Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3234382e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3234382e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: /DmaN+LpaMR/m9P+ZGG31l09rDfz2jaJ+n0a/XP9yh4=
Subject key identifier: 18:9F:39:42:22:2E:82:EA:86:BC:60:E5:88:2C:86:0A:50:A2:07:98
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4704E6DA511A27E493F6CFFB6F34C8AA56C484C0
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3234382e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:02 +0000
ROA not before: Wed 20 Apr 2022 05:55:02 +0000
ROA not after: Wed 19 Apr 2023 06:00:02 +0000
asID: 17885
IP address blocks: 140.213.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:04:e6:da:51:1a:27:e4:93:f6:cf:fb:6f:34:c8:aa:56:c4:84:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 05:55:02 2022 GMT
Not After : Apr 19 06:00:02 2023 GMT
Subject: CN=189F3942222E82EA86BC60E5882C860A50A20798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:dd:a6:9f:07:d9:14:ec:74:a4:7f:23:b3:
56:d5:c3:73:70:ef:8f:76:54:86:3a:43:4d:dd:ee:
a7:23:2b:4b:4f:a7:35:e1:29:d7:01:05:5a:8a:8b:
cf:71:79:1d:50:0f:07:af:c2:78:53:d6:eb:db:39:
6b:fd:6a:c8:a7:68:3d:85:3e:8f:3e:83:e2:7e:91:
27:9b:24:7d:c0:b1:35:73:00:08:dc:24:f1:a6:0b:
1e:9c:40:42:73:b2:0c:7b:a7:bd:c2:a4:29:00:d1:
92:ef:08:5d:33:1d:cf:76:8b:31:05:23:73:3b:55:
82:53:88:22:05:c9:4d:4a:7a:0f:d1:86:e1:07:33:
24:08:ce:b9:59:49:01:75:62:25:ff:18:9a:39:bd:
a3:0e:0f:66:4c:66:1a:19:f0:a9:03:33:5b:95:62:
fb:f5:88:03:63:11:80:3b:5e:f1:ea:02:2a:c3:8e:
65:8a:af:7a:49:4e:25:65:b6:9c:bc:36:2a:c1:12:
6e:68:66:fb:56:8b:05:16:ea:ad:ca:fd:e4:f5:57:
76:03:8a:0b:35:59:04:d9:74:7a:58:a3:52:ab:44:
0e:e1:d6:9f:49:47:5c:97:d4:97:5f:64:11:11:f8:
32:81:88:99:4f:79:21:e2:b3:66:e4:1f:db:bb:22:
8d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:39:42:22:2E:82:EA:86:BC:60:E5:88:2C:86:0A:50:A2:07:98
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3234382e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.248.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:82:5d:31:86:05:26:c6:74:e6:ee:d0:da:d5:6a:69:28:6c:
03:c9:c8:a2:9a:44:c1:fc:fe:32:f9:72:b2:13:38:8f:8a:e6:
7f:08:5d:d8:50:a2:f1:14:89:95:65:68:57:b8:61:a0:f0:39:
e2:30:b5:48:8c:94:8b:8b:d4:50:99:a8:fa:eb:5d:d8:29:30:
2f:38:65:ad:85:db:08:72:60:08:10:bf:84:66:41:04:a5:e7:
47:7c:65:df:bc:99:c2:f0:7d:1a:3b:1f:3f:1a:28:b6:7c:81:
67:e6:b4:4d:ac:30:3a:b5:a8:17:68:e1:b9:e3:5c:67:dc:f4:
d3:ab:af:cc:d2:c4:ed:8b:26:58:bd:a0:51:b2:4f:b2:ac:b9:
6d:b9:68:92:8f:06:13:ce:4d:90:b3:b3:bf:2e:b4:5d:f9:59:
1c:d8:4c:ad:09:2d:82:eb:7a:2f:4a:93:0e:2d:ed:e5:b4:41:
f9:88:2f:a3:3a:83:1a:90:27:22:43:a7:29:f9:3d:1b:89:b6:
89:ac:f6:41:c9:05:c0:dc:5e:db:49:31:39:7e:f8:28:a3:b1:
08:4e:ba:f2:0a:4e:7d:f5:62:d4:b8:7b:36:be:9a:6e:9e:9c:
9f:bf:bc:d1:29:33:0e:18:eb:59:8e:58:28:fa:0e:15:11:dd:
1a:c5:7e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org