Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e35382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 2+V9lLy61/DH6AuykZ+BOyW3xKKDaQkT3UxLv54LKuM=
Subject key identifier: 36:AA:D7:53:EE:1D:43:25:3A:F5:F7:C9:52:E1:0A:88:B1:41:DD:10
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 60F364B96F3907BAE357CEF2DFD8950E10D433B4
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35382e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:01 +0000
ROA not before: Tue 19 Apr 2022 06:55:01 +0000
ROA not after: Tue 18 Apr 2023 07:00:01 +0000
asID: 24203
IP address blocks: 140.213.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f3:64:b9:6f:39:07:ba:e3:57:ce:f2:df:d8:95:0e:10:d4:33:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:01 2022 GMT
Not After : Apr 18 07:00:01 2023 GMT
Subject: CN=36AAD753EE1D43253AF5F7C952E10A88B141DD10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:7a:43:ca:15:57:e8:49:29:6f:b8:32:93:
cc:8b:a4:a3:83:fa:33:cb:35:19:2b:e4:fa:14:40:
3b:38:80:25:16:54:27:cb:db:75:61:8e:87:6e:c7:
91:c1:8c:32:42:30:14:d5:32:69:bd:ce:6d:67:3f:
30:04:c2:c9:eb:90:d0:bb:92:80:a6:3c:22:26:e2:
d5:62:6e:f2:fa:81:23:29:75:68:b3:ea:76:7e:ab:
c0:46:dc:19:0b:04:0d:0c:f6:3e:57:24:7d:7f:e3:
c4:56:c1:a4:94:94:00:d3:58:b7:ad:ce:18:6c:bb:
eb:ef:e3:d4:47:10:0a:bc:32:8e:d4:46:c3:a9:f7:
60:82:fa:b2:17:ab:a5:a2:cd:e7:5d:37:93:82:97:
11:b4:8a:4b:d1:86:a6:d7:37:77:c4:2d:50:c9:d1:
da:ab:0c:e7:a1:fc:4e:06:6b:78:25:15:e9:77:1e:
50:ef:fe:a2:9d:ac:f6:78:05:2a:ce:29:89:29:76:
5b:db:c9:f5:b6:00:e9:96:33:2f:66:75:35:d7:4e:
04:73:7e:2d:1c:d9:9a:8f:73:3e:e4:17:c1:51:c0:
4b:5e:0d:59:b9:d1:42:99:3e:17:11:d7:f8:7f:92:
99:bd:c4:bd:6c:b4:bb:77:ba:ea:ab:0b:54:14:4d:
b8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AA:D7:53:EE:1D:43:25:3A:F5:F7:C9:52:E1:0A:88:B1:41:DD:10
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.58.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:6d:45:d9:f8:60:3b:df:99:73:b0:a1:e3:df:30:4d:83:42:
4d:e4:8e:e7:73:0d:89:92:a8:5a:9d:01:48:ec:1a:67:14:20:
a4:e7:42:96:fa:7a:ad:2f:73:69:8f:3f:ec:ee:41:dd:f8:72:
d7:a4:90:dc:36:dc:24:89:93:00:74:f4:e5:46:f6:f4:41:fc:
2f:47:53:e4:8c:a6:19:5c:e8:3f:21:f6:5e:94:71:36:af:c7:
4f:d0:2e:9b:9b:ae:98:3c:bf:91:ac:3f:36:54:b2:eb:4a:a5:
ca:08:11:ab:79:43:15:02:e8:9b:ae:12:81:3d:0e:3a:b9:64:
fc:b0:f3:47:d4:2d:11:3d:57:cb:98:61:0e:02:72:47:4c:20:
3c:44:61:a2:52:4c:0a:cd:52:b5:95:26:95:7e:59:5a:ef:a4:
26:71:fb:e3:cf:00:62:d3:55:60:1c:89:ac:54:13:d7:c0:df:
ed:0e:88:25:40:62:90:4d:16:e2:7c:4a:66:4f:57:d4:3b:90:
9c:6f:7d:d6:3d:2c:3c:43:ab:66:f3:8b:b1:90:2b:88:43:e0:
b7:91:c5:ae:21:a8:c4:15:1f:d4:5f:9e:4c:0d:d3:9e:a5:6a:
ec:d4:05:6b:d3:39:61:24:2a:6e:71:51:ee:25:c2:90:d8:e5:
02:2d:a0:6d
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUYPNkuW85B7rjV87y39iVDhDUM7QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwNjU1MDFaFw0yMzA0MTgwNzAwMDFaMDMxMTAvBgNV
BAMTKDM2QUFENzUzRUUxRDQzMjUzQUY1RjdDOTUyRTEwQTg4QjE0MUREMTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmlXpDyhVX6Ekpb7gyk8yLpKOD
+jPLNRkr5PoUQDs4gCUWVCfL23Vhjodux5HBjDJCMBTVMmm9zm1nPzAEwsnrkNC7
koCmPCIm4tVibvL6gSMpdWiz6nZ+q8BG3BkLBA0M9j5XJH1/48RWwaSUlADTWLet
zhhsu+vv49RHEAq8Mo7URsOp92CC+rIXq6WizeddN5OClxG0ikvRhqbXN3fELVDJ
0dqrDOeh/E4Ga3glFel3HlDv/qKdrPZ4BSrOKYkpdlvbyfW2AOmWMy9mdTXXTgRz
fi0c2ZqPcz7kF8FRwEteDVm50UKZPhcR1/h/kpm9xL1stLt3uuqrC1QUTbh7AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUNqrXU+4dQyU69ffJUuEKiLFB3RAwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzNTM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVOjANBgkqhkiG
9w0BAQsFAAOCAQEAo21F2fhgO9+Zc7Ch498wTYNCTeSO53MNiZKoWp0BSOwaZxQg
pOdClvp6rS9zaY8/7O5B3fhy16SQ3DbcJImTAHT05Ub29EH8L0dT5IymGVzoPyH2
XpRxNq/HT9Aum5uumDy/kaw/NlSy60qlyggRq3lDFQLom64SgT0OOrlk/LDzR9Qt
ET1Xy5hhDgJyR0wgPERholJMCs1StZUmlX5ZWu+kJnH7488AYtNVYByJrFQT18Df
7Q6IJUBikE0W4nxKZk9X1DuQnG991j0sPEOrZvOLsZAriEPgt5HFriGoxBUf1F+e
TA3TnqVq7NQFa9M5YSQqbnFR7iXCkNjlAi2gbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org