Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36342e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e36342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: TGx0anCElb5pQBh0yV4L0xJrQkG7vjjecCQ/Rpq8RHE=
Subject key identifier: DE:24:C9:97:09:28:13:6B:36:75:CA:BA:5E:00:73:03:3D:4E:2B:C1
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 3E67E737685DAAB13305D5D341FC1763891CDC5F
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36342e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:00 +0000
ROA not before: Tue 19 Apr 2022 08:55:00 +0000
ROA not after: Tue 18 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 140.213.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:67:e7:37:68:5d:aa:b1:33:05:d5:d3:41:fc:17:63:89:1c:dc:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:00 2022 GMT
Not After : Apr 18 09:00:00 2023 GMT
Subject: CN=DE24C9970928136B3675CABA5E0073033D4E2BC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f1:42:86:32:f7:85:86:b5:6f:16:0f:0a:a5:
f6:90:f8:0c:a6:08:87:28:0d:bf:b2:09:80:f3:e2:
02:17:07:b3:6f:5c:66:7d:f4:a4:ca:e9:5c:0c:69:
dd:ce:f5:d7:77:07:48:bc:f2:15:e5:c6:79:25:54:
a3:ab:f6:13:8f:ca:46:10:ed:fb:a0:9a:8c:85:76:
66:f1:3b:96:dc:92:80:8f:a3:6a:f9:2d:56:ae:6e:
ff:ec:5d:64:b7:0d:bb:4c:56:4a:df:d1:15:7b:a1:
aa:89:89:f5:b1:a6:ca:f6:11:5c:92:84:61:40:65:
16:d9:14:ce:7e:2c:60:e8:e2:68:6e:71:e9:44:c0:
32:35:bc:25:94:3b:c7:ec:8a:c2:94:50:04:13:10:
0a:00:ea:48:9b:d2:1b:70:b9:59:e7:69:37:f9:43:
5b:ac:e7:3e:c4:2c:f9:c4:23:31:71:2a:a1:70:c3:
5d:e3:c7:77:2d:e2:ef:5e:30:d9:91:63:f2:61:0b:
8b:e7:b0:16:8a:35:65:8f:4a:69:9b:ee:88:b8:d7:
3c:9e:c0:a1:82:2f:b4:88:72:57:78:5a:71:88:96:
51:17:21:11:42:4c:3a:7d:a3:6b:b0:c4:f1:2d:e8:
ce:e1:49:42:bc:75:2e:e7:9c:2d:a6:74:da:60:fa:
fa:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:24:C9:97:09:28:13:6B:36:75:CA:BA:5E:00:73:03:3D:4E:2B:C1
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.64.0/24
Signature Algorithm: sha256WithRSAEncryption
69:b3:f0:6b:c7:3d:b4:fb:b1:f6:60:f4:41:ec:61:c7:bc:10:
08:18:e7:81:bc:8e:bc:de:fc:a9:12:07:c6:a0:9a:90:4a:b4:
60:b4:ed:91:53:98:45:da:76:ff:ea:37:ee:61:7e:0a:c9:75:
22:58:f3:ae:be:84:eb:e6:c7:42:c9:59:b4:c8:39:77:f8:72:
05:ed:80:ec:d9:bb:22:40:35:db:db:bb:d1:0f:81:f5:ec:92:
f0:69:70:93:e7:2b:ab:0e:89:fc:2e:21:39:b9:63:4c:a2:29:
b1:f3:23:92:5e:de:ba:ce:73:0c:a7:55:eb:be:01:56:8d:a1:
68:d7:be:42:34:68:3d:98:09:83:f3:41:18:ad:2a:29:ea:fe:
a8:3d:3c:56:97:1d:5c:b4:18:6a:20:e3:33:7f:6c:84:8d:96:
86:0a:92:10:85:a4:27:44:b8:d2:e7:c2:c5:b0:1c:40:85:98:
43:ce:95:48:97:45:12:0f:eb:ed:15:f6:72:4a:e7:02:78:8c:
4e:0f:f9:33:cd:5e:b7:42:17:70:3b:75:45:90:0d:86:61:44:
cb:c4:b4:38:51:e7:8c:ed:3b:45:2e:4f:6a:fb:28:bf:fd:f0:
ef:b5:25:5c:cf:fc:36:50:52:ab:e4:63:a3:b7:5c:ac:00:45:
ca:c7:b4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org