Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e36382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: fYxvElh2SAuVh1g0t08t5VDu4kS0VirkiY+uOuZtD2U=
Subject key identifier: A9:61:9A:3A:4F:DF:1C:74:15:0A:77:99:39:8D:D6:A7:70:DB:37:C4
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 1E8B07A88C17EC164F9387B4A90DD0EE7C709C27
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36382e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:00 +0000
ROA not before: Tue 19 Apr 2022 08:55:00 +0000
ROA not after: Tue 18 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 140.213.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:8b:07:a8:8c:17:ec:16:4f:93:87:b4:a9:0d:d0:ee:7c:70:9c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:00 2022 GMT
Not After : Apr 18 09:00:00 2023 GMT
Subject: CN=A9619A3A4FDF1C74150A7799398DD6A770DB37C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2e:07:ff:f4:49:55:b1:3d:5f:26:54:3d:ee:
17:12:0b:df:d1:c3:71:15:24:3e:5e:ea:9f:d2:65:
76:39:f2:b8:ae:db:c9:35:be:1b:12:63:7d:37:a0:
fb:98:a4:f3:f1:1f:84:a9:a4:24:57:54:59:aa:8d:
71:01:bc:48:d0:c8:33:8b:85:dd:26:5d:6f:e3:7c:
8a:71:cd:fe:6d:46:e4:c0:69:cd:6b:f2:32:38:70:
ce:7a:2b:0b:49:26:93:80:42:4e:f1:51:4b:ba:3a:
33:77:22:31:48:d0:1c:25:09:6d:63:e0:82:23:86:
ca:a7:f4:86:a2:0d:17:93:52:b6:75:85:8c:5d:f7:
29:f9:1d:b3:7f:16:e9:e5:1c:4e:2c:dc:53:c2:84:
95:89:4a:a3:08:cd:67:49:15:b9:0c:ee:87:53:ba:
31:4e:be:95:37:01:93:6b:d6:dd:c6:fb:e3:74:e8:
9c:68:44:dd:43:2d:a8:a7:a8:9c:08:50:f0:a3:3a:
01:0f:7e:d6:9c:f0:07:aa:60:07:b3:4c:d3:a9:e2:
d7:f0:9b:10:b6:c2:81:af:6e:ec:0a:5d:29:e5:cb:
8d:32:67:82:51:ec:12:e4:d1:a0:d4:61:1a:d8:67:
ce:64:0d:da:81:9e:76:7c:c8:b5:5c:04:8c:eb:fb:
26:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:61:9A:3A:4F:DF:1C:74:15:0A:77:99:39:8D:D6:A7:70:DB:37:C4
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.68.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:8d:f3:03:31:1d:55:4e:3c:26:da:db:85:e1:d4:a9:36:65:
fb:f7:8d:6e:0d:75:17:0a:79:2d:eb:2e:27:41:56:b1:2f:e6:
13:7d:96:a7:1d:96:f8:f1:dd:e1:96:cf:5f:67:73:44:7e:22:
69:db:39:01:c8:a5:b9:54:72:49:1e:20:e7:92:cb:a4:e5:ed:
0c:15:07:43:0e:06:51:e1:e8:a2:b4:05:04:58:5e:3f:53:70:
af:e6:d3:22:1f:61:71:94:70:8c:97:a6:b4:ac:2b:78:3d:9a:
a6:95:5c:f3:98:2f:9f:74:bf:5d:e6:63:f5:5f:6b:a7:d9:df:
f1:df:3e:73:e7:5c:4f:b7:80:0f:13:27:4f:5f:fb:2b:73:81:
1b:71:bc:60:22:3a:cf:4c:1b:01:72:df:e8:3d:ef:c2:ba:af:
35:dc:1e:f4:b1:10:1b:1a:9d:51:40:fd:14:04:a1:b4:f4:4f:
d8:2b:84:06:fc:a2:eb:50:45:3f:71:4b:3a:74:0a:63:c6:bb:
38:c5:2c:21:0c:c2:34:ad:e1:c8:53:5d:05:b8:99:b0:1d:a4:
e2:25:7d:11:51:ee:95:f8:5a:72:62:84:83:83:1b:3c:d7:de:
eb:e8:c2:31:31:5b:6b:73:75:8d:86:af:bb:d8:01:df:eb:e7:
94:9a:dd:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org