Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e38322e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e38322e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8C/5Q12V6lp6AvISe8C4BbrQkStnT/HRFBx41iDfVHg=
Subject key identifier: F0:98:64:9D:4C:D8:7F:DA:12:04:A1:B8:6A:2E:13:56:9C:44:73:9F
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 3594220A10DC4AA0345FF345C48B4EE9DE7C0F7D
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e38322e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 10:00:01 +0000
ROA not before: Tue 19 Apr 2022 09:55:01 +0000
ROA not after: Tue 18 Apr 2023 10:00:01 +0000
asID: 24203
IP address blocks: 140.213.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:94:22:0a:10:dc:4a:a0:34:5f:f3:45:c4:8b:4e:e9:de:7c:0f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:01 2022 GMT
Not After : Apr 18 10:00:01 2023 GMT
Subject: CN=F098649D4CD87FDA1204A1B86A2E13569C44739F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a3:5b:34:07:0b:66:2a:cb:57:24:35:ee:6a:
09:97:e3:95:75:e2:ce:03:da:0e:70:c1:7b:8c:c9:
41:d3:6f:34:c2:16:fa:1e:fc:f3:6c:64:c2:3f:60:
65:f0:42:da:a0:71:43:0b:c6:fa:b2:bf:c5:a5:17:
8e:2b:35:fd:82:e8:48:07:de:74:84:81:2b:ad:2f:
d8:f5:22:73:c7:ec:5b:f0:3c:66:c8:b2:66:25:1f:
b1:0c:ad:ca:ef:17:e3:42:e3:4f:d8:42:bf:71:88:
d0:ab:ec:b9:cb:5e:f2:14:38:a4:4d:58:36:f0:2c:
98:b0:a9:16:f8:a3:aa:f3:25:12:54:76:6e:34:d0:
72:9f:1d:0d:32:1b:b8:0b:4e:5b:7e:d1:06:b0:94:
50:4f:c5:0a:30:f2:7b:ec:c3:66:4b:c9:4b:96:c1:
f6:a6:19:cf:db:74:34:20:f7:3c:a5:92:de:cb:cd:
c6:b0:ad:db:6e:73:f4:23:ea:f2:d0:41:da:7d:0e:
0a:77:80:66:06:6e:a0:51:81:1f:5e:ad:de:c8:89:
d3:29:29:02:9d:8e:15:d4:21:97:f5:cb:81:1a:0c:
cb:1c:54:4d:50:cf:3c:a4:a3:f6:68:a4:7f:17:d6:
a9:e6:6d:1e:7e:17:17:fa:bb:95:a0:8c:2f:72:f4:
da:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:98:64:9D:4C:D8:7F:DA:12:04:A1:B8:6A:2E:13:56:9C:44:73:9F
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e38322e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.82.0/24
Signature Algorithm: sha256WithRSAEncryption
00:a4:a4:6b:94:cd:0f:a3:df:9c:88:0f:01:e5:d6:5d:22:0e:
a1:d1:b8:a0:c9:55:68:ba:6f:3d:0b:d6:ce:f9:f9:85:c6:2d:
62:cd:c9:23:05:bb:79:79:a3:c2:05:6e:83:b4:3e:d4:a9:2a:
75:60:ed:78:c6:6f:b4:fe:f6:74:91:51:54:91:92:74:75:f1:
a4:97:d8:55:26:49:a4:e9:0a:51:14:4b:60:65:17:d2:e0:f2:
44:31:1e:57:cc:b7:b1:9d:73:7e:c5:02:b2:bc:3b:62:98:4c:
2f:2d:dd:31:bd:e4:fb:29:a7:30:3c:13:02:af:6b:45:f1:af:
a4:29:e0:1f:8d:74:41:09:9d:e1:18:38:05:20:26:e1:91:58:
eb:6b:b5:a8:42:ee:b7:ff:91:26:4f:80:19:72:5b:4e:cd:6e:
b6:87:2d:8e:8d:ff:62:8d:ae:8e:d8:2d:a4:9b:d9:9b:4f:75:
03:a8:0e:a0:a0:23:18:5a:89:55:29:5a:c7:41:6f:b2:34:11:
8d:14:a8:ed:09:f0:dd:2d:a4:bf:ba:31:d5:19:2d:98:24:75:
e1:7b:a5:8c:7e:33:e8:8c:24:f2:0d:b3:b2:59:db:75:1e:8b:
ff:5e:04:18:ca:7f:2a:03:47:3f:99:61:09:f4:50:48:f9:b0:
ca:de:75:ca
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUNZQiChDcSqA0X/NFxItO6d58D30wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwOTU1MDFaFw0yMzA0MTgxMDAwMDFaMDMxMTAvBgNV
BAMTKEYwOTg2NDlENENEODdGREExMjA0QTFCODZBMkUxMzU2OUM0NDczOUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuo1s0BwtmKstXJDXuagmX45V1
4s4D2g5wwXuMyUHTbzTCFvoe/PNsZMI/YGXwQtqgcUMLxvqyv8WlF44rNf2C6EgH
3nSEgSutL9j1InPH7FvwPGbIsmYlH7EMrcrvF+NC40/YQr9xiNCr7LnLXvIUOKRN
WDbwLJiwqRb4o6rzJRJUdm400HKfHQ0yG7gLTlt+0QawlFBPxQow8nvsw2ZLyUuW
wfamGc/bdDQg9zylkt7Lzcawrdtuc/Qj6vLQQdp9Dgp3gGYGbqBRgR9erd7IidMp
KQKdjhXUIZf1y4EaDMscVE1Qzzyko/ZopH8X1qnmbR5+Fxf6u5WgjC9y9NrnAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU8JhknUzYf9oSBKG4ai4TVpxEc58wHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzODMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVUjANBgkqhkiG
9w0BAQsFAAOCAQEAAKSka5TND6PfnIgPAeXWXSIOodG4oMlVaLpvPQvWzvn5hcYt
Ys3JIwW7eXmjwgVug7Q+1KkqdWDteMZvtP72dJFRVJGSdHXxpJfYVSZJpOkKURRL
YGUX0uDyRDEeV8y3sZ1zfsUCsrw7YphMLy3dMb3k+ymnMDwTAq9rRfGvpCngH410
QQmd4Rg4BSAm4ZFY62u1qELut/+RJk+AGXJbTs1utoctjo3/Yo2ujtgtpJvZm091
A6gOoKAjGFqJVSlax0FvsjQRjRSo7Qnw3S2kv7ox1RktmCR14XuljH4z6Iwk8g2z
slnbdR6L/14EGMp/KgNHP5lhCfRQSPmwyt51yg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org