Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34302e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e34302e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: XMkiph4e2cWV4W3TXgh1PyS7WUNl8Kur6LDiAQmdRis=
Subject key identifier: D3:DF:CF:EF:B7:51:73:9B:F6:5B:89:19:7C:72:79:1C:C0:11:64:86
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 35A0D24164B2BE02F50AE63AA06C2048DEF04639
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34302e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:10:03 +0000
ROA not before: Sat 08 Jan 2022 17:05:03 +0000
ROA not after: Sun 08 Jan 2023 17:10:03 +0000
asID: 24203
IP address blocks: 140.213.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:a0:d2:41:64:b2:be:02:f5:0a:e6:3a:a0:6c:20:48:de:f0:46:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:05:03 2022 GMT
Not After : Jan 8 17:10:03 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a9:b9:ba:41:07:d3:9c:4f:f2:b0:3d:b7:79:
ce:e8:8f:d8:76:9e:11:e3:97:97:55:32:5d:c9:a9:
35:dd:3b:c2:a0:bd:08:a5:9c:6f:a6:c3:55:6b:f6:
14:90:94:67:48:66:0b:f5:ef:cc:f4:de:7f:b7:43:
ce:49:c8:23:5a:50:74:f9:68:52:bb:91:c5:dc:77:
4b:1c:75:31:da:47:7f:eb:fa:23:65:44:f1:7a:e2:
8d:d3:ae:53:7f:4d:de:c4:88:b7:46:e2:ed:9c:c4:
8b:5e:7f:c0:a9:58:7f:88:64:9d:ac:7e:f8:62:cd:
9e:26:70:fc:86:47:b5:d9:19:8a:99:47:79:3e:cb:
4e:c8:25:7d:a8:62:50:1d:39:4d:97:78:8d:da:d6:
96:ce:25:07:4c:cb:a6:0d:1c:08:6f:c6:bc:cb:44:
5a:55:45:e8:eb:c9:9c:de:a3:81:56:32:0c:ff:d3:
1e:76:14:76:a0:b2:f6:ef:05:0a:99:4a:94:83:a4:
8f:23:df:fd:49:6d:a1:dc:89:3c:72:6a:ed:98:9b:
f3:53:14:d6:b5:17:65:5a:ef:47:e8:1f:68:29:4d:
1b:af:8a:0b:6e:15:83:6f:c6:f0:58:a3:b8:4f:6f:
81:f7:f2:6a:b3:18:64:a6:b6:79:34:29:aa:fe:c5:
b4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:DF:CF:EF:B7:51:73:9B:F6:5B:89:19:7C:72:79:1C:C0:11:64:86
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34302e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.40.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:0f:63:3a:f4:ed:25:ad:d5:79:fc:96:0f:36:a1:81:18:24:
30:cb:3c:b4:aa:ff:c5:5b:19:0b:06:6e:96:3c:31:f0:41:e5:
7f:f8:f8:22:88:aa:1d:fe:b1:b5:79:b6:09:0e:2c:c2:ec:44:
f0:62:ca:76:02:22:66:23:67:90:c2:f7:8a:a9:aa:e0:37:cf:
a1:d1:e5:cb:8b:9c:2c:fe:53:c4:39:38:45:f5:43:cc:84:ed:
a1:ce:bc:12:0a:a7:3f:28:e7:5e:f1:46:44:b3:f0:2b:1e:4d:
b9:49:3f:e1:f4:e6:64:df:51:23:a0:28:08:ce:05:6e:22:8d:
e6:7e:64:a6:14:23:73:40:e9:1c:c3:c5:95:3d:31:62:f8:07:
7f:72:ae:33:ad:b5:5d:f6:71:f4:0a:01:7e:79:a1:e1:da:a6:
b0:48:93:5a:2d:14:17:3f:55:86:9e:49:96:25:e4:31:56:f0:
59:6a:92:48:01:05:21:3f:9f:2d:95:f5:9b:fb:e7:78:cb:01:
ff:76:fa:78:ef:f7:34:37:67:d6:36:1a:94:6a:4c:5b:b1:0b:
d3:8f:58:02:f1:a4:1b:8a:47:01:18:c1:c5:73:7b:b5:42:32:
74:8a:49:77:d4:e4:70:f9:0f:62:33:cb:8a:35:0c:9b:98:5f:
0d:a2:fa:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org