Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e32392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: zmtJUD/5wDDbqaRZh6trJh5XSCUmpB+Vo5qyPpE6Fc4=
Subject key identifier: 44:9C:38:2C:0E:94:19:9B:08:55:99:E4:B0:2F:18:3E:9E:85:3B:46
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6D740B502582E58F7F966D844718122CAACD8DE9
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32392e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 06:00:00 +0000
ROA not before: Tue 19 Apr 2022 05:55:00 +0000
ROA not after: Tue 18 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 140.213.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:74:0b:50:25:82:e5:8f:7f:96:6d:84:47:18:12:2c:aa:cd:8d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 05:55:00 2022 GMT
Not After : Apr 18 06:00:00 2023 GMT
Subject: CN=449C382C0E94199B085599E4B02F183E9E853B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4f:4c:4e:6c:9c:a9:3c:d8:b1:81:5d:b7:e8:
2b:bc:5f:22:1c:2a:1f:35:57:98:8b:6f:c4:3c:87:
4d:77:e6:5a:0c:8c:51:fc:ee:87:ad:6d:ff:9d:48:
ac:d7:78:4f:72:cd:54:7b:22:93:c1:b4:d8:b6:9f:
64:a7:9e:f5:72:c3:ca:2c:5a:d2:22:d2:78:ab:e7:
c5:68:aa:f5:6d:4a:3c:e0:a1:25:a4:d0:b7:7a:23:
a7:d1:37:21:a8:35:23:60:7d:2f:12:89:34:47:80:
73:0b:6d:40:4c:3c:dd:6f:d5:09:91:35:42:86:4c:
76:18:ab:a2:b5:57:ef:8e:43:c1:ed:76:ed:6e:25:
ce:ab:9f:f9:2e:60:7e:d6:d4:70:c3:53:b1:46:ee:
f8:f0:95:e1:97:e9:4c:54:94:5f:a8:11:d2:d4:4f:
1e:04:46:fe:58:37:9d:4f:e6:71:1e:a3:64:7e:e4:
38:a5:af:e1:f3:30:f8:36:3d:60:e9:3a:89:a7:3f:
b7:1d:4e:7f:08:c9:1d:99:3f:72:13:41:d0:75:47:
0f:79:da:44:d8:7c:20:30:44:94:57:8d:39:a0:42:
3a:08:f1:5c:f0:73:a2:db:e5:62:d6:a9:4d:00:43:
39:80:3b:4a:27:5b:b4:58:45:13:24:fd:fc:a0:35:
bc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9C:38:2C:0E:94:19:9B:08:55:99:E4:B0:2F:18:3E:9E:85:3B:46
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e32392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.29.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:b8:3f:8b:55:8f:6a:da:93:bd:71:95:45:00:b3:52:7f:cc:
12:07:69:8e:78:3b:a9:e0:26:42:36:77:df:8c:ab:17:f3:8c:
18:2a:08:f7:d4:be:2a:2f:ec:4b:78:5b:a3:89:87:60:33:eb:
5e:57:be:8e:94:d0:d4:3d:e6:ad:88:86:3c:58:e1:b6:bc:47:
40:b3:b8:33:30:e3:a0:ee:b9:bf:e8:93:05:54:c7:62:0f:c9:
f2:cb:cb:b3:04:4c:d4:8f:65:42:63:aa:b2:fa:11:0a:9f:74:
8e:e4:bf:74:0b:c9:3f:62:a6:41:37:38:86:fb:46:cc:df:72:
61:93:f0:11:e4:c2:05:ab:1e:01:d5:51:eb:aa:cc:eb:04:3d:
d0:d1:c8:40:78:3f:7d:db:a1:48:55:92:30:63:77:02:c1:2c:
ff:fa:ed:83:58:dc:a2:e2:40:cf:95:67:2d:6b:a0:db:4b:95:
5a:25:08:33:da:0f:f4:74:a9:58:87:10:84:09:4b:15:39:44:
f4:89:1a:c0:29:1a:4b:32:5b:bb:e7:ec:75:e8:15:1f:ae:02:
e3:d2:3a:53:22:0f:5b:e4:cc:d0:fc:0e:ad:20:89:fb:a3:29:
57:f0:47:65:23:78:18:f2:d5:01:cb:9c:78:42:35:7c:03:0f:
b1:52:91:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org