4b:1e:ff:00:3f:85:45:f3:
03:e2:8b:ea:71:fb:f3:9d:4d:ce:b4:26:f7:0a:3d:62:bc:18:
80:1b:3b:aa:21:98:9c:31:d0:fc:12:9e:b8:ed:6a:ad:45:2a:
bd:dd:eb:6b:16:bf:b4:f3:8f:4f:9c:99:d6:d4:ba:f2:9b:ef:
63:fa:12:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org