Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: cwtNGdeaSwZPiXjMM4tRJojR8m0TgIsRJtJZQTo+Ivw=
Subject key identifier: D6:FD:F1:8D:32:82:0F:3A:28:DA:17:A8:F1:32:E9:8C:4B:89:D5:3B
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 04E4662C569242C41B53F3375A0371B572CE1D45
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:02 +0000
ROA not before: Wed 13 Apr 2022 07:55:02 +0000
ROA not after: Wed 12 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 140.213.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:e4:66:2c:56:92:42:c4:1b:53:f3:37:5a:03:71:b5:72:ce:1d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:02 2022 GMT
Not After : Apr 12 08:00:02 2023 GMT
Subject: CN=D6FDF18D32820F3A28DA17A8F132E98C4B89D53B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2a:b1:08:16:d3:79:d5:ab:bb:a8:fb:ff:bf:
0e:ca:6b:f4:19:d8:77:c4:ea:06:b4:81:21:6d:b8:
a0:93:df:39:eb:5a:22:4b:a9:1d:85:8f:ec:60:22:
1a:9f:1a:b9:86:28:6e:b5:4b:9a:21:15:65:ea:3f:
6f:b2:54:02:ba:28:ea:08:c8:b7:42:bf:ec:a4:fc:
09:67:65:f2:8f:3e:2d:9c:e7:9b:55:c6:14:06:91:
7e:bd:5f:dc:55:bd:4a:75:60:1d:1f:a3:4d:1f:67:
19:1b:ef:90:a2:3f:28:f8:e1:2d:4a:7f:ae:39:72:
bd:3a:cd:9a:97:1c:51:1c:62:21:e2:4c:0f:6b:ee:
e5:59:bb:73:16:6d:f5:4c:51:46:8a:bd:0d:4f:17:
78:35:0c:40:51:78:b6:d7:61:bb:e0:1b:87:ff:ea:
5f:55:60:1d:17:42:fa:55:cf:5b:3a:b4:8e:56:7b:
fc:41:c6:28:77:fa:2f:30:e9:4b:4d:27:2a:01:6a:
5d:bc:fd:68:a4:85:d4:92:44:d1:97:78:2a:28:17:
e9:a8:3e:e5:b6:08:d5:0a:c5:ce:4b:bd:c0:41:9f:
b4:b2:e5:57:b3:7a:59:a2:d3:6f:52:c6:5d:f8:74:
98:6f:30:9c:a3:2a:a7:de:48:e9:58:c7:b5:07:c0:
16:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FD:F1:8D:32:82:0F:3A:28:DA:17:A8:F1:32:E9:8C:4B:89:D5:3B
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.8.0/24
Signature Algorithm: sha256WithRSAEncryption
63:bc:8a:7c:6f:35:f4:7a:68:db:90:56:f3:47:1c:67:c7:d9:
57:dd:d5:fb:93:16:5b:30:c6:67:13:8f:f1:c0:e4:5e:2f:d7:
61:d6:86:76:a5:80:8c:31:0c:20:31:78:f5:9c:cf:31:fb:36:
64:75:ae:27:31:52:78:7d:48:79:00:d8:dd:36:18:f0:eb:c3:
76:7c:cd:3e:13:81:f2:02:f5:3e:3b:e7:6d:59:69:da:47:3e:
c0:8d:e5:40:a2:13:33:0e:64:c4:6c:7d:3e:05:ac:10:6e:07:
a4:40:a5:54:a6:08:bc:bc:f0:b3:a8:6f:ce:6b:e5:66:97:1f:
11:ee:dd:c0:7c:e0:f2:b9:64:15:77:68:49:b8:a7:43:0f:5f:
42:5c:a4:e9:53:3e:28:80:e3:53:4b:93:5c:b7:62:28:ce:1d:
77:51:16:0f:9f:93:45:9c:f1:91:08:61:f9:62:e5:f0:db:a3:
d2:1b:22:89:35:20:2a:15:51:40:fc:8a:b2:66:4c:dc:a8:e8:
3e:6f:5c:c0:24:28:40:7a:52:69:b4:64:92:d0:a2:90:ae:31:
7e:b5:ee:d0:16:77:3f:90:97:6e:0e:93:c9:8f:ee:7e:77:be:
b5:08:27:55:e5:9f:c6:48:3b:4d:a1:a0:93:05:7e:c2:c0:26:
f1:f7:ab:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org