Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e33332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: PqMgzFiAHYCazrBrNnuZGwq75+zLgR/ysGX9C8C5L8s=
Subject key identifier: BA:D3:FB:FE:14:D3:8F:F6:40:1B:17:7F:B4:5A:58:17:B3:49:F4:E0
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 16501A1304275509AA119D842D86DA2AF6EC6B01
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 06:00:00 +0000
ROA not before: Tue 19 Apr 2022 05:55:00 +0000
ROA not after: Tue 18 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 140.213.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:50:1a:13:04:27:55:09:aa:11:9d:84:2d:86:da:2a:f6:ec:6b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 05:55:00 2022 GMT
Not After : Apr 18 06:00:00 2023 GMT
Subject: CN=BAD3FBFE14D38FF6401B177FB45A5817B349F4E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:89:76:b1:48:65:f0:e4:1a:c2:fb:90:87:f3:
fd:74:eb:1b:50:9e:91:97:f4:9e:e5:7b:b3:69:61:
7c:02:c0:7f:35:c5:2d:c9:c7:f6:70:08:bf:b7:68:
7e:cf:8f:e6:a2:a8:3a:54:ec:70:c6:b6:13:13:de:
05:39:62:98:a0:80:4f:33:b9:0e:ab:6f:89:65:7b:
17:f1:8d:18:9a:aa:ee:18:5c:8b:36:53:2f:6e:f3:
da:ec:a9:8d:80:36:f0:41:a3:9e:c2:32:88:67:0d:
17:5f:e4:92:f9:05:ab:44:c2:4a:2d:8d:d0:c9:76:
32:8f:9d:ad:59:17:8c:32:e3:01:60:23:94:19:87:
de:a6:64:91:b9:5d:84:98:05:2f:f8:c9:c5:4c:6c:
a6:a3:5f:21:e7:7b:69:39:26:39:06:47:bc:11:de:
67:29:97:e2:d7:c4:20:8c:14:58:95:5a:7e:0c:6a:
65:10:8d:14:32:69:2b:e4:09:d5:ec:64:4f:dc:1c:
62:d8:40:55:e7:55:e5:98:6b:e2:62:bb:ad:39:87:
13:8e:e0:51:0a:b7:bd:46:62:45:65:73:3a:24:05:
de:e1:c0:35:2f:49:d8:ad:fe:a6:05:d2:54:e0:41:
43:11:c3:29:52:3e:ad:55:2a:4c:d6:f5:62:04:ad:
a8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D3:FB:FE:14:D3:8F:F6:40:1B:17:7F:B4:5A:58:17:B3:49:F4:E0
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.33.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:01:42:8a:0d:f7:67:c3:7b:b0:0f:23:9b:1d:48:67:04:d3:
27:2a:e1:00:52:51:8d:7e:36:2a:e0:a2:82:a1:37:2d:b8:86:
f7:36:1a:59:85:0e:51:d3:e8:f8:96:98:13:66:da:99:6e:c3:
18:f3:75:6e:fc:b5:1d:39:3d:b3:8d:fa:26:d4:3d:8c:6f:29:
1c:b6:05:a9:ce:8d:a3:29:34:9d:2c:d9:78:e0:1a:54:99:78:
6d:c3:09:e6:5e:f8:e1:1b:54:02:66:85:4a:a0:47:2c:d2:6d:
fd:34:69:6c:4a:c8:01:6e:62:38:e6:e9:a9:89:07:97:32:33:
15:1b:56:c1:37:c2:7c:b0:99:3b:ac:6b:e1:c9:d7:6f:10:bb:
b8:4f:5a:f0:5b:c3:3e:55:ec:9e:b5:e5:a0:cc:ce:86:35:fb:
0c:12:8f:61:9c:4c:b7:91:10:89:73:e7:60:ef:0a:0d:2f:6e:
8a:1d:47:f4:1b:a7:12:fd:79:3c:e8:d2:24:b9:63:f2:5b:05:
91:5b:b2:39:ab:d8:8a:83:0b:0e:1e:c1:bd:19:35:72:6e:56:
ad:1b:29:f4:7a:8c:05:7f:38:22:87:25:84:f3:bb:1d:92:e8:
20:73:b4:43:1b:ca:ab:d8:e5:61:8c:1b:7c:71:1e:91:1d:1e:
13:37:6f:a5
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUFlAaEwQnVQmqEZ2ELYbaKvbsawEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwNTU1MDBaFw0yMzA0MTgwNjAwMDBaMDMxMTAvBgNV
BAMTKEJBRDNGQkZFMTREMzhGRjY0MDFCMTc3RkI0NUE1ODE3QjM0OUY0RTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCriXaxSGXw5BrC+5CH8/106xtQ
npGX9J7le7NpYXwCwH81xS3Jx/ZwCL+3aH7Pj+aiqDpU7HDGthMT3gU5YpiggE8z
uQ6rb4llexfxjRiaqu4YXIs2Uy9u89rsqY2ANvBBo57CMohnDRdf5JL5BatEwkot
jdDJdjKPna1ZF4wy4wFgI5QZh96mZJG5XYSYBS/4ycVMbKajXyHne2k5JjkGR7wR
3mcpl+LXxCCMFFiVWn4MamUQjRQyaSvkCdXsZE/cHGLYQFXnVeWYa+Jiu605hxOO
4FEKt71GYkVlczokBd7hwDUvSdit/qYF0lTgQUMRwylSPq1VKkzW9WIErah/AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUutP7/hTTj/ZAGxd/tFpYF7NJ9OAwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMzMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVITANBgkqhkiG
9w0BAQsFAAOCAQEAyAFCig33Z8N7sA8jmx1IZwTTJyrhAFJRjX42KuCigqE3LbiG
9zYaWYUOUdPo+JaYE2bamW7DGPN1bvy1HTk9s436JtQ9jG8pHLYFqc6Noyk0nSzZ
eOAaVJl4bcMJ5l744RtUAmaFSqBHLNJt/TRpbErIAW5iOObpqYkHlzIzFRtWwTfC
fLCZO6xr4cnXbxC7uE9a8FvDPlXsnrXloMzOhjX7DBKPYZxMt5EQiXPnYO8KDS9u
ih1H9BunEv15POjSJLlj8lsFkVuyOavYioMLDh7BvRk1cm5WrRsp9HqMBX84Iocl
hPO7HZLoIHO0QxvKq9jlYYwbfHEekR0eEzdvpQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org