Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e36362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: y4a+zudx7C+NjViCJIxr/hf9sVT93gjqItdAMuItgAA=
Subject key identifier: E4:14:2A:84:02:5F:27:83:44:A8:F0:A9:D5:1F:F1:D6:1B:90:5E:65
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 1C45E77EA1E6FFB5957C85F72986A02AD1D55761
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36362e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:00 +0000
ROA not before: Tue 19 Apr 2022 08:55:00 +0000
ROA not after: Tue 18 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 140.213.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:45:e7:7e:a1:e6:ff:b5:95:7c:85:f7:29:86:a0:2a:d1:d5:57:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:00 2022 GMT
Not After : Apr 18 09:00:00 2023 GMT
Subject: CN=E4142A84025F278344A8F0A9D51FF1D61B905E65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:af:4d:84:93:51:bf:cb:cb:c2:20:a9:f8:d2:
b3:f1:b3:6e:bc:7c:78:b9:97:07:bb:7e:67:5f:74:
d8:57:f8:07:b1:44:4d:51:6f:5e:6e:c7:54:98:de:
15:4b:52:97:69:cd:43:df:96:6f:69:96:e6:fb:2b:
28:7c:e6:36:83:47:0e:34:88:d7:ef:eb:0c:0c:d2:
c2:3b:ff:bb:02:8f:5f:d4:73:b9:83:a4:ed:89:37:
a5:88:34:f1:8f:11:f7:bb:d8:ea:9e:88:3d:c3:ba:
3c:52:0f:83:d4:b7:7e:61:09:c0:3e:8b:1a:2c:f4:
19:fd:b3:42:a1:59:f3:e1:6c:c3:ad:ef:c7:90:fe:
6c:2d:ee:3e:cc:de:09:38:58:f4:75:90:e2:4f:6f:
e8:3a:db:00:ac:0f:7f:64:2c:4e:3a:25:7c:2b:25:
1f:48:68:46:f7:c9:83:96:87:dd:ea:03:71:68:bf:
e5:33:9a:13:59:ea:e5:e0:6e:f9:5a:fa:07:d7:d6:
6c:cc:7a:ee:0f:8b:73:14:55:26:ce:e3:19:89:dd:
2f:e7:3a:97:cf:ec:2a:0e:b1:cb:55:e5:17:ff:2f:
b1:b0:89:e4:3c:3e:f2:0b:5c:d8:40:67:86:71:4b:
2e:10:80:85:95:b4:a9:2d:81:7f:7a:33:1e:ca:98:
88:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:14:2A:84:02:5F:27:83:44:A8:F0:A9:D5:1F:F1:D6:1B:90:5E:65
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.66.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:cf:cf:0c:d5:ab:d2:d0:91:4b:05:9b:e3:fe:7e:aa:bf:c8:
89:85:33:52:c8:d9:9f:6b:f3:89:96:5f:88:6d:28:8b:19:fe:
eb:04:2f:49:f4:05:5d:3b:8b:ef:dd:f3:0f:be:4e:15:43:4e:
21:94:69:e7:1f:07:7c:90:50:8b:9b:30:50:bd:55:28:7b:4a:
75:8c:41:b7:fd:81:ef:2b:d4:8d:1f:b9:3b:69:79:69:4e:1f:
cc:29:34:f4:f8:ea:f5:02:0f:e3:fb:35:ea:db:15:a7:05:32:
d0:ce:74:7d:92:88:29:cc:85:74:8e:17:1b:0a:f4:66:a6:b2:
e3:28:2d:be:fe:70:1f:35:b4:42:6e:98:fb:d1:6a:ff:f2:c3:
e7:52:9e:90:9f:c4:7f:59:c2:c5:dd:2e:a3:22:cd:08:ea:d6:
f7:08:4e:6c:ea:6c:6c:7f:2f:17:0d:d1:58:af:ae:01:13:43:
d2:12:15:8a:ca:da:61:68:b1:02:11:d1:af:68:94:68:8e:2a:
5d:55:95:15:ed:a2:58:c7:10:b8:37:82:80:51:e7:73:d3:2c:
7f:42:5a:1e:45:96:bf:20:19:fb:a5:98:eb:99:34:a1:2e:85:
27:70:44:9c:c5:2d:dd:91:66:98:ee:fc:c5:62:49:f0:1b:50:
44:ee:e0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org