Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e35322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Jqgmk35jh4ZNBS/1BXtuy/lsfic2rdAX/e4631zgGso=
Subject key identifier: 18:5A:2C:72:2E:D7:92:DD:50:8E:4B:DF:A4:13:60:E3:2F:0C:CC:C5
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 3F6F44B5EDF8263B2002C5E912C2D8D6155CEE40
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35322e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:00 +0000
ROA not before: Tue 19 Apr 2022 06:55:00 +0000
ROA not after: Tue 18 Apr 2023 07:00:00 +0000
asID: 24203
IP address blocks: 140.213.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:6f:44:b5:ed:f8:26:3b:20:02:c5:e9:12:c2:d8:d6:15:5c:ee:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:00 2022 GMT
Not After : Apr 18 07:00:00 2023 GMT
Subject: CN=185A2C722ED792DD508E4BDFA41360E32F0CCCC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:36:bf:db:f2:95:06:44:6b:5a:65:84:9a:c2:
f6:7e:9d:1b:31:e4:bf:fb:98:42:f7:40:d7:d0:c1:
09:02:fa:96:0b:2b:31:c1:54:da:fb:c4:e0:6c:b2:
fc:d5:fd:aa:b2:70:fb:44:74:3c:85:ed:07:31:05:
13:fc:c3:3f:f8:57:51:09:40:a1:c4:08:f8:27:f2:
d5:56:83:60:ac:52:03:e4:72:c3:4a:a3:10:76:ca:
08:bf:1f:a1:c1:4f:cf:fc:ba:8e:72:da:36:b7:a6:
b2:92:ee:a0:a3:d8:b5:b9:dd:76:f2:a0:bc:f0:13:
e1:40:b0:ba:d3:5a:e0:e7:32:08:b6:48:58:82:76:
b7:f7:6c:69:56:75:3c:a6:32:19:d0:b6:46:0e:b0:
64:b7:f7:c8:f4:e4:f9:2d:83:cb:34:62:1d:59:fb:
84:da:c1:91:c7:5f:6b:da:de:c4:04:a9:68:c6:21:
55:66:1c:ef:3d:82:f7:c3:0a:41:99:32:71:a6:1a:
59:56:93:fa:2a:92:3b:4f:b5:7e:d3:41:e2:13:4d:
3a:68:db:ea:99:0d:d9:d9:a2:79:fd:76:5a:4f:87:
74:eb:e6:ab:72:58:58:bf:d5:92:4e:d5:d3:bf:ab:
47:d8:be:b6:50:02:2b:b4:53:0b:e3:e2:d7:8c:a9:
8c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:5A:2C:72:2E:D7:92:DD:50:8E:4B:DF:A4:13:60:E3:2F:0C:CC:C5
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.52.0/24
Signature Algorithm: sha256WithRSAEncryption
24:54:24:f9:d9:99:f6:32:f7:f8:4f:d6:3c:e3:9a:81:7d:d5:
a3:c6:a9:03:25:1e:7a:71:74:41:bb:a5:1b:ac:ce:a4:86:42:
a3:c7:1e:4c:f3:f9:3f:0e:e0:86:59:29:cb:8f:3e:3c:85:8e:
19:3d:f6:5a:e0:fb:91:52:bc:21:84:09:77:c1:4b:60:e5:08:
a1:2b:ce:1e:04:87:7f:38:a6:42:e2:41:9f:91:40:16:48:8f:
d7:cf:fb:4e:73:0a:a6:5e:b9:7e:74:53:9f:93:45:c9:81:37:
04:43:10:26:ab:f4:b7:c2:11:e1:1c:47:00:77:20:fb:b2:6c:
f0:70:36:30:4f:11:db:81:d7:fd:af:08:1e:92:44:e6:cc:d9:
b5:55:35:2b:69:7c:c5:92:45:0c:2e:18:54:46:70:65:84:be:
2a:b2:4b:73:70:cc:c4:8c:50:30:1e:e5:c3:f8:56:d1:02:d2:
87:a7:92:3f:5b:de:81:93:8b:24:4d:4e:a0:f0:20:3f:ec:5f:
06:0f:11:80:f0:c9:ce:af:fa:44:d7:f1:ea:00:4d:8e:0e:64:
70:32:d2:0a:1b:d3:0a:c4:19:73:61:8e:e8:15:1a:f9:2e:0f:
66:e4:47:84:65:49:d5:e0:16:6f:7b:39:be:13:10:0d:9c:8e:
a5:45:78:d3
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUP29Ete34JjsgAsXpEsLY1hVc7kAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwNjU1MDBaFw0yMzA0MTgwNzAwMDBaMDMxMTAvBgNV
BAMTKDE4NUEyQzcyMkVENzkyREQ1MDhFNEJERkE0MTM2MEUzMkYwQ0NDQzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuNr/b8pUGRGtaZYSawvZ+nRsx
5L/7mEL3QNfQwQkC+pYLKzHBVNr7xOBssvzV/aqycPtEdDyF7QcxBRP8wz/4V1EJ
QKHECPgn8tVWg2CsUgPkcsNKoxB2ygi/H6HBT8/8uo5y2ja3prKS7qCj2LW53Xby
oLzwE+FAsLrTWuDnMgi2SFiCdrf3bGlWdTymMhnQtkYOsGS398j05Pktg8s0Yh1Z
+4TawZHHX2va3sQEqWjGIVVmHO89gvfDCkGZMnGmGllWk/oqkjtPtX7TQeITTTpo
2+qZDdnZonn9dlpPh3Tr5qtyWFi/1ZJO1dO/q0fYvrZQAiu0Uwvj4teMqYxbAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUGFosci7Xkt1QjkvfpBNg4y8MzMUwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzNTMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVNDANBgkqhkiG
9w0BAQsFAAOCAQEAJFQk+dmZ9jL3+E/WPOOagX3Vo8apAyUeenF0QbulG6zOpIZC
o8ceTPP5Pw7ghlkpy48+PIWOGT32WuD7kVK8IYQJd8FLYOUIoSvOHgSHfzimQuJB
n5FAFkiP18/7TnMKpl65fnRTn5NFyYE3BEMQJqv0t8IR4RxHAHcg+7Js8HA2ME8R
24HX/a8IHpJE5szZtVU1K2l8xZJFDC4YVEZwZYS+KrJLc3DMxIxQMB7lw/hW0QLS
h6eSP1vegZOLJE1OoPAgP+xfBg8RgPDJzq/6RNfx6gBNjg5kcDLSChvTCsQZc2GO
6BUa+S4PZuRHhGVJ1eAWb3s5vhMQDZyOpUV40w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org