Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 2p33Bgjuw1rfeYh0PXcMPUXJWp5OZUERmTBPhwFz7ao=
Subject key identifier: ED:09:8E:79:24:B6:F7:B8:D5:83:64:EC:03:AB:CF:98:B6:5C:ED:E5
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 0D372C906924F7755D961AE1DE369ED7FB6A3A6E
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:01 +0000
ROA not before: Tue 19 Apr 2022 09:55:01 +0000
ROA not after: Tue 18 Apr 2023 10:00:01 +0000
asID: 24203
IP address blocks: 140.213.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:37:2c:90:69:24:f7:75:5d:96:1a:e1:de:36:9e:d7:fb:6a:3a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:01 2022 GMT
Not After : Apr 18 10:00:01 2023 GMT
Subject: CN=ED098E7924B6F7B8D58364EC03ABCF98B65CEDE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6d:38:1e:31:9f:7c:14:4c:bf:3e:89:69:16:
73:0d:bc:45:61:ed:a9:e2:cf:88:bd:99:ed:7a:e9:
16:c5:d5:8e:fd:63:9e:36:15:27:24:6f:bf:3e:7d:
f7:9e:cc:da:ba:2b:a4:d4:19:1d:99:37:fb:8c:8a:
88:ac:22:98:18:83:db:6e:b0:9c:21:b5:c5:2f:75:
b3:62:4d:5b:5d:5c:3b:ba:e4:08:97:cd:e8:a2:23:
6e:75:07:85:37:12:90:87:62:52:e6:98:c0:24:92:
f4:07:e2:6c:06:dd:06:b4:d4:16:ad:12:65:c1:c7:
12:97:8c:aa:dd:4b:0b:36:a0:43:d0:3e:88:dd:4e:
bf:12:91:fd:00:29:36:46:ed:00:e2:ed:58:18:43:
21:20:b5:43:31:91:72:df:e5:d3:7b:5b:96:ef:35:
00:03:03:11:8f:8f:d4:b3:ca:1d:04:49:d2:0d:77:
be:d7:ed:59:d1:ed:4c:70:d7:13:bc:9c:33:ef:be:
0f:55:2b:d4:bd:c5:c9:bd:48:e7:8a:57:83:9a:3d:
21:bf:d5:a0:66:cc:90:99:af:06:f3:34:d9:8d:e0:
50:0f:a4:8f:09:41:54:8b:fa:30:b3:ef:1b:20:1a:
f6:29:63:09:93:be:b0:98:4f:12:17:a6:23:6f:ed:
3d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:09:8E:79:24:B6:F7:B8:D5:83:64:EC:03:AB:CF:98:B6:5C:ED:E5
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.73.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:17:4c:c1:44:a7:b5:f1:f9:b1:da:46:2e:23:ff:85:cf:d2:
15:d4:d3:4e:f8:c5:4b:e4:7d:87:c0:55:46:6b:b4:70:7a:a7:
28:e4:e9:48:04:e4:5a:9b:b5:a3:66:5c:81:fc:eb:f3:b6:6d:
62:85:7b:2d:92:84:cb:27:b2:eb:de:04:75:56:13:b1:de:da:
7b:22:c6:c2:d8:d7:54:c9:5e:a6:47:95:78:03:57:70:16:cc:
44:07:e4:77:71:66:af:76:19:17:81:e7:93:27:10:69:75:bf:
17:5d:db:80:ba:03:e3:61:60:74:f7:82:5e:62:25:7a:1f:d2:
76:58:a1:02:8c:af:c7:ee:ec:fc:0f:a2:06:1e:9a:7f:ce:51:
f0:a2:89:56:03:c7:70:3e:f0:d6:18:d8:b5:50:f5:91:95:5f:
36:db:1c:b8:e5:f7:fa:72:19:df:5e:c1:c8:ad:3c:5e:8c:88:
ef:18:02:b3:7d:41:b0:f0:71:1e:4c:67:29:1b:4f:95:f7:30:
64:84:71:b5:d6:64:92:89:f9:1c:6e:22:17:1f:59:65:78:e2:
3c:ad:6d:64:bf:7b:a9:5f:b8:3f:54:0b:43:9c:73:cf:50:64:
88:44:b7:05:10:b7:d1:7e:91:bd:c4:ef:b4:5c:c4:e8:25:8b:
28:d8:92:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org