Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e372e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e372e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 67qSNOVg9edz49Zb1PaZN770Q6XRTcAoyAZfrR9jZSE=
Subject key identifier: CF:53:10:3D:18:38:C4:19:A6:5D:2B:56:2F:3F:93:A3:61:B8:71:90
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5D3663260267E960EE9B43C0A9FD98325AA145C0
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e372e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:02 +0000
ROA not before: Wed 13 Apr 2022 07:55:02 +0000
ROA not after: Wed 12 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 140.213.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:36:63:26:02:67:e9:60:ee:9b:43:c0:a9:fd:98:32:5a:a1:45:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:02 2022 GMT
Not After : Apr 12 08:00:02 2023 GMT
Subject: CN=CF53103D1838C419A65D2B562F3F93A361B87190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:16:e3:70:b7:6b:d3:64:d7:a2:ba:9e:94:fa:
06:91:fa:55:55:7a:5b:b3:17:f8:1f:fd:fb:5b:39:
3a:85:e5:f2:fc:a4:cb:c5:35:9b:8d:5b:5c:8f:cb:
94:e1:23:27:83:26:16:9a:27:97:b9:5b:be:ac:a9:
cf:97:14:ab:98:99:fb:6c:3a:c3:f6:3e:09:a4:4e:
eb:97:8e:e3:22:85:d0:82:50:d4:9b:3a:6a:5e:ec:
c6:ff:70:c9:fd:87:f9:de:2c:83:cc:c1:a5:a6:27:
f4:9a:7a:d1:1d:68:a4:8a:98:85:b5:7b:4c:d1:e8:
21:84:57:c8:dd:a8:84:dd:66:89:65:ac:99:9c:70:
2f:9d:85:e6:48:9f:f5:74:4f:9d:a1:7c:29:7f:3d:
56:14:ce:b1:06:ed:c0:2b:16:02:b9:42:ed:94:c7:
8c:a7:b2:45:b4:c2:c4:b3:34:0e:bb:06:74:96:26:
cb:b6:e0:4b:25:76:1d:1c:8d:8f:7b:e8:9a:65:d0:
e9:9c:2e:5c:b3:64:78:36:00:ac:d2:57:2a:fe:78:
ea:f6:7d:ed:cb:b5:25:d1:2a:cd:4a:c0:86:81:65:
64:eb:16:5a:54:d7:76:6d:1a:db:d9:5a:df:78:84:
44:20:b5:6b:33:43:cb:9a:6c:c9:c7:01:4f:38:f1:
23:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:53:10:3D:18:38:C4:19:A6:5D:2B:56:2F:3F:93:A3:61:B8:71:90
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e372e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.7.0/24
Signature Algorithm: sha256WithRSAEncryption
67:13:e8:55:e9:a5:16:0c:a4:a0:e5:bd:cf:6d:d0:5a:f3:5e:
2e:da:93:9b:e2:be:68:ed:83:d8:1d:07:d0:64:4b:92:d4:96:
68:51:94:a0:99:ee:bc:07:d4:35:dd:51:59:01:af:3c:c5:a6:
ab:af:95:62:86:7c:74:2c:86:ac:67:3f:7e:81:fe:2f:d8:c6:
cd:2c:6f:9b:af:82:be:ed:4b:3f:55:8a:a3:22:6f:a7:2c:23:
3c:1b:cc:14:a9:3e:70:ba:00:e7:15:ff:5d:f6:12:fe:25:f3:
5c:57:01:3a:76:28:b0:95:c6:45:13:52:41:d1:be:5c:85:6a:
5b:78:b3:9b:d4:02:47:cd:7b:ec:20:72:36:f7:97:06:7f:3f:
52:7c:2a:e0:67:f6:3a:2c:f4:ed:f8:12:8b:92:8b:6b:0a:0d:
21:32:e0:4d:21:8c:f6:e6:43:08:c2:95:c8:4e:6a:05:b6:6e:
64:92:42:81:c7:71:7a:ad:c2:32:e9:5c:36:dc:7f:3e:21:c0:
06:77:cd:b0:2a:de:6b:35:4c:5c:80:a1:70:ee:34:e3:69:21:
b5:30:af:a7:10:c3:9b:62:23:27:c3:53:ae:1a:80:d5:27:f8:
a1:7d:a2:c4:4e:42:51:ed:4a:f9:e2:80:64:fe:ba:80:92:f2:
ff:41:85:95
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUXTZjJgJn6WDum0PAqf2YMlqhRcAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTMwNzU1MDJaFw0yMzA0MTIwODAwMDJaMDMxMTAvBgNV
BAMTKENGNTMxMDNEMTgzOEM0MTlBNjVEMkI1NjJGM0Y5M0EzNjFCODcxOTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFFuNwt2vTZNeiup6U+gaR+lVV
eluzF/gf/ftbOTqF5fL8pMvFNZuNW1yPy5ThIyeDJhaaJ5e5W76sqc+XFKuYmfts
OsP2PgmkTuuXjuMihdCCUNSbOmpe7Mb/cMn9h/neLIPMwaWmJ/SaetEdaKSKmIW1
e0zR6CGEV8jdqITdZollrJmccC+dheZIn/V0T52hfCl/PVYUzrEG7cArFgK5Qu2U
x4ynskW0wsSzNA67BnSWJsu24Esldh0cjY976Jpl0OmcLlyzZHg2AKzSVyr+eOr2
fe3LtSXRKs1KwIaBZWTrFlpU13ZtGtvZWt94hEQgtWszQ8uabMnHAU848SOnAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUz1MQPRg4xBmmXStWLz+To2G4cZAwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzNzJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACM1QcwDQYJKoZIhvcN
AQELBQADggEBAGcT6FXppRYMpKDlvc9t0FrzXi7ak5vivmjtg9gdB9BkS5LUlmhR
lKCZ7rwH1DXdUVkBrzzFpquvlWKGfHQshqxnP36B/i/Yxs0sb5uvgr7tSz9ViqMi
b6csIzwbzBSpPnC6AOcV/132Ev4l81xXATp2KLCVxkUTUkHRvlyFalt4s5vUAkfN
e+wgcjb3lwZ/P1J8KuBn9jos9O34EouSi2sKDSEy4E0hjPbmQwjClchOagW2bmSS
QoHHcXqtwjLpXDbcfz4hwAZ3zbAq3ms1TFyAoXDuNONpIbUwr6cQw5tiIyfDU64a
gNUn+KF9osROQlHtSvnigGT+uoCS8v9BhZU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org