Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37362e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e37362e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: fMbyzjcEhfsqwhewOohLhtSlHFGZa+J2614Dc7LDzsE=
Subject key identifier: C5:6F:D8:61:01:B2:73:BD:BF:28:08:F7:35:3E:22:AA:6B:B0:10:C5
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 7E88F0178AD742174B17C21076BF3D79D105F2E4
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37362e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:00 +0000
ROA not before: Tue 19 Apr 2022 09:55:00 +0000
ROA not after: Tue 18 Apr 2023 10:00:00 +0000
asID: 24203
IP address blocks: 140.213.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:88:f0:17:8a:d7:42:17:4b:17:c2:10:76:bf:3d:79:d1:05:f2:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:00 2022 GMT
Not After : Apr 18 10:00:00 2023 GMT
Subject: CN=C56FD86101B273BDBF2808F7353E22AA6BB010C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f1:76:d8:fc:a5:a1:4b:ad:d6:f3:79:74:6a:
c7:1f:05:01:6a:ca:d5:8b:da:b4:16:8d:fc:3a:45:
9e:24:c5:d4:68:23:79:24:e0:eb:bd:2a:e7:fb:87:
4c:88:67:34:f7:b8:45:7f:95:19:f2:86:cc:15:37:
38:f6:2b:7e:0c:e3:a7:16:57:47:7e:2f:85:40:85:
75:1d:0e:07:be:0b:5e:3d:24:e2:3b:af:ec:05:61:
f9:be:1b:51:7e:99:cb:19:24:98:1e:26:11:99:05:
aa:f9:74:87:19:ca:a8:16:3f:85:49:6c:48:5b:8b:
53:5d:cb:bf:77:8f:1d:ac:74:38:64:33:4a:bc:72:
bb:6c:54:d7:96:d6:18:c4:d5:8b:7b:aa:28:86:e6:
f4:8e:b8:ee:02:dd:72:33:bf:f0:77:2c:28:6d:29:
24:f5:53:1d:e5:a5:ed:f6:c3:25:2d:2f:12:58:87:
a7:c6:b9:0c:49:38:32:7c:f6:8e:9e:03:69:f2:f6:
57:1e:b6:f7:70:95:0b:72:17:82:b5:7b:ce:70:26:
a3:e7:e1:5b:6b:4c:90:a7:b1:a2:77:66:80:4b:2d:
07:85:8a:7c:a3:77:8d:20:1d:0f:14:03:1d:49:e4:
77:e5:27:ef:8f:55:99:6d:39:e2:3f:86:a0:1f:e2:
63:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6F:D8:61:01:B2:73:BD:BF:28:08:F7:35:3E:22:AA:6B:B0:10:C5
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e37362e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.76.0/24
Signature Algorithm: sha256WithRSAEncryption
55:1f:d4:98:0c:87:4d:fb:07:d0:00:1f:81:ba:00:b2:82:87:
e0:e6:ba:d9:08:75:df:66:ad:3a:c8:e8:a4:09:33:85:3b:b2:
b7:31:63:3e:d3:62:ba:b5:65:a0:c5:f3:c5:2e:db:d1:67:b1:
be:20:35:d6:ca:1c:e5:69:5e:40:f8:7b:a3:1b:43:d3:b3:fe:
d3:59:51:7b:49:60:bd:26:1c:a8:57:8f:04:e9:a5:d9:5a:6a:
83:a7:75:3a:3d:1c:09:9d:b1:a4:5e:c3:d9:11:fc:01:b5:6f:
a8:72:ac:6b:92:a9:24:6b:85:a4:e7:ae:eb:93:b3:67:e2:05:
9d:60:2f:65:b1:f1:45:ae:00:fe:93:d6:6d:ef:75:c2:47:18:
96:0b:13:35:5b:d2:ff:dd:a3:68:80:f4:76:32:40:8f:2b:7e:
dd:d4:d1:76:80:2b:4e:59:7a:b9:1f:fe:f3:f9:3e:dd:c5:5d:
ed:cb:38:5d:1c:2d:02:d8:ce:d2:34:dc:a5:57:d9:ca:2a:e2:
be:98:65:f4:af:4c:4c:1b:fd:02:1b:f7:88:1d:d9:57:a7:53:
8a:4c:c5:e5:62:da:70:6c:0d:b7:1b:6b:7e:87:ae:59:0c:d1:
ef:55:8c:54:c8:91:20:cc:c8:6c:50:4d:ad:3f:bc:40:9a:11:
bb:be:66:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org