Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e352e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: w3XSBFj6TiQIvVykRzxKhd+FPhu3spmw6PJQF+VsrTo=
Subject key identifier: B8:8E:A7:82:8B:1F:38:2C:0F:16:19:DF:28:53:A7:64:7A:58:4F:77
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 186FCC39339A41B156C24E9E9B55D1BF38ECFB88
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e352e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:03 +0000
ROA not before: Wed 13 Apr 2022 07:55:03 +0000
ROA not after: Wed 12 Apr 2023 08:00:03 +0000
asID: 24203
IP address blocks: 140.213.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:6f:cc:39:33:9a:41:b1:56:c2:4e:9e:9b:55:d1:bf:38:ec:fb:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:03 2022 GMT
Not After : Apr 12 08:00:03 2023 GMT
Subject: CN=B88EA7828B1F382C0F1619DF2853A7647A584F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:00:af:30:de:26:70:84:6a:88:c6:22:7d:4d:
ec:a8:bc:41:de:0c:f9:50:6f:f5:bd:f0:41:39:fd:
37:fc:cf:6b:0c:ca:24:7a:05:1e:6e:9e:7d:7a:8b:
78:c6:a5:8e:a5:b8:06:9c:0f:7d:aa:d1:12:9c:ba:
79:42:c8:9a:51:2f:71:89:f2:64:1e:68:a9:fc:cb:
44:73:b0:0d:a6:e0:ec:03:6c:83:76:3e:4b:f7:ce:
68:59:23:45:f2:74:76:01:d2:76:b2:d6:55:fe:f0:
fe:22:b9:2f:82:01:a8:60:f1:3e:4b:46:f9:72:77:
ee:bc:30:11:3b:6b:5f:d4:13:13:d6:72:dd:54:c4:
ab:d6:ef:65:60:a4:90:47:b8:43:fd:cc:05:cf:d9:
0c:cf:56:92:37:78:be:06:c9:3b:85:94:c9:19:27:
d3:d5:1d:22:c5:c0:11:67:fb:da:59:5a:86:04:d2:
16:14:3f:b3:be:c2:cf:ac:c7:d5:ee:87:5b:e1:da:
a8:44:e9:6b:6e:f8:c4:2b:cb:a2:7b:df:02:ff:ed:
a7:d5:4f:d9:53:b2:a7:d2:38:87:31:b7:fb:3d:be:
36:e2:18:c0:0c:3b:63:74:1d:09:92:dd:46:c2:46:
eb:6b:1b:fe:61:20:e4:f0:1f:f6:ae:e7:af:98:0b:
fb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8E:A7:82:8B:1F:38:2C:0F:16:19:DF:28:53:A7:64:7A:58:4F:77
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.5.0/24
Signature Algorithm: sha256WithRSAEncryption
24:f2:54:f2:df:00:52:e8:0a:55:d6:4c:13:15:83:f1:52:e0:
ed:ab:9c:cb:d3:ba:11:ee:56:97:c4:a2:44:a3:0c:08:d4:f5:
5d:fb:f5:4e:a9:e2:74:64:64:5c:d2:ca:08:25:94:73:ee:af:
28:95:99:3d:73:a0:11:70:ed:00:a8:af:d3:4f:1e:e3:61:4d:
0c:46:1d:1b:df:11:41:41:12:0d:15:79:4c:f1:d4:e6:82:65:
77:83:a4:b8:41:d5:e5:2e:3c:b2:39:59:ee:92:89:e8:9d:71:
d1:e8:f4:a2:77:d8:60:04:7f:a0:0b:d4:d2:f2:36:5c:43:b7:
54:74:f5:f1:19:b4:fb:f3:45:49:58:1c:df:5c:63:f3:ea:be:
15:9a:c1:19:73:0b:1e:35:31:01:0d:10:68:b6:6a:b4:ca:9d:
20:5c:40:78:89:c8:04:3c:ea:08:56:f1:52:33:f9:96:cf:20:
02:11:4c:75:d0:2d:e7:2d:ff:8c:ec:62:18:04:31:f3:82:9b:
a7:61:74:5d:74:97:9c:aa:fb:1c:ef:ea:92:2d:09:d9:25:67:
15:15:8a:fb:91:5c:1a:ca:15:73:78:94:6d:a2:83:93:47:ec:
a6:de:5a:5a:63:02:12:27:55:a5:3a:1a:bb:9a:8f:49:5b:b8:
84:6a:f7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org