Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32352e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e32352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: bfPvPjen66SCUlfwNohZmmvP+6J00p56iW6denll4Tk=
Subject key identifier: 94:41:59:AA:AE:B3:05:1B:B5:2B:0A:27:91:D8:C1:EE:4E:76:24:9B
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 29C12DF5D2BC6A4B61E4923DDCF88DF1E3943984
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32352e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 05:00:00 +0000
ROA not before: Tue 19 Apr 2022 04:55:00 +0000
ROA not after: Tue 18 Apr 2023 05:00:00 +0000
asID: 24203
IP address blocks: 140.213.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:c1:2d:f5:d2:bc:6a:4b:61:e4:92:3d:dc:f8:8d:f1:e3:94:39:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 04:55:00 2022 GMT
Not After : Apr 18 05:00:00 2023 GMT
Subject: CN=944159AAAEB3051BB52B0A2791D8C1EE4E76249B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0c:a5:a0:f3:53:1d:6b:f6:a5:d3:b1:52:ab:
7b:a1:b3:4a:3d:62:89:2e:0b:f2:2b:5d:fc:15:41:
08:0b:ca:9c:0d:ab:c5:80:f7:a4:d4:1c:9d:bf:ea:
ae:97:25:1e:fe:30:2f:7f:3b:3f:7e:9b:a1:1d:29:
bc:cf:16:24:08:bb:5c:ac:84:89:3c:03:0c:9c:5b:
07:11:91:ad:53:67:60:90:35:22:af:36:e1:1c:d1:
8e:d1:ec:15:a8:7c:59:f6:b5:ea:8b:9c:b5:8d:b8:
74:0c:be:0e:60:09:0f:89:25:28:b6:60:53:84:1f:
bc:c0:38:ec:b2:51:7f:fc:1a:40:c0:52:a0:f1:e3:
e9:27:b7:c6:f0:eb:78:69:93:b8:3c:7c:32:d3:a6:
f8:bd:1f:88:31:1b:7d:22:bb:ae:11:ef:d3:6e:69:
b3:92:97:e3:70:e3:0f:c6:38:2b:a7:de:59:90:e9:
8f:9a:e6:d8:39:fa:61:57:39:c2:4b:3b:c5:26:e1:
0a:21:69:21:93:d2:8f:b7:7a:da:75:55:fb:68:e7:
d5:60:92:84:dd:fd:c5:a2:40:39:63:dc:4d:fc:b2:
33:d6:48:02:97:d2:e5:c9:45:52:57:15:e7:c3:4b:
e7:b3:65:c9:7f:cb:27:1a:2a:6e:31:99:7a:99:29:
8d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:41:59:AA:AE:B3:05:1B:B5:2B:0A:27:91:D8:C1:EE:4E:76:24:9B
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.25.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:e2:b7:3c:c5:96:2b:3d:9c:69:eb:15:31:3b:b6:72:ae:c8:
5b:8a:e0:a3:35:76:c5:e8:f5:d9:f9:08:ad:21:b5:40:1d:b4:
d3:95:27:b8:44:c5:8b:36:ea:8d:57:3b:bf:c2:6f:17:8a:19:
d1:15:7f:98:04:f0:58:40:73:7b:59:17:fe:20:29:0f:50:ee:
77:a7:93:b4:76:be:39:d1:21:6d:e8:7c:4e:60:e5:79:e7:32:
73:b6:e6:47:d8:5d:51:c9:1f:37:53:15:86:7f:07:15:f4:f4:
83:7c:44:8c:76:da:df:ea:90:21:32:f3:b1:58:0c:08:6c:e4:
5f:93:f5:dd:d5:da:18:49:ca:cb:4c:9d:df:35:44:de:77:09:
38:34:01:42:61:31:dd:67:3e:21:d4:99:22:c6:c5:85:ee:dc:
00:d3:c0:9b:64:48:66:75:8c:78:bd:38:3d:18:c5:f4:39:7c:
64:af:87:8d:46:18:6d:8a:e0:9d:43:d9:00:0e:23:53:38:84:
ab:c8:71:f4:d0:09:48:01:c3:26:6b:0d:c3:70:c0:24:b8:e8:
c2:47:03:f6:ef:1a:6d:5d:bc:34:d8:63:b1:74:82:95:4d:d9:
21:26:5a:c2:73:a8:61:11:2c:fe:c3:52:9b:0e:16:ed:d8:21:
04:97:52:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org