Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e34382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: r5dopPJmx6nZJyrprHehbptpLF9aTYvIbX43cFxXBb8=
Subject key identifier: E7:78:E5:54:69:0A:C5:07:15:36:47:AB:1E:F2:59:7B:42:1D:3B:B9
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4CFF12DC542421508D6B4FC3E56F51210720966F
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34382e302f32342d3234203d3e203234323033.roa
Signing time: Sat 08 Jan 2022 17:14:46 +0000
ROA not before: Sat 08 Jan 2022 17:09:46 +0000
ROA not after: Sun 08 Jan 2023 17:14:46 +0000
asID: 24203
IP address blocks: 140.213.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:ff:12:dc:54:24:21:50:8d:6b:4f:c3:e5:6f:51:21:07:20:96:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Jan 8 17:09:46 2022 GMT
Not After : Jan 8 17:14:46 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:85:c6:5c:f6:b6:78:56:45:93:8f:24:fc:fe:
da:2b:8a:f9:37:f9:3a:8b:3d:a3:58:5d:a1:4c:c1:
f1:0d:dc:24:83:1e:40:7b:d0:a6:65:3e:da:68:91:
85:5e:15:7e:32:50:63:d6:00:0b:dd:ed:91:b2:0d:
ee:52:17:3a:e3:60:e9:13:e4:66:7e:cf:77:6a:76:
f2:cd:90:14:3d:ad:25:9f:2a:82:c4:15:ff:dd:bb:
e4:c4:ea:15:97:90:36:e6:10:50:f8:72:e5:5b:6e:
1c:9b:cc:98:75:55:67:ed:13:d9:d7:4d:b2:89:43:
20:60:69:00:26:f9:6a:84:93:65:32:2b:2a:43:ac:
be:fd:5b:de:2d:6b:eb:5f:9e:ef:00:1e:0c:04:c9:
75:bf:aa:bf:90:b9:ca:22:64:a7:33:e9:f8:a0:ff:
c6:1f:76:2f:c4:08:30:6a:25:dc:20:26:00:17:e5:
0e:37:7c:97:b0:56:8a:57:23:3d:b5:dc:36:e5:f0:
73:ef:98:2b:a2:ae:42:b3:a3:a0:39:0f:a4:e7:de:
81:aa:8e:25:03:8b:f5:9c:6f:a0:fd:aa:c3:ad:e4:
0c:e5:c6:60:1f:81:d0:a3:ce:5d:df:fb:20:00:1c:
a3:f3:83:bb:bb:ee:b9:f7:9a:1c:be:ef:dc:7c:1f:
0f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:78:E5:54:69:0A:C5:07:15:36:47:AB:1E:F2:59:7B:42:1D:3B:B9
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e34382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.48.0/24
Signature Algorithm: sha256WithRSAEncryption
31:04:01:1f:33:15:b0:0b:93:8d:20:01:3a:e2:3a:85:8c:62:
32:ae:c5:c0:8f:bb:0d:49:4c:1f:14:1f:65:56:fa:e2:c5:77:
9d:a5:0c:9d:10:d4:1d:0e:f7:49:37:b3:b3:d1:1a:9b:b8:47:
b0:81:2e:8d:99:67:01:24:0d:3f:89:a9:6e:e0:71:18:2e:de:
96:d4:ee:64:aa:94:dc:be:e5:56:15:74:0d:45:42:f7:2f:c3:
47:f5:6c:64:06:55:0a:4e:ec:9e:b7:e7:05:9c:8e:6a:37:e5:
a9:bb:e6:0b:5c:11:8c:55:f7:10:5d:f9:7b:ca:15:e0:19:cb:
96:25:58:69:31:86:83:66:30:9f:a7:2d:a1:67:9f:f6:ab:5f:
b8:19:fe:19:12:53:ea:20:b1:85:47:db:f5:cd:58:1f:9d:1f:
92:86:8f:c6:81:c6:ff:b7:15:96:e5:2f:83:9f:ed:3c:57:36:
ca:8e:0c:44:3c:6d:fc:cc:12:89:9f:d6:91:84:fc:34:90:9d:
db:82:65:1d:e4:ae:72:18:7b:3d:56:32:ee:28:e5:08:58:e7:
6f:f3:23:48:04:dc:1f:65:c9:40:e0:45:1c:07:d7:0d:40:e5:
9d:b8:05:4b:84:14:45:90:67:ca:5d:a8:00:34:7b:70:d3:13:
de:70:b4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org