Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35372e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e35372e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 1WiEHUrl9YSHo41K2qnKLU61XoIProoxJtOxFvoPWl4=
Subject key identifier: D0:97:92:07:E3:35:B6:59:19:2A:43:20:D1:79:82:02:26:28:E7:B7
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 79D63036D913AA7049F04DDBB0B143E8AE21F91D
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35372e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:00 +0000
ROA not before: Tue 19 Apr 2022 06:55:00 +0000
ROA not after: Tue 18 Apr 2023 07:00:00 +0000
asID: 24203
IP address blocks: 140.213.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:d6:30:36:d9:13:aa:70:49:f0:4d:db:b0:b1:43:e8:ae:21:f9:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:00 2022 GMT
Not After : Apr 18 07:00:00 2023 GMT
Subject: CN=D0979207E335B659192A4320D17982022628E7B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:12:e6:cd:47:19:99:2d:39:7b:5a:cc:73:d9:
b2:f6:84:74:15:83:78:e8:7d:af:36:41:a5:9b:71:
e7:80:65:72:f4:35:a1:d0:3b:b4:0e:03:67:90:2d:
8e:0c:13:ce:d3:4c:4f:37:07:8f:cb:af:5e:bc:e2:
12:5f:65:62:c5:ea:31:5e:b8:24:14:ca:68:64:7a:
b4:d9:52:50:5f:78:d1:5f:ce:86:2a:b8:86:6b:26:
30:1d:f5:d8:88:06:c4:5f:90:1d:da:d5:e8:27:58:
52:46:3e:28:d2:39:ea:9c:9c:14:04:4c:45:e6:56:
85:ee:74:0e:8a:e8:ab:11:3a:cb:a3:57:aa:4b:60:
ab:4b:10:28:27:4b:28:0d:73:39:a1:be:b1:74:98:
b9:ca:51:b4:22:f5:c9:3f:b0:1d:15:40:87:a3:5a:
93:dc:9f:19:b2:d6:4b:5b:13:d1:31:44:cd:1c:d6:
a4:09:a9:a2:4f:f3:55:96:e0:a8:88:74:70:d4:11:
ab:c0:6d:00:3b:c3:7e:22:2d:9e:d4:e0:32:2d:8f:
4f:3b:51:82:3a:b7:53:dd:dd:eb:77:e8:ac:fb:42:
da:e9:b9:a0:25:fb:75:ba:49:b5:3a:38:31:30:ab:
3c:03:db:e7:75:a8:dc:14:d6:8c:64:5e:68:c2:a8:
9f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:97:92:07:E3:35:B6:59:19:2A:43:20:D1:79:82:02:26:28:E7:B7
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35372e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.57.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ad:9c:0c:87:88:8d:02:fe:63:ce:d5:7d:1b:53:b1:fd:64:
da:67:56:fe:ae:06:72:b2:56:41:1e:aa:c2:12:b5:53:7f:f0:
f8:4a:aa:fa:81:ec:8c:ee:bc:80:32:11:6f:94:40:b7:9f:d0:
ff:9c:37:b6:ff:20:06:6d:cf:b8:dc:fe:81:8c:90:5c:b3:64:
2f:8c:fe:03:1c:54:01:96:e9:51:b3:42:42:b8:47:d8:bd:4d:
b3:cb:8a:8a:0f:54:c2:f6:f9:21:25:32:5c:09:64:b9:3b:62:
d5:88:a5:36:f9:26:ab:69:8d:21:27:7b:34:6d:89:8c:82:12:
b4:1a:1f:3d:ca:d6:49:52:d4:ce:a1:d0:65:e5:1c:7f:20:3e:
f9:a9:41:13:d0:1a:de:dc:8e:3a:64:ff:c5:dc:5a:1c:a7:cc:
3f:03:ca:9c:81:89:6f:d1:36:e2:27:f6:f4:7a:ca:ee:62:7a:
fb:12:88:27:50:70:f0:c5:58:01:d7:7a:f4:ad:e2:3c:7f:73:
66:55:e1:e1:71:9e:05:6d:0f:0e:c2:6b:93:ff:5f:1a:2b:18:
7a:d9:e5:c1:50:d5:7d:60:50:33:1f:f7:12:50:11:2f:f5:30:
5f:f6:f0:42:6b:f5:08:ce:cc:a7:67:22:bd:15:c0:0e:80:7e:
6b:48:09:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org