Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34352e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e34352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: EdgiczA5J/ku03O2WD+P59bH8JOk/cDzw7ZtznOjVcM=
Subject key identifier: 02:D1:5B:16:A5:6B:C9:A1:5E:F1:2F:F7:BF:D4:C2:12:91:CF:92:7C
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 2AE16777A0EC239003EA04E11940C61C7684BD04
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34352e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:13:58 +0000
ROA not before: Sat 08 Jan 2022 17:08:58 +0000
ROA not after: Sun 08 Jan 2023 17:13:58 +0000
asID: 24203
IP address blocks: 140.213.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:e1:67:77:a0:ec:23:90:03:ea:04:e1:19:40:c6:1c:76:84:bd:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:08:58 2022 GMT
Not After : Jan 8 17:13:58 2023 GMT
Subject: CN=3082010A0282010100BB307F73D7239EA8D4C890DA345511B7580FAE1101003DBD0E5C10E3F0F4B48151D7C16CD38A582EA114428DCADBB47B596FB732C1D3FEDD334B14E0C97FF804D051C5DD3F86F1440A6E73DDEC52B0867EF884B537725573F0B8A52438228C7100BC6623C1EE55794DF059D93EC756BC2147149C310574035E6877E899788DD8AFA9613E27AD4254CA0E44F23A570E8615119500E2CC288A52F7EE58379124733F6904B1A61ADCB8B70479E54C26FFC7D1218ED1C41CE14FF9C21EA5DA35AB18E9A739BCC0E403FADDF85437399A2EBEC4844F57BE38DE70C33FF4F2F9F0D55CF8EF31AC32E2BEAEB949FF4CE6BFA18019AC53CFC446779F5B97B4D3B9137BBF0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:30:7f:73:d7:23:9e:a8:d4:c8:90:da:34:55:
11:b7:58:0f:ae:11:01:00:3d:bd:0e:5c:10:e3:f0:
f4:b4:81:51:d7:c1:6c:d3:8a:58:2e:a1:14:42:8d:
ca:db:b4:7b:59:6f:b7:32:c1:d3:fe:dd:33:4b:14:
e0:c9:7f:f8:04:d0:51:c5:dd:3f:86:f1:44:0a:6e:
73:dd:ec:52:b0:86:7e:f8:84:b5:37:72:55:73:f0:
b8:a5:24:38:22:8c:71:00:bc:66:23:c1:ee:55:79:
4d:f0:59:d9:3e:c7:56:bc:21:47:14:9c:31:05:74:
03:5e:68:77:e8:99:78:8d:d8:af:a9:61:3e:27:ad:
42:54:ca:0e:44:f2:3a:57:0e:86:15:11:95:00:e2:
cc:28:8a:52:f7:ee:58:37:91:24:73:3f:69:04:b1:
a6:1a:dc:b8:b7:04:79:e5:4c:26:ff:c7:d1:21:8e:
d1:c4:1c:e1:4f:f9:c2:1e:a5:da:35:ab:18:e9:a7:
39:bc:c0:e4:03:fa:dd:f8:54:37:39:9a:2e:be:c4:
84:4f:57:be:38:de:70:c3:3f:f4:f2:f9:f0:d5:5c:
f8:ef:31:ac:32:e2:be:ae:b9:49:ff:4c:e6:bf:a1:
80:19:ac:53:cf:c4:46:77:9f:5b:97:b4:d3:b9:13:
7b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D1:5B:16:A5:6B:C9:A1:5E:F1:2F:F7:BF:D4:C2:12:91:CF:92:7C
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.45.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:be:ea:e2:96:00:2d:b1:8a:af:5e:11:41:1b:1f:91:22:9d:
19:cc:0e:b3:82:c9:b7:6b:9b:41:45:a3:7d:a6:4f:bf:23:78:
19:86:03:25:cf:10:52:eb:ec:55:a1:00:ff:2f:8b:0a:3b:4d:
5f:c3:55:bd:26:c6:d3:8e:02:28:c8:26:de:a7:58:a2:6e:b8:
22:e3:f5:31:2d:92:0a:09:b1:15:ad:31:97:a7:8c:16:fa:4d:
9a:de:76:94:ef:95:1b:f7:ac:8c:36:14:83:9a:00:0d:76:7a:
c2:ae:2d:27:cd:03:7d:20:5f:de:ac:9b:0b:16:3f:50:82:50:
98:c0:ed:e6:9c:b8:cf:48:91:c3:49:0e:30:f3:2a:ca:35:da:
f1:2c:51:7d:02:f3:8d:b8:77:aa:86:e2:24:0a:e2:83:48:46:
10:e0:78:53:d6:bc:0a:a8:db:a6:e0:b2:7c:2a:6a:03:1d:22:
22:4b:a3:98:23:d9:26:8d:6e:a5:3e:9a:00:a7:e4:73:4a:b0:
88:a3:08:28:d6:15:93:8d:99:65:3d:bf:28:7e:62:78:f0:c5:
77:9f:36:27:4c:f8:4c:e9:88:2f:c8:81:4c:11:34:44:04:ab:
64:b0:a2:40:a3:16:45:67:66:b0:d2:bc:c5:18:9c:2f:fb:cd:
a7:b9:d5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org