Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32372e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e32372e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: X3yLneRZDWLEowrn/rOg9mlJxdIVp7c5iZ7+VeiSYvc=
Subject key identifier: 25:6E:6F:14:F3:BD:A7:B3:CB:DC:4A:33:A7:BF:4E:E3:27:9D:34:CF
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 13D939C9EEBAB06219696F56526B1F52D58EA331
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32372e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 06:00:00 +0000
ROA not before: Tue 19 Apr 2022 05:55:00 +0000
ROA not after: Tue 18 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 140.213.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:d9:39:c9:ee:ba:b0:62:19:69:6f:56:52:6b:1f:52:d5:8e:a3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 05:55:00 2022 GMT
Not After : Apr 18 06:00:00 2023 GMT
Subject: CN=256E6F14F3BDA7B3CBDC4A33A7BF4EE3279D34CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:73:29:f9:06:61:4f:73:56:22:ed:1c:83:96:
05:c5:91:d1:c3:e6:c4:2b:07:a9:03:c7:63:60:18:
9b:6f:59:30:0f:de:f0:e9:fe:fc:a8:d7:8f:49:7f:
8d:4d:eb:a7:93:4a:63:bb:18:72:3e:a0:8b:7c:53:
e0:49:76:9c:c0:0d:82:79:11:3a:46:2c:01:c3:b4:
ce:aa:5b:17:cf:47:69:34:85:d8:8d:2d:7e:2e:bb:
3c:f0:f3:16:00:f4:48:10:34:cb:61:1a:85:b1:3e:
db:32:01:c3:cd:2e:f8:82:8e:1e:0d:49:e2:32:ee:
b0:50:6e:fa:98:75:0e:11:12:78:69:7f:95:31:f7:
d0:20:ad:e7:0b:41:4a:eb:1f:ee:c2:44:13:a1:90:
1e:83:1d:66:02:d3:fd:11:5d:22:1e:b4:08:fb:f7:
48:86:5b:f4:e6:8b:b1:10:8b:14:de:9d:3f:df:04:
8c:c5:92:b2:aa:89:b9:2b:7b:40:09:87:fe:49:91:
41:90:4d:7e:67:e3:92:8f:ed:78:63:bd:4e:8c:f6:
80:20:a2:0b:05:e5:c9:b2:f5:f7:55:3d:ca:89:ab:
96:cd:99:71:e3:26:42:6c:2f:62:a7:c1:cb:10:86:
6d:78:54:16:de:40:a6:0b:ca:86:7c:4e:43:d2:c7:
aa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6E:6F:14:F3:BD:A7:B3:CB:DC:4A:33:A7:BF:4E:E3:27:9D:34:CF
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32372e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:67:8a:d4:e7:fb:45:d2:63:9e:73:59:43:e1:28:c3:9a:0c:
5c:00:1b:30:da:32:5d:d4:f6:a6:c4:b3:b6:6b:cb:3c:5f:c8:
1e:5b:59:1e:b3:9b:a7:82:2c:57:a5:8b:cf:0d:33:3c:aa:aa:
78:2b:1a:d6:f0:dc:98:45:7c:6a:6d:8f:a7:b3:c9:c4:ab:c1:
cd:18:92:12:53:30:ae:dc:97:d3:77:65:82:18:24:cd:99:09:
1e:0b:49:11:45:f7:e8:02:35:43:36:36:fd:89:22:29:62:59:
3a:e2:f7:db:9a:17:e4:df:fc:1b:80:92:e4:ed:56:04:ce:2c:
63:54:7d:9c:b8:3a:85:60:21:c2:e2:c2:a0:1a:b0:d0:4a:c8:
8c:0a:ce:ec:5e:bb:76:0c:93:8e:e7:a7:74:5d:22:cb:a1:0d:
ad:76:75:e4:d9:6f:7a:a6:d5:f1:2c:23:19:2a:8d:40:bb:62:
02:70:db:10:0b:a2:c2:72:50:3d:cc:8e:4f:e5:11:59:eb:36:
52:4b:74:2d:53:b1:d7:55:61:9d:b5:9b:a5:cd:25:b1:4f:e2:
7d:dc:48:7d:3a:21:3b:dd:2b:2f:6d:33:07:4a:15:a6:f6:6f:
0f:38:05:04:5b:8c:6f:0a:a6:e7:04:e0:3c:b9:13:4a:f8:94:
4f:9e:09:c4
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUE9k5ye66sGIZaW9WUmsfUtWOozEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwNTU1MDBaFw0yMzA0MTgwNjAwMDBaMDMxMTAvBgNV
BAMTKDI1NkU2RjE0RjNCREE3QjNDQkRDNEEzM0E3QkY0RUUzMjc5RDM0Q0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNcyn5BmFPc1Yi7RyDlgXFkdHD
5sQrB6kDx2NgGJtvWTAP3vDp/vyo149Jf41N66eTSmO7GHI+oIt8U+BJdpzADYJ5
ETpGLAHDtM6qWxfPR2k0hdiNLX4uuzzw8xYA9EgQNMthGoWxPtsyAcPNLviCjh4N
SeIy7rBQbvqYdQ4REnhpf5Ux99AgrecLQUrrH+7CRBOhkB6DHWYC0/0RXSIetAj7
90iGW/Tmi7EQixTenT/fBIzFkrKqibkre0AJh/5JkUGQTX5n45KP7XhjvU6M9oAg
ogsF5cmy9fdVPcqJq5bNmXHjJkJsL2KnwcsQhm14VBbeQKYLyoZ8TkPSx6rVAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUJW5vFPO9p7PL3Eozp79O4yedNM8wHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMjM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVGzANBgkqhkiG
9w0BAQsFAAOCAQEAb2eK1Of7RdJjnnNZQ+Eow5oMXAAbMNoyXdT2psSztmvLPF/I
HltZHrObp4IsV6WLzw0zPKqqeCsa1vDcmEV8am2Pp7PJxKvBzRiSElMwrtyX03dl
ghgkzZkJHgtJEUX36AI1QzY2/YkiKWJZOuL325oX5N/8G4CS5O1WBM4sY1R9nLg6
hWAhwuLCoBqw0ErIjArO7F67dgyTjuendF0iy6ENrXZ15NlveqbV8SwjGSqNQLti
AnDbEAuiwnJQPcyOT+URWes2Ukt0LVOx11VhnbWbpc0lsU/ifdxIfTohO90rL20z
B0oVpvZvDzgFBFuMbwqm5wTgPLkTSviUT54JxA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org