Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37352e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37352e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: /lTAMwX5MxGs/jGvtoW+Wjhr9AGWF336tYv3HWZXR1g=
Subject key identifier: 5E:79:23:A3:3B:72:66:80:94:AD:D0:BA:E6:13:DA:0A:E1:AD:D2:55
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 7205086D4FA8FB199FD6DE3C4B65A9E247B62A51
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37352e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:01 +0000
ROA not before: Tue 19 Apr 2022 09:55:01 +0000
ROA not after: Tue 18 Apr 2023 10:00:01 +0000
asID: 24203
IP address blocks: 140.213.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:05:08:6d:4f:a8:fb:19:9f:d6:de:3c:4b:65:a9:e2:47:b6:2a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:01 2022 GMT
Not After : Apr 18 10:00:01 2023 GMT
Subject: CN=5E7923A33B72668094ADD0BAE613DA0AE1ADD255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:bd:5a:cc:66:77:c9:ce:b8:dd:f2:cd:e9:
ac:c1:63:d0:09:1b:67:42:ee:30:4c:58:b7:b2:e0:
86:69:2e:d9:e6:71:88:2c:b7:7a:5e:21:48:e6:ce:
78:ff:e1:8f:4c:86:91:4c:f3:c9:f7:c9:c8:51:dc:
f5:35:5c:10:05:07:f1:9a:21:e8:72:b7:1c:49:3f:
7f:4f:ce:59:66:71:78:2a:32:af:b6:84:53:e9:37:
fe:d3:00:1b:80:87:52:8a:33:d4:ac:50:e7:c2:49:
62:21:5c:0a:cd:05:f9:6c:84:2c:bd:4b:cb:ea:d0:
2f:76:3f:af:65:c7:bd:7c:f2:f4:7e:53:3f:56:e8:
56:b9:bc:51:9a:cd:1f:55:ba:8c:a4:9a:ba:28:ed:
91:e7:23:31:23:99:22:b0:c8:01:c9:41:eb:9c:83:
0b:6e:50:d9:b4:70:48:89:5c:f9:b8:c1:81:66:18:
d5:e0:8f:b1:f8:14:d8:38:3e:9d:5d:42:a6:d5:9c:
f5:4c:3c:51:b4:45:50:0d:46:a0:77:db:19:ef:d0:
37:fb:06:c8:ef:36:bd:aa:77:ff:aa:56:49:e0:be:
00:57:cd:0d:50:0c:23:bc:e9:f2:a4:4a:02:50:ca:
c5:cc:47:c3:78:d6:fc:df:85:ac:8b:7a:5c:14:2c:
3f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:79:23:A3:3B:72:66:80:94:AD:D0:BA:E6:13:DA:0A:E1:AD:D2:55
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37352e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.75.0/24
Signature Algorithm: sha256WithRSAEncryption
91:54:09:29:71:12:bf:0b:10:50:82:99:a8:b1:ce:51:c4:e6:
2e:c5:a8:98:c5:c8:4b:92:36:b3:dc:89:d5:4d:a4:2d:aa:34:
da:71:7c:3d:52:4a:0c:f3:1e:89:4d:ab:98:a6:80:30:e3:60:
4b:12:34:d3:04:26:06:fa:9e:c3:cc:29:02:f4:79:91:92:61:
a6:61:46:f8:fb:52:53:b0:be:a9:b7:5c:b4:8d:3d:e0:40:a0:
65:cc:50:72:92:cf:f8:43:7a:e4:7d:82:a2:5d:c0:76:09:04:
cb:59:1c:27:09:85:95:96:05:98:32:17:fa:af:7d:3b:ea:f8:
99:40:a9:30:b4:12:44:b0:af:cd:24:13:b6:e9:b6:82:08:b1:
9a:8c:03:0a:c0:18:f7:90:39:0e:38:c1:b2:14:fb:90:5a:1b:
fe:87:98:21:77:bb:a2:d5:c1:4f:a2:83:ab:7d:eb:cf:b1:b2:
ee:27:79:a8:d7:d5:fb:59:92:70:cf:8c:69:32:08:6d:73:87:
b2:85:11:72:27:73:59:d9:db:88:15:d1:5b:dd:14:a3:99:6c:
cf:89:9c:9e:58:e3:bd:fa:ff:48:1f:7b:e9:f0:99:47:a9:88:
2a:27:4d:e8:93:40:b4:06:6e:7c:71:94:0e:6e:7d:1a:fd:be:
65:d6:f2:84
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUcgUIbU+o+xmf1t48S2Wp4ke2KlEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwOTU1MDFaFw0yMzA0MTgxMDAwMDFaMDMxMTAvBgNV
BAMTKDVFNzkyM0EzM0I3MjY2ODA5NEFERDBCQUU2MTNEQTBBRTFBREQyNTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwwL1azGZ3yc643fLN6azBY9AJ
G2dC7jBMWLey4IZpLtnmcYgst3peIUjmznj/4Y9MhpFM88n3ychR3PU1XBAFB/Ga
IehytxxJP39PzllmcXgqMq+2hFPpN/7TABuAh1KKM9SsUOfCSWIhXArNBflshCy9
S8vq0C92P69lx7188vR+Uz9W6Fa5vFGazR9Vuoykmroo7ZHnIzEjmSKwyAHJQeuc
gwtuUNm0cEiJXPm4wYFmGNXgj7H4FNg4Pp1dQqbVnPVMPFG0RVANRqB32xnv0Df7
BsjvNr2qd/+qVkngvgBXzQ1QDCO86fKkSgJQysXMR8N41vzfhayLelwULD8TAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUXnkjoztyZoCUrdC65hPaCuGt0lUwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzNzM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVSzANBgkqhkiG
9w0BAQsFAAOCAQEAkVQJKXESvwsQUIKZqLHOUcTmLsWomMXIS5I2s9yJ1U2kLao0
2nF8PVJKDPMeiU2rmKaAMONgSxI00wQmBvqew8wpAvR5kZJhpmFG+PtSU7C+qbdc
tI094ECgZcxQcpLP+EN65H2Col3AdgkEy1kcJwmFlZYFmDIX+q99O+r4mUCpMLQS
RLCvzSQTtum2ggixmowDCsAY95A5DjjBshT7kFob/oeYIXe7otXBT6KDq33rz7Gy
7id5qNfV+1mScM+MaTIIbXOHsoURcidzWdnbiBXRW90Uo5lsz4mcnljjvfr/SB97
6fCZR6mIKidN6JNAtAZufHGUDm59Gv2+ZdbyhA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org