Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33352e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e33352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: ZdrDOYgkBr/nIHK5iyyNNRWqDbK6vhXUwF6+srGxrjM=
Subject key identifier: FD:AA:F7:F4:17:FD:39:CB:EA:7F:D2:08:89:7D:57:D9:B4:90:CA:D3
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 38EB2C770FD44B43BD162E8F4EE0B96846B804FE
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33352e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:00 +0000
ROA not before: Tue 19 Apr 2022 06:55:00 +0000
ROA not after: Tue 18 Apr 2023 07:00:00 +0000
asID: 24203
IP address blocks: 140.213.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:eb:2c:77:0f:d4:4b:43:bd:16:2e:8f:4e:e0:b9:68:46:b8:04:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:00 2022 GMT
Not After : Apr 18 07:00:00 2023 GMT
Subject: CN=FDAAF7F417FD39CBEA7FD208897D57D9B490CAD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:55:a6:3b:ef:12:d6:ae:6e:ab:8a:ca:76:88:
ea:d7:c4:85:86:3c:ea:df:63:be:e9:31:e6:34:47:
d6:f4:bd:dc:bd:6f:17:d4:4b:cd:c4:fe:1e:23:2d:
c6:ca:6a:9d:b4:ea:0c:41:0d:c9:58:58:c0:28:6c:
2b:00:c6:f0:bf:fb:a7:cd:9c:b0:75:e9:f1:13:47:
6b:d6:f1:e0:0a:f0:ab:57:60:ab:3d:e6:bb:40:c0:
52:58:fe:85:2c:11:cf:10:7d:8f:99:0f:72:98:f8:
14:c3:0e:16:74:ae:19:22:fa:17:7d:fb:f0:e6:9c:
ed:b0:e1:75:2e:d5:39:d9:5c:84:1f:c2:dd:ee:1f:
d6:f1:ea:20:52:6b:a1:97:9f:ef:2e:fd:1c:e5:b7:
33:85:04:32:cc:1d:b7:6e:ba:84:18:60:dd:f2:01:
dd:98:ba:4c:67:6d:48:13:cc:84:5c:8b:fd:3b:c7:
56:bd:25:c4:7d:3f:2c:6e:f2:a6:34:79:c8:72:e7:
ad:6f:3a:4c:ce:97:23:a7:d9:89:52:eb:d5:bf:7d:
77:7c:ab:46:d2:d2:b7:6d:bf:51:e9:1c:e7:55:84:
1e:5a:41:63:eb:02:89:b2:a1:92:f0:8f:d6:32:f8:
d4:86:16:17:3b:1a:eb:cc:43:1c:81:ba:9b:1f:b7:
16:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AA:F7:F4:17:FD:39:CB:EA:7F:D2:08:89:7D:57:D9:B4:90:CA:D3
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e33352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.35.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:9a:4f:e9:82:7f:63:44:69:6a:1d:dd:d1:88:6a:99:57:d7:
87:b0:4d:33:05:62:47:13:45:f9:ff:77:02:6e:16:f5:38:4c:
06:d3:c5:4a:91:24:68:af:aa:61:4f:05:2b:15:d3:36:9d:5e:
a6:85:79:bf:4d:47:c9:69:eb:0a:63:15:e0:ea:1f:00:9c:3c:
9c:7e:2f:b6:cb:97:21:fb:73:2f:86:5f:04:77:7c:5d:4a:a1:
7b:a1:e9:7a:65:71:92:28:32:68:18:b5:34:63:3c:14:f4:52:
e0:f3:f0:81:c3:60:69:e5:32:f1:8a:7a:6a:41:4c:f3:42:c3:
02:78:9a:b0:27:62:a8:b2:9c:e6:ea:11:fd:7e:ad:48:69:8d:
e0:e3:0a:a2:39:68:b8:77:d9:b8:a7:c2:1c:b5:fe:3f:ae:b0:
e2:0a:eb:e4:97:07:d8:da:e0:0b:a3:70:49:e3:14:5d:04:9f:
50:bf:e6:bb:84:ff:90:78:9d:4b:dd:fc:69:92:bf:39:da:8d:
ea:d4:80:a7:46:2a:8c:59:f0:b7:56:5a:d3:e8:de:36:81:ba:
4e:bd:9a:01:a5:0f:ac:fb:68:a1:19:34:98:fc:3e:4f:16:ed:
55:25:09:55:3d:f0:10:83:07:15:1d:d2:2e:46:a8:87:8e:9b:
b0:dd:fe:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org