Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e36392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: yjsDM0s/1Ml36afjAAbDfqVWqmHBkB66beRArKdlJXk=
Subject key identifier: 72:A4:AE:7D:27:5C:8E:0D:6B:B8:BC:16:C7:2F:C7:D0:74:AD:0C:AB
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5D22610DC3F5D652395BB329434E976EC0D1D5F7
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36392e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:00 +0000
ROA not before: Tue 19 Apr 2022 08:55:00 +0000
ROA not after: Tue 18 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 140.213.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:22:61:0d:c3:f5:d6:52:39:5b:b3:29:43:4e:97:6e:c0:d1:d5:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:00 2022 GMT
Not After : Apr 18 09:00:00 2023 GMT
Subject: CN=72A4AE7D275C8E0D6BB8BC16C72FC7D074AD0CAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5f:0e:96:7e:73:c0:a5:eb:83:d6:bc:e2:cc:
84:83:d8:58:7a:b0:93:2e:12:ef:8c:68:ea:fb:2d:
ac:a2:19:b0:d0:f6:b6:c8:5d:5e:20:1d:66:ea:6d:
ee:a3:85:04:cd:1c:15:e8:b4:7d:fe:4d:87:95:c3:
2e:e5:00:0d:44:43:e7:2e:9a:62:15:6f:c1:1e:38:
72:91:e2:2f:ce:55:23:cd:62:01:d7:9c:98:60:2f:
c1:3f:db:d0:f8:06:64:19:56:c8:21:8a:94:89:e8:
52:85:13:5a:ac:2a:71:f5:23:50:19:29:23:e2:4b:
f1:b0:4b:fd:f9:b1:95:63:43:e9:0e:81:c8:ce:af:
70:8d:78:15:42:a8:90:53:f1:eb:75:68:87:32:0a:
f1:51:34:43:08:22:72:69:87:2d:9a:91:2b:08:4c:
3f:7f:f3:b2:7d:8a:e6:2e:d9:6f:12:11:06:ba:bb:
40:1d:d2:49:d7:7b:ff:2b:35:38:71:42:ea:0b:ff:
55:1f:8b:97:1f:0f:a0:69:64:44:0d:3c:72:8b:fc:
9e:87:1e:73:b9:e2:65:bd:62:4c:f5:54:ea:08:b1:
cb:ef:e0:c9:1f:f5:14:cf:48:83:9a:85:f1:de:1d:
5b:3e:b3:52:ab:f4:18:91:2f:82:e6:55:bb:48:66:
0a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A4:AE:7D:27:5C:8E:0D:6B:B8:BC:16:C7:2F:C7:D0:74:AD:0C:AB
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e36392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.69.0/24
Signature Algorithm: sha256WithRSAEncryption
72:5c:8c:76:66:2b:d5:41:1d:d1:65:ec:3d:da:bf:a0:57:d7:
1b:83:55:f1:d0:17:cd:66:a5:f5:bf:68:22:0b:9d:af:e5:e2:
ad:29:02:26:81:93:6c:1b:ef:c4:db:50:c5:ca:41:a6:ea:5a:
18:8c:78:41:bb:8b:00:6f:c7:0a:9b:9f:9e:7b:0a:1b:b8:43:
39:17:3d:9a:4a:c2:18:0c:66:84:98:aa:93:60:5a:36:d8:95:
05:a6:00:5f:8d:ed:53:b0:3a:a6:2d:3f:e1:7a:4f:ce:2b:7f:
73:e8:63:12:f6:32:d5:d9:3d:d5:b4:8f:5c:f2:0c:17:fb:84:
02:00:56:e2:0b:83:f1:81:79:6c:f3:e0:3a:ef:38:3b:c4:d3:
31:e6:4f:bc:76:ba:a8:88:69:a0:55:ae:8e:23:f0:13:62:e0:
ec:46:b6:b1:c1:2c:75:2a:3f:25:db:7c:5f:89:fc:d7:ee:ff:
16:94:7f:22:8f:d1:60:79:16:e8:4e:cd:8d:d0:42:e7:ca:4e:
13:77:40:3b:e3:b9:f7:00:31:5c:59:02:07:80:c6:1a:d0:da:
11:03:db:04:d8:87:90:8b:20:47:c7:d2:ab:bd:f9:8d:4b:03:
18:0d:87:38:f8:94:21:1c:c1:c2:23:77:cd:d9:57:25:f8:69:
8c:a3:13:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org