Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e33322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 9CddLe/nxGf9jDFYBsVHcfbPZhBaebe0CTRckg5+ADg=
Subject key identifier: BC:6C:C2:15:18:70:B5:40:8E:6E:E1:76:51:F2:49:CB:67:78:02:8D
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 41F13CF6E10ABE8CDE062C50ACB5CB93F715FF72
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33322e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 06:00:00 +0000
ROA not before: Tue 19 Apr 2022 05:55:00 +0000
ROA not after: Tue 18 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 140.213.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:f1:3c:f6:e1:0a:be:8c:de:06:2c:50:ac:b5:cb:93:f7:15:ff:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 05:55:00 2022 GMT
Not After : Apr 18 06:00:00 2023 GMT
Subject: CN=BC6CC2151870B5408E6EE17651F249CB6778028D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:65:39:f8:63:c0:69:49:33:18:cb:91:69:
71:5a:ad:21:fe:b6:3e:97:76:91:ba:1a:b7:af:81:
5d:cd:94:cc:b9:bd:9f:bc:3f:2d:52:8b:e6:44:56:
42:27:fb:7b:ad:89:6b:13:bd:04:25:bc:94:29:8e:
a4:35:ca:f8:69:20:d1:08:02:47:da:e4:a7:60:74:
43:55:86:b7:26:a6:8b:37:f1:76:4a:be:b3:70:7d:
66:40:53:8e:a9:30:9d:11:19:ee:f4:7e:a5:0f:7c:
99:1c:4c:79:7e:33:02:95:c5:6f:0e:ec:b8:c3:1e:
4f:75:5e:9d:0e:9f:81:bb:00:e9:86:9d:2f:59:9e:
7a:0e:1f:fd:fa:e7:e5:d3:41:aa:cd:9b:0d:60:50:
b3:92:63:d8:13:8d:e1:5f:e9:cc:1d:56:b8:d8:94:
47:71:b6:e7:41:bc:aa:24:6a:fb:5a:3b:b9:05:f3:
69:56:80:f1:f2:95:08:27:ce:0c:e3:d7:81:a4:cf:
a4:c8:fd:f3:37:12:f6:54:fe:ca:d4:b6:1d:ff:09:
36:29:fc:4d:7e:a9:55:6c:17:64:a6:57:77:3a:0d:
dc:6d:29:00:f3:7b:55:a9:60:55:36:c1:c1:20:48:
b8:3a:2b:08:9d:fa:ee:72:de:ac:74:98:2c:f7:71:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6C:C2:15:18:70:B5:40:8E:6E:E1:76:51:F2:49:CB:67:78:02:8D
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a0:4b:0c:f8:78:f4:c9:e5:e9:62:fe:97:97:44:c1:f5:18:
d1:71:4e:55:22:e5:18:4b:3c:ec:ce:4b:ab:be:b0:36:9f:49:
6e:1b:dc:6b:1e:91:26:0f:0c:37:c4:73:1c:06:4d:13:1c:1e:
c9:1b:65:22:ae:02:45:aa:b4:78:38:72:2b:41:54:b5:35:43:
d8:b7:3d:2c:84:8c:46:af:82:42:fa:24:b6:83:4e:5f:b6:cf:
08:48:5d:ba:90:29:a8:6c:5c:7c:d2:ed:ef:09:c2:02:21:c5:
e0:24:9d:a4:26:5d:f8:0c:c2:b4:99:c5:83:1a:70:df:e6:91:
aa:db:64:22:9c:64:04:3a:f0:18:b4:c5:e5:33:b2:04:06:0e:
56:69:49:1f:5b:e7:0f:20:8e:10:07:4e:72:9c:6a:bc:e7:51:
16:55:c9:3a:05:92:10:77:46:46:a0:1c:74:9a:46:34:f7:b4:
a8:eb:56:29:e6:20:7e:35:51:cb:1d:25:5d:29:bc:4c:12:7d:
57:b6:99:83:fc:5b:66:d1:02:16:88:dd:91:5c:ba:e8:ce:21:
7c:93:99:6e:e9:90:e2:76:c4:a9:a0:f8:df:f7:fe:0a:c1:89:
6e:bf:b7:7c:93:ca:92:c7:8f:7e:83:45:cd:6b:b0:d5:2d:03:
e9:63:e2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org