Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e34332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: mnZzori1lyMJx+woFlnRpKok+KH3m+oS2JFdQEN4KK4=
Subject key identifier: 9F:E9:22:62:85:C7:44:80:65:93:9E:6D:C6:3B:75:DD:37:03:F5:83
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 0E27A2B536B70FDB92EB59E3B270E60ED95CB257
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34332e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:13:07 +0000
ROA not before: Sat 08 Jan 2022 17:08:07 +0000
ROA not after: Sun 08 Jan 2023 17:13:07 +0000
asID: 24203
IP address blocks: 140.213.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:27:a2:b5:36:b7:0f:db:92:eb:59:e3:b2:70:e6:0e:d9:5c:b2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:08:07 2022 GMT
Not After : Jan 8 17:13:07 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:2a:15:43:e8:35:8f:77:aa:92:02:de:11:
85:72:47:3c:62:6b:48:f2:49:23:aa:ae:d5:4c:96:
f1:f0:ef:84:79:d6:44:98:b2:2b:ac:73:1b:93:ca:
00:e7:27:70:9d:87:20:a4:8a:3f:90:9c:cc:ca:63:
62:94:0c:9f:3d:d5:4f:6f:f1:fc:b5:6c:cc:7b:79:
3a:0a:2b:fa:0f:36:b7:4b:42:e3:09:d9:2e:35:d6:
e5:4c:41:ed:88:28:ef:cc:20:f5:9f:46:84:1a:ce:
8d:73:a8:23:93:74:ff:b5:ac:17:ce:cc:9b:ca:c7:
0a:86:dc:8e:25:94:85:89:8a:77:d4:0c:2b:b5:f5:
b7:53:17:8a:38:0e:ae:a2:d6:b3:53:eb:1e:61:e6:
58:a7:49:62:25:01:e8:2d:d0:5f:6c:a5:54:13:4f:
d4:14:10:44:13:b3:15:99:de:50:3f:0a:c0:50:94:
29:08:62:61:75:10:ee:7f:48:32:0f:52:00:e4:ea:
8b:36:cb:0e:0f:0a:76:59:53:e0:17:3c:51:06:39:
45:bc:67:b9:94:5f:d2:51:7b:1d:18:e2:28:f8:36:
47:65:eb:0a:6d:10:74:6f:e9:5e:a8:5c:2c:12:f7:
33:d7:d1:38:d1:82:83:66:70:d2:f0:84:7e:bf:db:
82:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E9:22:62:85:C7:44:80:65:93:9E:6D:C6:3B:75:DD:37:03:F5:83
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.43.0/24
Signature Algorithm: sha256WithRSAEncryption
37:fb:27:f8:09:93:1e:bf:47:ac:de:42:a6:1a:d2:01:66:17:
40:63:f5:b2:a3:5c:73:f6:e1:d8:c1:6c:1e:9d:ac:41:41:b2:
52:99:0f:00:21:20:df:4f:1b:af:94:0e:32:a0:95:fd:61:52:
cf:41:0a:4d:c3:ef:b8:dc:e0:1c:a2:92:a4:79:8a:03:83:c9:
18:80:0a:03:a7:c4:28:44:f3:48:38:f6:dd:8a:9f:84:54:b6:
08:84:8f:8a:d2:fa:70:cb:a0:77:8f:6b:a4:3d:11:43:ed:b6:
ba:62:9c:4e:ea:bb:1f:1b:dc:b1:3b:f7:c4:a6:3e:4e:0f:d3:
fb:01:f8:39:1d:28:21:52:46:71:e2:0d:c4:af:f8:8a:96:06:
5a:b7:c6:8e:76:8b:61:d1:7b:e4:ce:2c:16:75:da:ef:43:43:
cd:87:cf:0b:0f:3b:e0:98:09:ae:47:9e:ac:ad:75:d7:ee:b3:
4c:6d:07:ed:29:12:7e:65:7e:ce:48:12:13:d3:ef:c9:57:7a:
b7:e0:d5:34:8a:8e:9d:89:58:57:d2:d5:41:c0:cc:80:22:73:
f0:09:8c:f9:b4:27:ee:f2:99:db:3d:9a:0a:68:d6:d9:49:a7:
a9:8a:7e:bc:dc:1d:55:21:6b:cf:30:e9:3c:55:54:4c:be:c4:
6f:2d:db:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org