Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e38302e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e38302e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: dpsoOINSwhfytFsRQGWZv0YQczvq+GeL6SRhLg/PkQA=
Subject key identifier: 71:25:8B:2E:6F:28:6F:64:6B:84:45:DC:BE:D6:7F:72:02:AD:E0:3F
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 21100FDAAAF6E2FD66E1A66A341A14A48FFD94E1
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e38302e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:00 +0000
ROA not before: Tue 19 Apr 2022 09:55:00 +0000
ROA not after: Tue 18 Apr 2023 10:00:00 +0000
asID: 24203
IP address blocks: 140.213.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:10:0f:da:aa:f6:e2:fd:66:e1:a6:6a:34:1a:14:a4:8f:fd:94:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:00 2022 GMT
Not After : Apr 18 10:00:00 2023 GMT
Subject: CN=71258B2E6F286F646B8445DCBED67F7202ADE03F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1d:fb:7f:0c:bf:b8:ba:24:27:ec:0f:30:4c:
b7:61:38:4a:6e:31:a1:a6:83:1b:62:fe:56:06:92:
ef:96:2b:76:bb:8f:bb:79:15:c2:fe:e3:eb:97:20:
4c:4e:ff:70:94:8d:72:c7:a3:90:1a:f2:f4:05:ca:
f9:a1:d0:6b:07:80:f7:c2:27:e8:bb:c7:dc:51:38:
d5:93:2a:c3:1d:11:3c:fe:44:16:22:ef:7a:2b:b9:
37:6c:21:7c:0d:9c:cc:b3:a7:6f:24:e6:ab:e9:41:
b5:43:0b:74:60:a1:de:64:ef:c2:e9:a7:78:ea:82:
c2:85:c2:1c:f8:ee:c2:84:86:c0:9e:4d:d3:52:00:
b7:ce:67:cf:e6:4f:b1:ee:b3:c4:33:97:74:d5:60:
5d:84:7b:e6:c9:fe:f9:9f:72:f7:c0:78:14:a7:8b:
28:bb:26:0b:0f:d3:a2:39:98:3e:89:16:18:4a:03:
32:85:f1:40:6c:f1:f4:8d:20:d4:5e:52:f5:2d:e2:
c4:e3:9d:04:dc:d2:a7:92:84:24:0a:ec:d2:35:df:
51:5e:ce:ff:f2:bd:f7:de:2c:60:8b:c9:4b:b9:ec:
90:d8:d4:a2:dd:50:b7:9e:f4:16:5e:d3:72:3b:ad:
7b:7b:ce:ac:0e:cf:76:56:27:83:ca:69:2c:cf:f0:
77:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:25:8B:2E:6F:28:6F:64:6B:84:45:DC:BE:D6:7F:72:02:AD:E0:3F
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e38302e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.80.0/24
Signature Algorithm: sha256WithRSAEncryption
49:0b:a3:87:29:f9:ae:32:76:8a:11:07:df:7e:45:9d:c2:f9:
74:12:12:0a:79:43:ab:10:f1:db:d6:ad:e2:df:e1:f1:12:fc:
74:21:77:e7:b4:4f:62:62:8e:e9:80:6b:d1:1c:4b:de:a8:e9:
d8:44:be:5f:1e:9e:ca:38:c5:f1:ab:32:bf:2a:cc:60:9a:07:
62:f2:03:f8:ec:d6:63:0e:d2:3e:7e:8c:65:2b:c2:6f:c3:54:
f5:27:43:9e:0a:62:0f:fb:17:e0:be:7d:06:52:0d:c8:e5:ad:
52:61:43:d5:5c:56:a0:4b:a9:0e:4a:06:5f:01:cf:f2:fb:49:
81:74:0d:64:79:c1:a4:2b:6d:93:5f:f6:22:e2:db:60:ce:fd:
aa:89:d4:03:06:09:ef:db:66:6f:a1:5b:c2:69:89:51:68:79:
2b:3a:b3:f7:71:c9:d2:81:ce:88:b6:23:30:2e:a9:97:2a:76:
eb:12:61:e0:3b:d4:1d:0b:2f:10:83:95:1d:00:3c:f6:19:91:
5b:35:10:ea:fe:20:1a:55:47:20:38:25:dd:30:0d:3c:05:5b:
2c:68:30:97:a7:31:ca:d3:2a:df:81:f3:48:78:36:f8:f7:e8:
c8:15:d3:b3:76:b4:a9:fb:99:af:fd:44:70:60:b7:b5:37:3e:
8d:71:19:1c
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUIRAP2qr24v1m4aZqNBoUpI/9lOEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwOTU1MDBaFw0yMzA0MTgxMDAwMDBaMDMxMTAvBgNV
BAMTKDcxMjU4QjJFNkYyODZGNjQ2Qjg0NDVEQ0JFRDY3RjcyMDJBREUwM0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsHft/DL+4uiQn7A8wTLdhOEpu
MaGmgxti/lYGku+WK3a7j7t5FcL+4+uXIExO/3CUjXLHo5Aa8vQFyvmh0GsHgPfC
J+i7x9xRONWTKsMdETz+RBYi73oruTdsIXwNnMyzp28k5qvpQbVDC3Rgod5k78Lp
p3jqgsKFwhz47sKEhsCeTdNSALfOZ8/mT7Hus8Qzl3TVYF2Ee+bJ/vmfcvfAeBSn
iyi7JgsP06I5mD6JFhhKAzKF8UBs8fSNINReUvUt4sTjnQTc0qeShCQK7NI131Fe
zv/yvffeLGCLyUu57JDY1KLdULee9BZe03I7rXt7zqwOz3ZWJ4PKaSzP8HfbAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUcSWLLm8ob2RrhEXcvtZ/cgKt4D8wHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzODMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVUDANBgkqhkiG
9w0BAQsFAAOCAQEASQujhyn5rjJ2ihEH335FncL5dBISCnlDqxDx29at4t/h8RL8
dCF357RPYmKO6YBr0RxL3qjp2ES+Xx6eyjjF8asyvyrMYJoHYvID+OzWYw7SPn6M
ZSvCb8NU9SdDngpiD/sX4L59BlINyOWtUmFD1VxWoEupDkoGXwHP8vtJgXQNZHnB
pCttk1/2IuLbYM79qonUAwYJ79tmb6FbwmmJUWh5Kzqz93HJ0oHOiLYjMC6plyp2
6xJh4DvUHQsvEIOVHQA89hmRWzUQ6v4gGlVHIDgl3TANPAVbLGgwl6cxytMq34Hz
SHg2+PfoyBXTs3a0qfuZr/1EcGC3tTc+jXEZHA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org