Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Po6xxSVsKvj0Wb8+d7Y3zqe+2+1kEQsa3yU87R5F4cg=
Subject key identifier: E4:10:98:A8:D9:10:F8:82:71:91:7E:92:13:B9:C6:93:EC:4F:DB:13
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 57B6BC76974E33C42B77474AEBA30F9E41C7C358
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37322e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:01 +0000
ROA not before: Tue 19 Apr 2022 09:55:01 +0000
ROA not after: Tue 18 Apr 2023 10:00:01 +0000
asID: 24203
IP address blocks: 140.213.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:b6:bc:76:97:4e:33:c4:2b:77:47:4a:eb:a3:0f:9e:41:c7:c3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:01 2022 GMT
Not After : Apr 18 10:00:01 2023 GMT
Subject: CN=E41098A8D910F88271917E9213B9C693EC4FDB13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c4:d9:e9:45:22:14:11:bb:c3:f4:7a:ca:92:
00:91:18:a7:52:fc:ff:22:5e:79:8a:ae:d2:42:75:
9a:ed:a8:d0:eb:9b:9f:59:7e:1c:f3:93:a3:7b:4d:
b2:f2:48:35:79:d2:fa:d9:cd:bb:d6:da:8c:a3:c5:
54:08:40:de:b3:06:31:a9:58:4d:71:20:95:68:10:
f0:d2:66:46:e7:3a:12:23:c1:08:b0:0a:56:a1:86:
c8:9e:36:28:97:df:d5:da:a9:40:d3:93:60:8a:91:
28:57:52:73:9f:7a:6f:da:89:38:bb:d3:c9:8b:af:
a2:0d:84:ba:62:e4:b0:d4:51:2f:96:47:14:77:6b:
01:9d:24:e8:14:3c:b4:96:0d:fe:02:b7:69:cd:3b:
eb:59:fb:25:fc:35:db:00:a7:ff:21:8a:69:b3:b4:
e1:62:36:1f:28:c1:05:23:48:f3:07:81:fe:7f:ea:
d1:ae:51:d4:b1:98:60:a9:ee:c1:f3:2f:a0:9e:7d:
52:bc:51:2e:81:fe:01:fa:a6:82:3f:a3:96:42:4a:
ee:85:86:3e:c3:8b:8a:9b:af:e7:5c:e0:9f:4a:91:
ad:c3:74:5e:6e:3d:c5:87:01:4a:05:e2:73:18:b1:
18:34:ac:86:1d:96:69:b4:e4:8d:3c:34:7a:28:71:
ef:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:10:98:A8:D9:10:F8:82:71:91:7E:92:13:B9:C6:93:EC:4F:DB:13
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.72.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:cf:aa:10:e2:45:74:f3:bc:3d:a7:e7:47:c2:1c:60:56:1f:
60:59:45:a9:b3:94:ac:7e:4a:75:a3:cb:c6:4b:d0:5e:1a:09:
49:e2:1f:af:be:75:ea:51:55:c9:7e:2f:64:35:60:46:65:14:
82:a4:5c:75:fa:e6:c8:13:20:54:98:45:d5:8b:9c:2d:12:b9:
2b:e2:e5:4c:58:ec:22:70:e7:63:3f:c7:b8:8a:0e:1d:b7:36:
98:f5:cc:01:a0:b8:c5:3d:8d:32:cc:64:cd:79:f5:26:cc:8b:
3a:c5:a6:3e:77:cc:b2:8d:f6:27:9f:30:8b:6e:90:33:15:ca:
46:64:ed:2d:f9:f1:bc:26:01:76:ac:0c:5a:a3:b2:aa:24:57:
a5:90:0f:90:18:f6:f1:bc:3c:0c:20:31:bb:45:31:d4:b3:cd:
0f:00:57:cc:bd:5a:a9:0c:26:df:dd:44:b0:20:9f:9f:b4:24:
57:fa:e6:86:d1:d1:65:27:97:a4:33:a7:1a:44:91:ae:cd:bd:
26:9c:ae:9c:e3:87:a4:50:34:4e:4d:96:5b:be:1c:5c:11:6f:
1f:ea:ef:94:9c:15:4c:fb:95:59:b8:14:b2:17:5a:87:30:9b:
ca:84:6e:65:67:3b:56:44:1c:1f:05:a7:1f:81:0d:49:06:69:
58:7f:71:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org