Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36372e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e36372e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: /Tgj/bjhJAgDP/oE6mY9Enxuv8BYxJ32rCEqYJCw9kg=
Subject key identifier: 66:CA:5B:03:A4:7E:57:1B:D1:6E:1A:6D:50:92:FD:08:D8:0C:2F:14
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 0F89A17E252A9D35209557E9486E08B11FA0C65A
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36372e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:00 +0000
ROA not before: Tue 19 Apr 2022 08:55:00 +0000
ROA not after: Tue 18 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 140.213.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:89:a1:7e:25:2a:9d:35:20:95:57:e9:48:6e:08:b1:1f:a0:c6:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:00 2022 GMT
Not After : Apr 18 09:00:00 2023 GMT
Subject: CN=66CA5B03A47E571BD16E1A6D5092FD08D80C2F14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b7:f1:a9:a8:c0:77:01:33:2e:50:0c:d5:d9:
91:11:21:f7:b6:68:96:74:2d:a8:4a:25:2a:4f:8d:
84:64:60:98:5a:31:2f:69:eb:6b:ce:b7:bc:9f:26:
e8:0c:14:29:6b:6e:a4:c7:d0:cd:59:01:68:28:5b:
3f:c1:9f:c8:e4:e2:37:06:70:9b:e3:50:29:bc:da:
bb:2c:e0:0e:64:3b:d3:a0:9d:7e:22:30:df:b3:4b:
fa:8d:e9:e3:12:d4:16:ea:95:b4:17:4b:60:62:3d:
a2:c1:49:a5:3d:75:6b:45:44:9c:1c:b4:20:9b:e8:
f1:84:96:5e:0f:f0:24:fb:f9:ca:c6:dc:13:fc:cc:
24:10:d3:33:3b:2f:d8:dc:7f:fb:5f:05:5d:92:3a:
21:55:bc:e4:54:9c:de:d7:5c:9a:5e:b4:9c:a6:f0:
fb:6c:fa:dc:fa:33:91:7a:7f:6d:fa:37:34:03:32:
93:6e:14:a7:c3:7d:75:5a:79:b3:b4:48:95:7a:0c:
cb:44:1d:46:c0:6b:d9:bc:01:2b:a4:98:39:1e:9f:
ba:92:5d:2b:3d:ea:45:44:5e:e5:c2:34:d5:1d:d9:
be:18:6b:a1:7e:15:6e:ff:b6:fb:8a:13:0f:b9:e3:
7a:24:04:ed:98:6f:15:53:88:d0:6b:bc:b5:46:89:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:CA:5B:03:A4:7E:57:1B:D1:6E:1A:6D:50:92:FD:08:D8:0C:2F:14
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36372e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.67.0/24
Signature Algorithm: sha256WithRSAEncryption
77:35:1f:ad:bc:b8:9c:72:49:16:7e:fa:9d:e3:52:b7:b5:95:
bd:34:07:02:ef:47:69:3e:19:c1:61:40:de:41:71:45:b2:39:
31:4b:bd:33:3d:2c:1c:9e:81:d8:8e:e8:5a:b2:c3:a6:36:82:
d1:16:e1:7c:aa:ee:d5:8e:52:92:38:40:48:f3:37:b0:54:4c:
d5:52:85:15:6f:49:2f:ea:a3:a6:b3:7e:69:37:55:b5:09:b0:
0b:28:5e:8c:4b:17:d5:80:c6:11:89:a9:ab:ee:ad:7d:38:fc:
03:a0:dc:99:04:7c:60:63:e2:c9:28:a7:34:42:fe:79:17:3a:
3e:1f:91:ba:ae:b7:a4:60:74:fd:86:f2:e3:fb:4a:e7:bd:0f:
45:ea:db:cf:05:4c:12:63:88:78:c5:a1:0d:99:c5:3c:37:58:
64:d8:a3:92:ba:4e:4e:75:96:09:50:87:5d:a2:aa:53:35:50:
bb:d8:ee:79:81:d8:56:3d:bb:7b:6d:0b:0d:19:25:e4:6c:df:
b6:ea:d6:ad:15:f5:47:c5:e5:c0:6a:bf:00:9d:f0:c0:ea:49:
87:59:ef:f5:7b:1d:ae:fa:aa:4c:34:14:93:28:ff:29:8c:6e:
37:60:06:43:4a:66:bf:a7:53:3d:b0:96:99:40:6d:92:f4:3a:
ac:0f:77:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org