Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37302e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37302e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: C4rOT1ZsIdljWUWGNj9i07dmdGN8M/PMCenIIlfttU0=
Subject key identifier: 71:A7:6B:1A:39:61:B6:D2:AB:37:FC:24:DA:FB:3D:08:00:27:49:68
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 14C9D72E2F98DBCC9C2E339D21912D3374ADC8CD
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37302e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:01 +0000
ROA not before: Tue 19 Apr 2022 08:55:01 +0000
ROA not after: Tue 18 Apr 2023 09:00:01 +0000
asID: 24203
IP address blocks: 140.213.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:c9:d7:2e:2f:98:db:cc:9c:2e:33:9d:21:91:2d:33:74:ad:c8:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:01 2022 GMT
Not After : Apr 18 09:00:01 2023 GMT
Subject: CN=71A76B1A3961B6D2AB37FC24DAFB3D0800274968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6d:f4:15:a7:e4:9c:07:66:a7:ea:b6:4c:74:
7c:44:47:be:e8:35:e2:0b:de:22:9f:e9:eb:1e:b2:
32:e0:ac:79:8d:43:32:8f:8c:69:d6:21:00:38:a8:
d9:4d:56:2a:05:a4:bd:7d:00:a0:e8:62:78:83:1f:
ff:7f:99:05:0f:4a:9a:79:57:6e:94:81:ff:3b:8d:
0d:5e:a3:3d:e7:67:3a:8c:33:41:fd:e2:d2:89:1a:
4e:aa:1b:23:b8:4a:fc:c0:78:d8:4b:e2:6a:b3:29:
c1:2a:28:ed:44:fd:61:5c:4c:80:1e:46:f8:31:1b:
97:98:37:8a:b5:8d:7e:c4:59:2f:62:e2:7a:00:15:
12:b6:d5:17:69:c0:0f:5b:4b:64:6e:3d:44:6e:40:
9d:97:07:1e:7e:e8:3c:ab:e6:85:ca:d1:ae:ee:0c:
6d:17:b2:25:e7:e3:a0:cb:2b:76:12:b1:d9:27:12:
54:e4:e3:e2:fb:f4:11:e5:f6:2e:a6:c4:b9:fd:de:
98:e4:98:e5:df:fa:fa:a7:a2:96:2e:fb:26:54:0a:
4e:6f:e9:53:42:eb:61:49:3a:ee:27:40:09:67:36:
99:f4:6d:91:3a:d0:1a:0c:28:d2:b6:ff:0b:87:a0:
94:03:ab:9e:42:dd:00:ca:4a:19:07:62:08:23:4d:
12:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A7:6B:1A:39:61:B6:D2:AB:37:FC:24:DA:FB:3D:08:00:27:49:68
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37302e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.70.0/24
Signature Algorithm: sha256WithRSAEncryption
03:73:92:a2:c1:49:b9:8c:a8:2f:c9:3b:0c:df:e5:e2:dd:08:
48:9f:79:4f:74:9b:a5:2d:c8:52:3a:0d:ee:f2:25:a2:2c:12:
0d:fe:6b:bd:54:38:e4:c4:1f:ab:79:5c:1b:71:8a:4e:0e:86:
2d:98:c7:ab:de:e2:7f:07:a2:07:11:8c:87:fd:9b:db:b9:27:
bf:f9:d3:d4:c7:62:9f:3d:09:a8:7f:2e:48:1a:15:58:dd:57:
f1:09:0b:e8:cd:27:5b:0b:bb:3a:2f:e6:f7:d5:07:fc:84:ff:
09:fa:a1:ee:a8:08:c5:fb:03:03:08:85:ce:46:57:29:93:47:
04:b5:fb:f9:85:37:55:dc:a2:9c:b5:86:d3:7a:f0:7a:59:91:
89:a5:52:9d:67:af:05:a4:c0:2a:e8:40:8f:fb:0c:f9:8e:af:
08:57:9e:cc:ed:7f:46:d2:f3:34:69:4f:eb:3d:c6:ca:b9:c3:
3a:7a:7a:10:5a:c4:44:c7:02:a1:90:02:42:dc:9e:84:b3:31:
a1:68:6e:04:46:da:71:51:60:03:fb:ed:e1:c2:52:bf:e2:b8:
67:17:7d:3f:86:d2:d6:b0:af:38:9f:18:16:34:ee:bb:4c:71:
5e:1e:ba:f6:6a:26:dc:6f:68:3d:60:cd:bc:46:20:66:39:94:
b1:30:46:ee
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUFMnXLi+Y28ycLjOdIZEtM3StyM0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwODU1MDFaFw0yMzA0MTgwOTAwMDFaMDMxMTAvBgNV
BAMTKDcxQTc2QjFBMzk2MUI2RDJBQjM3RkMyNERBRkIzRDA4MDAyNzQ5NjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCubfQVp+ScB2an6rZMdHxER77o
NeIL3iKf6esesjLgrHmNQzKPjGnWIQA4qNlNVioFpL19AKDoYniDH/9/mQUPSpp5
V26Ugf87jQ1eoz3nZzqMM0H94tKJGk6qGyO4SvzAeNhL4mqzKcEqKO1E/WFcTIAe
RvgxG5eYN4q1jX7EWS9i4noAFRK21RdpwA9bS2RuPURuQJ2XBx5+6Dyr5oXK0a7u
DG0XsiXn46DLK3YSsdknElTk4+L79BHl9i6mxLn93pjkmOXf+vqnopYu+yZUCk5v
6VNC62FJOu4nQAlnNpn0bZE60BoMKNK2/wuHoJQDq55C3QDKShkHYggjTRJNAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUcadrGjlhttKrN/wk2vs9CAAnSWgwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzNzMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVRjANBgkqhkiG
9w0BAQsFAAOCAQEAA3OSosFJuYyoL8k7DN/l4t0ISJ95T3SbpS3IUjoN7vIloiwS
Df5rvVQ45MQfq3lcG3GKTg6GLZjHq97ifweiBxGMh/2b27knv/nT1Mdinz0JqH8u
SBoVWN1X8QkL6M0nWwu7Oi/m99UH/IT/Cfqh7qgIxfsDAwiFzkZXKZNHBLX7+YU3
VdyinLWG03rwelmRiaVSnWevBaTAKuhAj/sM+Y6vCFeezO1/RtLzNGlP6z3GyrnD
Onp6EFrERMcCoZACQtyehLMxoWhuBEbacVFgA/vt4cJSv+K4Zxd9P4bS1rCvOJ8Y
FjTuu0xxXh669mom3G9oPWDNvEYgZjmUsTBG7g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org