Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e392e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e392e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: EzukzlPTnVunWns0Ra14Ik54T9gZH6/th3xnLrxU/+Q=
Subject key identifier: 7D:59:EF:B6:DC:30:9F:99:EE:F0:54:BA:32:5A:74:A0:03:CA:9A:8B
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 1319AC9BC29DA70848EA4977C32C1BC2C43C68C2
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e392e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:03 +0000
ROA not before: Wed 13 Apr 2022 07:55:03 +0000
ROA not after: Wed 12 Apr 2023 08:00:03 +0000
asID: 24203
IP address blocks: 140.213.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:19:ac:9b:c2:9d:a7:08:48:ea:49:77:c3:2c:1b:c2:c4:3c:68:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:03 2022 GMT
Not After : Apr 12 08:00:03 2023 GMT
Subject: CN=7D59EFB6DC309F99EEF054BA325A74A003CA9A8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fe:20:3f:c6:e4:af:96:a2:15:4e:78:2d:a6:
2d:10:8a:a2:8a:7d:30:3f:b2:7e:b1:0c:88:94:06:
14:b8:02:6d:70:c6:23:56:5a:7f:48:7e:27:a1:43:
2e:b0:b0:af:24:af:5c:79:9f:ae:fd:6f:2e:bb:c2:
b2:39:46:12:09:f8:22:c6:d1:21:52:fa:b6:b5:41:
39:b6:2f:95:22:24:a1:1b:38:8a:a4:c0:8b:eb:d8:
02:05:6a:c0:42:9c:7f:d8:f6:57:76:b2:2e:84:cc:
ed:73:62:0d:d2:58:d5:32:5b:c3:97:7a:f9:1d:f4:
b6:ab:59:f9:25:8f:5a:12:c0:48:e9:7d:c5:16:c9:
fb:fd:69:8e:93:99:f0:0b:56:68:5a:13:28:a5:55:
27:f4:d0:7b:7f:c2:0f:d1:ce:7d:76:62:30:57:3a:
51:01:56:26:79:48:9a:b8:9b:92:35:ca:79:81:3b:
97:aa:87:c1:f5:a3:c6:a3:03:53:95:09:84:17:f7:
2b:5a:23:17:97:07:58:8f:68:aa:fe:8b:1e:33:6b:
6b:80:86:5f:e6:9d:a2:6c:50:1c:20:d3:7b:cd:29:
49:96:97:36:77:a8:70:9e:c7:71:d0:0a:35:82:d5:
74:d1:69:4e:28:60:ce:a5:c4:79:86:82:58:e1:5b:
a4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:59:EF:B6:DC:30:9F:99:EE:F0:54:BA:32:5A:74:A0:03:CA:9A:8B
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e392e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.9.0/24
Signature Algorithm: sha256WithRSAEncryption
11:e3:3f:07:55:f1:36:1c:c9:1b:cd:52:a9:3b:1b:a4:26:05:
28:1b:6c:c4:1f:ca:3c:1f:a7:6b:3b:8d:b5:de:f7:83:a0:19:
f4:93:f8:1d:74:59:de:bd:cb:6f:e6:78:42:e9:e4:b7:a8:78:
52:70:04:b9:88:4e:a3:09:c3:bc:70:8c:30:f6:58:83:69:87:
e0:ae:96:73:2b:10:9f:ed:63:36:ee:2e:66:f2:e7:4d:24:cb:
06:4e:ac:1d:9e:13:ad:21:0b:30:89:5c:96:53:c5:6f:53:87:
62:41:be:23:b3:b1:02:f5:85:52:93:f8:d9:b4:7b:58:dd:26:
82:4c:ed:9a:f3:87:2f:f1:1a:90:b7:49:79:f9:e5:f5:c1:23:
60:8f:e6:fe:61:7b:2a:57:88:ca:53:70:54:ee:50:60:33:9e:
b7:da:57:ea:7b:da:78:31:bc:df:d4:7b:3c:8f:c8:ce:e6:e4:
cb:ee:72:bf:00:b7:12:84:76:37:20:10:ff:55:8d:55:ff:4f:
11:ac:79:a9:80:cb:04:ac:df:ba:1d:a8:1d:2c:a8:1c:a0:9e:
0f:62:f2:26:e2:67:ea:2e:ac:9e:16:80:c2:bf:65:a3:d6:bd:
39:c9:1e:0b:3c:06:0a:a9:42:a9:43:d2:8c:6b:2e:7f:9d:23:
ff:d2:b8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org