Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33342e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e33342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: iuT+JK81b4ADYdFiYHJPexu+2kjoGr+QiP83cWvydxc=
Subject key identifier: 70:C9:47:20:16:CF:D3:B6:0E:C9:DC:F8:39:C8:7C:81:56:6B:06:4B
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 2BF94107C4925AACB9D43475502FBA5C9AA2B9B3
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33342e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 06:00:00 +0000
ROA not before: Tue 19 Apr 2022 05:55:00 +0000
ROA not after: Tue 18 Apr 2023 06:00:00 +0000
asID: 24203
IP address blocks: 140.213.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:f9:41:07:c4:92:5a:ac:b9:d4:34:75:50:2f:ba:5c:9a:a2:b9:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 05:55:00 2022 GMT
Not After : Apr 18 06:00:00 2023 GMT
Subject: CN=70C9472016CFD3B60EC9DCF839C87C81566B064B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:51:68:f3:5f:56:05:15:47:e4:54:15:40:1f:
c2:30:0d:cd:6b:d2:c8:42:5e:f6:fd:79:93:5a:0f:
b8:13:b1:e8:3e:ac:0b:bc:97:6a:ee:6f:4c:2b:78:
b9:16:c7:a8:9e:c5:0e:0a:fc:40:22:3a:d3:3d:98:
42:4c:45:ed:65:2a:da:52:06:c3:24:a3:07:f5:60:
f6:fd:f7:b5:f5:d9:c8:1e:1a:d5:3d:94:8c:5f:be:
89:4c:5e:db:ce:1b:95:42:8d:e4:ae:ed:aa:03:b5:
d0:4b:ed:73:a8:e0:0f:8b:8a:32:7f:ff:49:dc:7b:
6f:c2:41:0a:97:db:1c:35:23:9d:26:e3:0a:21:65:
d1:39:ed:79:3f:c5:fe:b9:ba:4e:d9:3e:11:ff:67:
36:32:4a:ed:fd:e3:1d:ed:ec:e5:ef:ab:4a:fc:38:
34:e5:79:cd:49:5c:46:d3:93:dd:28:ec:84:c0:90:
cd:db:21:c7:e0:db:9b:ed:f9:a9:fb:b4:c0:86:5b:
06:b1:de:8e:43:25:ba:e6:d2:36:d2:2d:69:19:1e:
30:40:43:17:71:f0:a1:e7:83:7e:6b:02:0a:18:4f:
a0:03:2e:62:64:57:eb:ef:9b:64:a4:ad:51:00:1c:
8d:0c:a5:84:33:1b:f2:db:55:e6:41:0f:46:0d:5b:
98:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C9:47:20:16:CF:D3:B6:0E:C9:DC:F8:39:C8:7C:81:56:6B:06:4B
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c9:73:84:6e:d8:cb:3c:b7:65:78:0b:1a:78:58:f9:70:75:
a3:03:7d:08:75:9e:c3:a7:97:43:b6:28:aa:35:3e:34:a7:dc:
4f:21:99:1c:c3:b4:8e:9f:2f:53:ea:8a:bd:f9:35:c6:cb:8d:
4d:6d:6e:47:a9:5b:6d:95:9b:58:b2:c2:75:a3:de:22:4e:70:
ac:a9:48:09:a0:10:a1:84:67:85:a1:c9:af:f3:81:cc:70:f9:
8b:2d:9f:ef:06:7e:6f:0b:8d:34:39:a0:f8:f6:64:be:a1:a4:
c9:78:37:ca:d6:fa:06:5f:88:19:ba:31:a4:0e:e7:bb:5d:85:
33:84:ef:88:1e:f7:5e:e7:b4:c5:c6:81:d9:ad:87:6b:60:91:
6e:90:83:dd:77:dd:c4:9c:9c:d2:da:01:40:0d:98:93:99:7d:
83:9e:bd:15:49:5a:be:ba:82:5c:d8:99:f1:2d:13:c8:5f:e7:
af:9b:0c:2a:23:17:98:5d:76:18:4d:ac:a4:df:5b:a5:b5:c6:
51:d1:41:20:70:72:b4:10:c2:b7:5a:3d:c2:7e:fd:30:27:af:
0f:f8:77:b0:e9:31:11:4a:72:cd:9f:b9:06:45:f7:f4:5d:52:
bf:f1:d0:29:ba:04:2f:c4:1d:9f:8a:c6:8a:29:c5:04:51:f4:
d3:60:b3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org