Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e35392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: u+hRZR5QAOy4WJzfo+V7Ev4X0bzgzp0ZPTXQpIwdZhU=
Subject key identifier: EF:03:A4:1E:4D:7C:11:CC:65:F6:84:6D:41:44:56:2E:4E:BE:89:B5
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5D20915BEB25D4CDB1786DDE9FE42F539F2CF3B1
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35392e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:00 +0000
ROA not before: Tue 19 Apr 2022 06:55:00 +0000
ROA not after: Tue 18 Apr 2023 07:00:00 +0000
asID: 24203
IP address blocks: 140.213.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:20:91:5b:eb:25:d4:cd:b1:78:6d:de:9f:e4:2f:53:9f:2c:f3:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:00 2022 GMT
Not After : Apr 18 07:00:00 2023 GMT
Subject: CN=EF03A41E4D7C11CC65F6846D4144562E4EBE89B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:37:cc:6b:5a:e8:dc:1e:19:27:9b:2c:bd:fc:
e5:25:7e:e8:88:ae:25:5e:97:4e:97:ec:22:b0:54:
1f:06:4f:6d:04:55:13:8f:5a:89:5c:23:93:4b:50:
19:ea:d2:a9:34:fb:c3:dd:54:aa:2d:1d:af:93:06:
e3:b5:3e:33:15:b1:69:24:4e:9f:59:59:2f:83:1e:
a2:e4:eb:b9:87:90:b2:a1:6f:0f:7e:b3:19:cf:64:
45:20:8c:ea:41:5c:c0:36:1d:24:22:79:cc:37:94:
01:70:3b:8b:fd:a7:4b:b5:0e:2a:67:ff:c6:e2:31:
41:be:22:b5:37:56:6c:ff:80:9f:1f:4a:c6:d2:01:
df:f2:6d:c8:40:c1:39:79:4f:f0:ad:7d:1e:3f:e6:
16:bf:66:32:3f:f4:0e:06:50:9c:a9:ac:58:84:b9:
1c:3d:32:ff:85:5d:17:15:53:6f:b7:cd:05:a7:6e:
13:96:e0:c5:18:77:c2:d4:a1:ac:d0:d3:17:76:39:
94:6a:dc:3f:c7:9e:e4:7a:3d:7e:cb:ec:c3:27:3c:
6a:da:d2:aa:25:d8:55:06:a8:a6:dc:33:22:6f:32:
ce:fc:4a:15:14:34:f6:57:83:d8:81:87:eb:02:17:
4e:04:ec:da:33:ee:76:99:fb:61:24:5c:13:4f:8a:
a0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:03:A4:1E:4D:7C:11:CC:65:F6:84:6D:41:44:56:2E:4E:BE:89:B5
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.59.0/24
Signature Algorithm: sha256WithRSAEncryption
19:37:22:26:c9:24:e5:0c:44:3e:fd:72:53:a9:94:90:33:fe:
04:f4:87:68:50:00:e7:10:ac:b7:b8:1d:44:21:74:cc:ec:db:
df:f1:11:d5:35:f0:af:1c:52:0f:93:55:cb:f8:c4:0f:8e:ef:
5b:bb:26:93:bd:b3:69:b5:92:0d:93:9b:27:6c:31:df:72:1b:
99:0e:cf:0a:eb:fb:ed:cc:a6:d2:12:46:eb:5c:18:8b:12:85:
b3:2c:17:ab:36:57:e0:a9:a5:75:f1:30:00:78:14:41:dd:a7:
f6:5d:4d:39:54:ee:09:12:5e:09:da:16:43:4c:5a:a2:4e:c1:
1b:38:24:2f:36:4e:70:74:23:1f:8b:43:d2:60:c4:55:4c:02:
27:31:14:6f:28:05:4c:b8:9c:b7:7e:5d:0b:00:96:d6:24:15:
ae:9a:0b:a1:42:15:03:2a:b4:58:9b:55:e5:6f:10:b1:05:a2:
38:5f:e4:f0:6f:ec:3f:f3:de:dd:04:fb:ff:48:34:2f:a1:96:
64:c7:38:78:5d:56:46:6c:e1:30:f9:95:28:17:af:9d:7b:08:
c1:5c:a6:f2:7f:c1:71:b2:fb:f9:df:37:3b:a7:03:22:25:b5:
52:1f:99:ba:be:30:17:0a:9c:cf:c3:21:d4:e3:e9:f0:1b:21:
68:af:a9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org