Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37312e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37312e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: UKLhnQ9Nv9X2nRcX/Uf4KLL8KNrRsNGbWZ1G6SzaD3U=
Subject key identifier: A5:B0:3C:BB:41:14:71:36:14:CB:FC:05:65:B9:24:A4:F6:46:76:66
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 3B9D6E8B190B33564C30482F5A6E1F5AB798D5A0
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37312e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 09:00:00 +0000
ROA not before: Tue 19 Apr 2022 08:55:00 +0000
ROA not after: Tue 18 Apr 2023 09:00:00 +0000
asID: 24203
IP address blocks: 140.213.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:9d:6e:8b:19:0b:33:56:4c:30:48:2f:5a:6e:1f:5a:b7:98:d5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 08:55:00 2022 GMT
Not After : Apr 18 09:00:00 2023 GMT
Subject: CN=A5B03CBB4114713614CBFC0565B924A4F6467666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:61:74:2e:32:91:c7:d0:02:0c:af:55:41:56:
7b:6c:48:4a:c0:09:1a:02:a3:da:d3:65:92:c2:c8:
e5:28:59:e1:21:f2:8e:03:1e:8e:30:8a:81:45:43:
07:90:88:6f:ed:c8:0b:d4:88:29:c4:74:c6:83:25:
d1:07:8f:ad:62:89:dc:0b:e6:4d:c3:5a:1d:33:93:
d8:84:68:8c:76:85:07:66:3b:ff:93:8b:98:7f:69:
cf:ce:63:e3:17:25:c8:e8:e0:20:a9:02:3f:a4:c8:
e5:ab:15:d2:d2:9e:b8:8d:b7:ae:66:5f:44:32:8f:
fe:3a:fd:07:cf:33:85:1e:0a:67:8a:d4:95:88:d4:
40:e6:14:44:ab:aa:2a:53:5e:91:5b:c8:2f:d7:6b:
2f:26:7d:4c:0f:19:65:f1:b3:90:cf:b7:ff:3d:87:
e3:a6:c2:54:28:08:0b:65:91:f1:71:fb:9a:cb:b2:
a8:68:5f:01:c0:ae:8a:33:a2:9a:bc:bc:61:a4:db:
51:21:a0:3d:96:b9:a7:d4:6d:48:20:b2:e3:9b:67:
2f:cf:f3:3a:12:09:6f:01:fb:4c:00:a9:0d:1c:61:
7b:86:e5:32:09:4c:86:bd:64:c4:56:c5:7d:e5:87:
41:51:58:4f:94:51:7a:30:7c:d6:77:94:4c:4d:70:
cc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B0:3C:BB:41:14:71:36:14:CB:FC:05:65:B9:24:A4:F6:46:76:66
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37312e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.71.0/24
Signature Algorithm: sha256WithRSAEncryption
01:82:1e:95:3b:c5:16:2e:f0:92:39:13:6f:36:c5:53:7e:08:
18:02:f6:79:1b:dd:fb:30:36:ce:78:51:ab:77:61:38:8d:cc:
e6:de:a5:e6:97:0e:be:30:3b:64:ef:b7:f7:26:79:e8:2b:2e:
73:b0:62:e7:a4:ac:0b:57:99:ee:96:a7:64:f1:c5:af:67:45:
43:42:ba:dc:57:c1:5b:7f:49:68:24:88:7d:c2:a3:84:89:4c:
24:3f:77:9e:e5:5f:91:fa:b6:73:ef:81:b0:b5:3a:3d:0e:cc:
df:d3:60:b4:32:10:cc:c5:22:aa:84:16:e0:62:99:75:c8:0f:
11:54:5d:e3:ac:a6:cc:85:59:06:7c:92:eb:fa:b7:d4:0e:94:
a5:e9:60:05:fa:ba:2f:0a:07:b6:98:06:19:52:38:4c:cc:80:
e1:1d:cf:8a:2e:f4:ed:fb:57:6b:52:44:d4:b9:b4:87:14:bf:
72:22:d6:56:db:9d:32:1c:a8:20:fa:6e:3f:22:8e:02:2a:1a:
a9:e0:98:a7:76:b2:87:5c:4a:ef:31:d1:27:5c:16:d8:4b:16:
8c:29:ec:4b:ca:36:e1:6e:81:bb:c5:1a:6c:90:33:af:89:4e:
c4:18:22:f3:ec:40:3c:16:55:f7:7c:a9:d8:92:bb:19:d5:7a:
a1:41:99:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org