Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e35362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 4N1JcvgKJTinFtANtpHjC6wVKdtW2W7qkcy2zO3jzT8=
Subject key identifier: BA:D7:39:7B:83:5E:0C:15:26:23:DF:96:9B:43:8F:52:EC:57:39:0F
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 37280A016BD4C56E10B5102E1C238C0643E54629
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35362e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:00 +0000
ROA not before: Tue 19 Apr 2022 06:55:00 +0000
ROA not after: Tue 18 Apr 2023 07:00:00 +0000
asID: 24203
IP address blocks: 140.213.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:28:0a:01:6b:d4:c5:6e:10:b5:10:2e:1c:23:8c:06:43:e5:46:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:00 2022 GMT
Not After : Apr 18 07:00:00 2023 GMT
Subject: CN=BAD7397B835E0C152623DF969B438F52EC57390F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:04:16:f5:3c:8a:ac:8f:4b:78:1e:e8:04:90:
dd:9e:2d:4c:d7:ba:31:62:6a:21:b8:ee:18:2b:3b:
66:ef:4c:f3:35:ca:14:b6:80:88:32:05:2b:cf:9b:
22:c6:9b:3d:f0:f3:a3:2a:e5:de:bf:e3:9d:8d:e6:
7e:9a:2e:76:0c:19:21:0a:45:62:94:e0:2e:51:ed:
0f:a2:c0:ba:8d:c7:2f:de:88:9b:11:30:0f:4c:70:
70:0b:50:70:46:6f:d4:40:9f:8a:3c:bf:14:5b:48:
8e:8d:36:75:33:4e:72:4b:bc:ef:98:46:52:42:7b:
bc:16:1a:bc:8e:0a:a3:2e:55:1d:c1:83:a9:f3:99:
06:f6:0c:47:cd:5e:03:0d:3e:b6:fe:58:df:66:3b:
fd:f6:f0:98:cc:9b:45:28:d4:ec:ce:f5:da:c4:f0:
9d:6d:e3:57:bb:1a:89:7c:65:2d:5c:bc:62:e7:f9:
12:5e:ea:d2:2b:21:bb:f7:82:43:e8:da:45:86:da:
a8:e9:02:2d:27:36:d2:36:3b:a7:97:94:d4:f7:97:
73:61:0a:86:01:d8:6f:29:94:53:8c:de:a4:af:b4:
bf:cc:3f:19:31:77:1c:12:56:4d:19:fc:9a:6a:e8:
b9:3f:26:d4:b2:0f:05:54:4c:fa:f2:0d:5f:fe:07:
d6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D7:39:7B:83:5E:0C:15:26:23:DF:96:9B:43:8F:52:EC:57:39:0F
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.56.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:67:da:5b:9a:94:b6:ac:c8:af:68:af:c0:ca:4c:00:f9:f8:
1e:7c:1a:4e:90:06:3a:0b:89:91:3b:bd:7f:0e:61:e5:1b:48:
b5:f1:7d:b1:7e:bd:82:03:b0:20:d2:fa:d1:0c:65:6d:93:ce:
f9:55:9b:f9:60:74:48:19:9f:46:1d:fe:30:78:c8:b4:94:95:
91:51:fc:d1:c1:7b:1c:cf:c3:c9:cf:ec:98:61:e0:ee:61:43:
fa:0a:73:fb:50:db:26:4e:24:56:5c:3e:ff:ba:84:9b:32:9d:
bb:2c:30:f2:a7:25:09:a1:3b:89:b8:1f:9e:b1:dc:65:bd:72:
39:97:de:3d:52:53:52:39:6d:55:1b:f6:33:09:4c:ac:8f:a3:
bf:37:37:08:91:d1:89:80:0c:26:9d:40:f9:73:f3:56:96:e1:
e5:cc:c6:22:29:c0:e0:b6:3b:1e:95:d2:3d:c2:c5:8a:a5:7c:
d2:41:f4:74:cc:34:fc:6d:49:b6:95:25:47:b6:d4:3d:80:d9:
9d:83:0a:44:c3:8b:13:2d:88:b8:27:80:78:d6:fc:f0:7c:f8:
88:98:e4:be:f1:f0:85:71:1b:fc:3e:23:9b:c3:67:79:b3:9d:
ae:e5:41:77:23:72:14:eb:01:38:f1:97:de:1f:59:7d:02:18:
6d:51:f3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org