Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3234392e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e3234392e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: 4ApPljwNTNg0B9sIQbtd+09CikMJbdi8CbecJg5JEUc=
Subject key identifier: 59:94:C8:24:F6:65:EF:E6:AE:2B:4D:C8:3D:B6:71:00:82:9B:CF:26
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 161EE553B4BE49DEFEF2E9982FCD901139AEB5E1
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3234392e302f32342d3234203d3e203137383835.roa
Signing time: Wed 20 Apr 2022 06:00:02 +0000
ROA not before: Wed 20 Apr 2022 05:55:02 +0000
ROA not after: Wed 19 Apr 2023 06:00:02 +0000
asID: 17885
IP address blocks: 140.213.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:1e:e5:53:b4:be:49:de:fe:f2:e9:98:2f:cd:90:11:39:ae:b5:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 20 05:55:02 2022 GMT
Not After : Apr 19 06:00:02 2023 GMT
Subject: CN=5994C824F665EFE6AE2B4DC83DB67100829BCF26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:e0:a6:9d:dc:09:81:dc:32:aa:f9:c7:24:
92:d0:cd:b7:0d:0b:8e:c0:4c:e9:b2:c8:86:c8:96:
90:b8:91:ba:78:ed:ca:06:14:5b:7b:26:5d:a8:9e:
bb:6a:71:64:07:95:e4:0f:15:5b:65:f8:1b:ef:59:
5d:95:ea:26:46:82:02:09:a2:9e:39:b6:43:a4:e7:
77:43:c0:d8:67:7a:80:d4:9a:18:f5:40:e9:75:d8:
6a:91:3d:ea:b2:a3:1a:f8:a2:83:a0:ef:e3:4d:90:
99:23:88:0f:f0:ba:fb:1e:d8:10:c3:23:eb:ff:d9:
a7:28:bb:64:80:8c:90:9f:74:be:7c:42:45:08:04:
d5:a4:07:df:f0:fd:0e:b9:32:32:ae:2f:f7:ce:f6:
4d:5a:32:a0:7b:4b:2a:b9:0d:f3:a9:b2:ed:88:d4:
ce:09:57:ac:ab:7f:cd:d3:e4:fe:9d:68:e2:4d:24:
8c:62:de:78:32:8d:02:3c:04:4e:2d:ea:81:41:97:
06:e0:30:fb:cb:e6:6d:8a:c9:76:cd:c9:ad:59:a2:
ff:29:a4:14:e9:04:44:4f:46:7a:6a:c0:b9:48:cc:
e7:23:a6:16:54:c2:93:9e:3b:38:b0:9f:4c:72:e3:
b2:e0:79:45:1f:e0:b1:ad:91:48:31:c5:80:21:a0:
84:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:94:C8:24:F6:65:EF:E6:AE:2B:4D:C8:3D:B6:71:00:82:9B:CF:26
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e3234392e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.249.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:12:4a:eb:82:88:a0:b6:72:48:cc:c7:1f:d4:bb:cb:da:08:
9d:f8:bb:d2:0c:51:07:df:7b:57:af:8b:81:f0:f5:f2:80:c8:
fd:da:dc:ef:7e:ee:92:bb:d7:33:88:b1:a5:23:34:33:fa:c7:
27:76:55:7d:58:e6:4f:5a:a5:6c:aa:b3:9a:b9:49:36:47:8c:
d5:30:49:02:74:4e:f8:42:1d:bf:5e:e9:41:3d:c2:a1:95:09:
a5:6e:f6:13:14:31:41:fa:2b:7d:98:e5:45:bd:19:0a:1f:89:
37:30:0a:6a:b1:f8:f1:a0:9a:4f:35:1a:fa:af:81:75:05:b5:
50:7c:9c:75:ec:be:83:0e:d1:e7:84:07:4f:1f:25:8a:9b:04:
3e:5d:d4:8f:71:56:e5:1c:93:0b:be:db:a6:61:1a:cd:2e:42:
bb:79:ff:b3:64:a9:16:61:1d:62:8c:9a:71:54:d7:c1:f8:47:
e8:3b:49:fe:02:f1:78:2a:b6:ef:b9:6f:5f:f6:3e:00:47:ed:
03:01:6c:aa:e9:66:d9:8a:05:6a:8f:81:bf:89:a3:9f:c6:c9:
9e:ce:27:22:62:9b:50:39:80:c4:a9:12:1b:70:a8:dd:c0:48:
47:2b:a5:43:bb:c5:ea:76:61:2c:59:2e:fb:f2:fb:43:e3:35:
06:a8:ed:22
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUFh7lU7S+Sd7+8umYL82QETmuteEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MjAwNTU1MDJaFw0yMzA0MTkwNjAwMDJaMDMxMTAvBgNV
BAMTKDU5OTRDODI0RjY2NUVGRTZBRTJCNERDODNEQjY3MTAwODI5QkNGMjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/I+CmndwJgdwyqvnHJJLQzbcN
C47ATOmyyIbIlpC4kbp47coGFFt7Jl2onrtqcWQHleQPFVtl+BvvWV2V6iZGggIJ
op45tkOk53dDwNhneoDUmhj1QOl12GqRPeqyoxr4ooOg7+NNkJkjiA/wuvse2BDD
I+v/2acou2SAjJCfdL58QkUIBNWkB9/w/Q65MjKuL/fO9k1aMqB7Syq5DfOpsu2I
1M4JV6yrf83T5P6daOJNJIxi3ngyjQI8BE4t6oFBlwbgMPvL5m2KyXbNya1Zov8p
pBTpBERPRnpqwLlIzOcjphZUwpOeOziwn0xy47LgeUUf4LGtkUgxxYAhoIRhAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUWZTIJPZl7+auK03IPbZxAIKbzyYwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMjM0MzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjNX5MA0GCSqG
SIb3DQEBCwUAA4IBAQAtEkrrgoigtnJIzMcf1LvL2gid+LvSDFEH33tXr4uB8PXy
gMj92tzvfu6Su9cziLGlIzQz+scndlV9WOZPWqVsqrOauUk2R4zVMEkCdE74Qh2/
XulBPcKhlQmlbvYTFDFB+it9mOVFvRkKH4k3MApqsfjxoJpPNRr6r4F1BbVQfJx1
7L6DDtHnhAdPHyWKmwQ+XdSPcVblHJMLvtumYRrNLkK7ef+zZKkWYR1ijJpxVNfB
+EfoO0n+AvF4KrbvuW9f9j4AR+0DAWyq6WbZigVqj4G/iaOfxsmeziciYptQOYDE
qRIbcKjdwEhHK6VDu8XqdmEsWS778vtD4zUGqO0i
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org