Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e34312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8fNjks+huGJyXIdvVCTFhutO+CU36s16p+YH/nWUMwk=
Subject key identifier: 58:78:04:AC:A9:96:58:D2:07:FB:DE:91:10:20:C7:DC:75:31:41:50
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4D6B190C5182441F09311C3CBECFE06C599A3171
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34312e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:12:37 +0000
ROA not before: Sat 08 Jan 2022 17:07:37 +0000
ROA not after: Sun 08 Jan 2023 17:12:37 +0000
asID: 24203
IP address blocks: 140.213.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:6b:19:0c:51:82:44:1f:09:31:1c:3c:be:cf:e0:6c:59:9a:31:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:07:37 2022 GMT
Not After : Jan 8 17:12:37 2023 GMT
Subject: CN=3082010A0282010100BD36C008217E1E75AC3D36A193F336880FA9AB422C43C4D406178E8E6A2791B72CE48E9EE7822850D666DFCB1B9BEAE9D12BBD04318E8D52A3E73552B6022E49328963B95DDB3EB257711210BABFA2A104B6A878715AC3FFF9662EA77AEC4FB470C31E99E5FB303C26F26D3FF2D223B6C7668DCE0C4EAB2C2B9FCE687E9357EB6E0EAC53B8D9A23DEE1567F70C3593D2796B8F738E3C0CFC50E04BF30AE242074BF9DCC8988534BE5CD6D2FDF33F284B7B53BAD3DAA0FB809E9A091A3DDC9C963F38424062CE59C3262F61AD0B6F52B7F752DAFDF76F93A47D1F619C4A0F436EB0445B0D7406AE5947D82D3EC4D3D0C88E4DB01F41AA60C752221FA7AFAA9C290203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:c0:08:21:7e:1e:75:ac:3d:36:a1:93:f3:
36:88:0f:a9:ab:42:2c:43:c4:d4:06:17:8e:8e:6a:
27:91:b7:2c:e4:8e:9e:e7:82:28:50:d6:66:df:cb:
1b:9b:ea:e9:d1:2b:bd:04:31:8e:8d:52:a3:e7:35:
52:b6:02:2e:49:32:89:63:b9:5d:db:3e:b2:57:71:
12:10:ba:bf:a2:a1:04:b6:a8:78:71:5a:c3:ff:f9:
66:2e:a7:7a:ec:4f:b4:70:c3:1e:99:e5:fb:30:3c:
26:f2:6d:3f:f2:d2:23:b6:c7:66:8d:ce:0c:4e:ab:
2c:2b:9f:ce:68:7e:93:57:eb:6e:0e:ac:53:b8:d9:
a2:3d:ee:15:67:f7:0c:35:93:d2:79:6b:8f:73:8e:
3c:0c:fc:50:e0:4b:f3:0a:e2:42:07:4b:f9:dc:c8:
98:85:34:be:5c:d6:d2:fd:f3:3f:28:4b:7b:53:ba:
d3:da:a0:fb:80:9e:9a:09:1a:3d:dc:9c:96:3f:38:
42:40:62:ce:59:c3:26:2f:61:ad:0b:6f:52:b7:f7:
52:da:fd:f7:6f:93:a4:7d:1f:61:9c:4a:0f:43:6e:
b0:44:5b:0d:74:06:ae:59:47:d8:2d:3e:c4:d3:d0:
c8:8e:4d:b0:1f:41:aa:60:c7:52:22:1f:a7:af:aa:
9c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:78:04:AC:A9:96:58:D2:07:FB:DE:91:10:20:C7:DC:75:31:41:50
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.41.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e5:bc:ca:b6:52:0e:17:5a:6a:35:68:5a:c3:36:93:a0:a8:
ea:ad:01:5b:40:d9:5b:d7:ed:65:eb:4a:56:92:73:7f:8a:61:
bd:2b:14:af:d8:00:be:43:91:b4:26:cc:7f:5b:f9:39:db:a4:
96:9b:96:38:39:ea:57:6b:e3:9e:47:9d:55:97:b5:c1:3f:fa:
2e:42:a3:13:25:1d:dd:eb:ff:16:eb:be:44:b3:0a:6e:28:c2:
c3:77:ea:c7:5b:d2:c2:3f:82:71:4a:5a:ba:dd:04:26:94:5c:
e7:c7:1c:68:94:31:c4:9c:8d:51:13:da:ff:0a:9f:f4:ff:8a:
f9:c4:ea:8c:51:eb:97:8e:69:c8:5d:ff:b6:69:bc:72:06:b6:
87:03:0c:ca:64:a8:98:e0:1c:73:9e:c3:02:88:89:fe:26:b7:
30:31:fc:90:b5:1a:72:18:39:b5:b1:24:17:b0:4b:39:c5:5c:
81:10:d3:df:e8:a3:e0:f6:35:0d:a6:4d:76:19:e0:72:b8:bd:
ae:4d:5d:8c:50:da:42:b4:49:b0:2d:7b:28:35:c9:bb:03:22:
fb:6e:79:0f:f1:68:24:5c:bb:18:da:6b:c1:aa:1c:0d:f0:cd:
8b:db:cb:ad:db:30:5a:d4:95:3c:25:1f:35:e6:5d:4c:f2:1e:
b6:cf:1e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org