Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3233362e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3233362e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: PEZ8Oom8vMkka+/+Fw6iQzp6FOaftdbCRMHOh+HR2kk=
Subject key identifier: 04:84:E2:96:A7:21:CF:96:0C:6C:77:03:00:57:F3:05:E3:4A:A2:21
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 70453EFA2328B9FE30DAB7DEF354D91DBA0C9913
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3233362e302f32342d3234203d3e20313339393934.roa
Signing time: Fri 14 Jan 2022 07:02:14 +0000
ROA not before: Fri 14 Jan 2022 06:57:14 +0000
ROA not after: Sat 14 Jan 2023 07:02:14 +0000
asID: 139994
IP address blocks: 140.213.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:45:3e:fa:23:28:b9:fe:30:da:b7:de:f3:54:d9:1d:ba:0c:99:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 14 06:57:14 2022 GMT
Not After : Jan 14 07:02:14 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:96:af:a4:65:9c:cd:53:03:16:1a:16:cc:04:
6b:42:4d:b9:c3:49:a4:6b:a7:20:3b:f5:33:fc:e0:
46:50:05:41:66:b8:a5:e8:b8:52:21:89:29:49:12:
e5:05:32:67:ee:45:09:2f:9d:5b:0b:da:38:13:18:
fa:a6:82:e1:9c:d1:0d:c5:9c:dd:b5:5e:27:3d:b2:
a7:13:56:5c:a3:9c:cb:e8:70:59:f0:3a:f8:e2:82:
96:a3:e0:09:0e:b6:53:62:73:b3:4f:dc:fa:97:80:
3e:80:b3:57:bb:7a:3d:49:40:14:cf:86:e0:54:33:
80:82:44:86:4a:a5:ea:46:d4:b4:c1:10:46:d3:aa:
1b:69:23:5d:e4:f5:56:b1:4f:06:2c:f6:18:d7:03:
bf:14:4c:a3:2c:ca:45:bf:39:fe:e7:e7:c6:43:0c:
02:45:38:f2:60:57:1d:6b:40:37:63:67:b3:94:c3:
6e:cf:70:83:18:aa:44:91:fc:33:d5:c4:0d:7b:4d:
ba:91:dc:59:44:34:b1:c0:d4:d3:f5:fb:f0:8d:03:
ac:5f:14:f3:6c:3f:c5:cf:99:fc:63:9b:8e:3c:37:
1c:bf:d3:ee:d2:73:70:34:3c:14:72:00:5a:7a:cb:
68:2f:3b:40:42:4f:27:5a:4a:4e:69:84:3e:86:08:
cc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:84:E2:96:A7:21:CF:96:0C:6C:77:03:00:57:F3:05:E3:4A:A2:21
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3233362e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.236.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a5:a7:04:d8:d2:89:8f:b3:45:8b:23:79:25:d6:ee:89:37:
95:f3:db:6a:8e:79:34:c9:8d:28:35:51:f6:76:cd:0b:a7:99:
f9:72:8c:06:4a:e1:9d:69:23:ed:f0:58:40:8e:07:fd:c9:79:
27:c7:cf:4d:71:8f:cd:30:7c:9b:13:41:cd:a6:9d:d6:9f:26:
cf:9b:2b:d6:a2:a4:39:78:0f:1f:57:d4:49:44:90:3f:7d:fe:
4f:29:77:54:7a:03:8f:bb:d7:5d:ba:17:c0:90:ad:a1:e6:e3:
af:69:4d:4f:e8:97:1d:3f:ec:7a:a3:58:a1:f0:f1:ee:d5:3c:
c2:ad:1b:ca:81:73:22:cc:58:98:8a:ed:02:4f:32:50:ff:f5:
ec:ae:bd:5f:ae:68:8a:5f:3a:04:98:e2:43:c1:a7:7f:b4:09:
72:40:1c:10:58:84:c1:34:7d:0d:3b:f3:83:ee:72:c0:7c:10:
64:af:39:d8:d1:c5:8a:10:3e:f7:69:36:b7:aa:5a:93:c9:9e:
d7:c5:0d:ae:fc:eb:53:37:73:bc:be:00:7c:c5:80:ac:85:0b:
67:38:f7:86:98:37:c6:f8:d8:31:09:a8:b5:7f:3f:18:77:37:
c2:e9:bf:d3:ff:92:05:88:a8:63:e1:df:37:33:db:d5:f3:6f:
53:ed:bc:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org