Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37342e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37342e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 0FegQ81wIgyndlgFCwgWyMs6IDuP/p3OkWzF7kzqlcg=
Subject key identifier: 86:30:E6:B2:27:E7:2F:F8:99:93:57:B5:BD:77:20:41:42:2F:CE:7D
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 5E1B1538C130CE2595F907EAFE195749870C13AC
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37342e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:01 +0000
ROA not before: Tue 19 Apr 2022 09:55:01 +0000
ROA not after: Tue 18 Apr 2023 10:00:01 +0000
asID: 24203
IP address blocks: 140.213.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:1b:15:38:c1:30:ce:25:95:f9:07:ea:fe:19:57:49:87:0c:13:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:01 2022 GMT
Not After : Apr 18 10:00:01 2023 GMT
Subject: CN=8630E6B227E72FF8999357B5BD772041422FCE7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4e:00:b0:2e:87:94:c4:ee:c3:b9:d9:66:bc:
c2:5a:8b:07:fb:9e:5d:2f:c1:bf:f6:fb:cf:b7:8b:
89:aa:a5:57:57:55:4a:90:6a:24:12:6e:ec:47:db:
d0:35:d1:81:c9:c9:4a:97:64:24:b9:cc:00:e2:bf:
41:08:5a:e8:80:ad:89:e0:23:cb:9e:f2:b6:3b:7e:
13:20:04:5a:20:38:e6:6b:5c:3c:e5:23:2e:3a:94:
67:9e:ce:c3:a0:ff:00:5f:a1:d3:e6:09:fc:84:5a:
2c:89:71:61:a7:6f:5d:71:c9:71:ed:1b:95:3b:f9:
6c:5c:60:0f:4a:67:2b:86:57:93:50:74:dd:38:9f:
f2:81:c1:f9:f0:57:4a:0e:2e:ab:c8:47:f9:9f:52:
2d:09:cc:0d:ec:6c:2d:ee:38:46:d5:15:f1:d8:0b:
da:c6:2f:d7:7f:9a:3e:10:2a:de:3f:b1:44:b9:83:
4f:fd:e2:00:94:b6:35:94:b8:24:6a:79:4b:61:b9:
51:d7:b2:2a:de:34:89:72:f2:95:f5:b1:16:5b:5c:
b5:3c:e2:f5:9e:e1:9b:52:bf:71:7a:b9:6c:ab:a5:
0e:22:80:d3:8f:91:94:0a:55:70:83:0a:bf:6b:66:
eb:27:95:2d:32:42:be:56:22:af:22:38:e7:0b:d3:
b0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:30:E6:B2:27:E7:2F:F8:99:93:57:B5:BD:77:20:41:42:2F:CE:7D
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37342e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.74.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:97:09:1b:66:d3:19:47:9f:7d:e4:ad:4c:d2:0f:69:c9:83:
a6:bc:d5:b1:81:fc:61:77:aa:ff:9d:c1:bd:d5:58:73:52:8a:
49:ad:c3:d0:b0:17:43:85:20:96:33:59:7d:7f:46:c4:af:82:
a3:20:99:c1:ea:0f:0d:52:66:85:70:ca:06:bf:67:66:48:93:
d8:8b:06:8e:b3:df:59:be:aa:b6:74:9c:d7:1f:c7:5f:90:1d:
25:03:92:6d:83:71:44:35:36:f9:d8:3e:00:a5:26:9a:71:54:
43:a4:cd:32:56:50:9f:72:67:09:6e:94:85:62:ed:31:02:d4:
d7:ba:78:0a:50:7f:8a:ba:2e:9e:f8:07:ac:7e:be:e2:44:d7:
d2:9e:a6:40:ca:58:8a:31:86:88:40:32:d2:a2:f3:53:8e:4a:
49:4a:62:41:a2:bd:e3:cd:33:7b:d7:a3:80:3f:cd:c6:84:de:
01:9c:e7:07:4b:42:ff:42:74:fc:f8:d7:7e:f6:51:97:6a:de:
5a:95:03:48:8d:6d:6f:07:99:69:6d:c6:79:40:7c:bb:0b:e0:
94:63:fa:45:91:57:7b:a5:6e:4f:c1:27:c4:8d:76:88:8f:77:
1e:da:05:2c:98:13:0c:92:cc:65:c8:f0:51:9a:ca:05:b2:86:
55:87:0a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org