Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e39352e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e39352e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: EaHbXmGq6KzGyai3AZTkJ13dCf4RbsOOBpSSaKZe8dA=
Subject key identifier: 9E:2C:CF:43:60:A6:FB:73:C9:6D:E3:C3:AC:F9:A9:A8:00:2F:D8:3A
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 69FB56AD878C1C74EBA8E8A24A9D448C21607F3B
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e39352e302f32342d3234203d3e203137383835.roa
Signing time: Tue 19 Apr 2022 10:00:00 +0000
ROA not before: Tue 19 Apr 2022 09:55:00 +0000
ROA not after: Tue 18 Apr 2023 10:00:00 +0000
asID: 17885
IP address blocks: 140.213.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:fb:56:ad:87:8c:1c:74:eb:a8:e8:a2:4a:9d:44:8c:21:60:7f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:00 2022 GMT
Not After : Apr 18 10:00:00 2023 GMT
Subject: CN=9E2CCF4360A6FB73C96DE3C3ACF9A9A8002FD83A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:6e:43:f6:fa:49:4b:41:db:ee:cb:6a:01:
82:7f:ac:9d:50:9a:a3:13:24:c9:0e:0a:49:cd:b6:
b8:d6:e3:cd:40:dc:eb:85:b9:d0:b9:d9:1e:a2:33:
ca:44:34:ff:fe:e4:9b:e9:ad:74:4c:06:f2:6f:49:
26:fb:2c:bc:a3:27:cd:c1:54:9f:f0:34:b8:7a:83:
b7:97:5d:c4:04:fd:b2:01:92:a7:9a:6e:0c:c4:02:
ea:a3:ea:f0:f2:c5:4a:b7:59:80:af:eb:70:b8:17:
8d:c4:ab:87:b7:1a:c2:da:6e:3c:fc:8c:6b:b9:42:
c0:39:c0:13:ab:8b:a2:89:88:e7:22:a6:ae:46:32:
ee:64:1e:4a:55:dd:83:30:b9:75:77:d0:37:79:28:
4f:49:95:07:e1:5b:70:bb:f4:50:7a:36:8e:c0:9a:
05:ac:79:38:b6:7e:9a:3e:9a:49:e9:16:a7:2b:a6:
22:86:cf:57:63:4b:e2:c5:33:7e:e1:de:30:ff:d9:
39:05:81:3c:ae:59:08:e8:4a:29:a2:17:45:b0:0f:
99:77:75:88:27:7e:15:de:eb:16:58:39:48:3f:e2:
48:a6:1e:fe:58:e8:c3:54:ed:9b:ef:03:d3:00:f6:
93:53:3c:86:17:bc:9b:1a:3d:31:83:4b:36:a1:41:
21:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2C:CF:43:60:A6:FB:73:C9:6D:E3:C3:AC:F9:A9:A8:00:2F:D8:3A
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e39352e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.95.0/24
Signature Algorithm: sha256WithRSAEncryption
17:73:fa:da:21:78:f6:2b:59:72:f4:9c:40:ea:5f:c0:85:51:
39:b3:bc:31:02:24:b1:cc:42:40:0b:ba:08:fb:c9:4c:2c:3b:
c5:3e:7f:88:ed:9b:a1:da:b2:be:6f:9f:6a:02:68:5d:83:9c:
91:95:1a:dc:d6:18:68:7b:e2:5b:12:07:0b:01:b8:0f:d3:f3:
cc:45:24:fd:f7:13:14:ee:b2:6c:68:b4:ac:46:04:9e:5b:ef:
e5:68:91:fb:94:88:58:3a:35:0d:95:ee:52:c9:d0:7c:a7:15:
fa:c5:87:d4:57:ba:a2:64:2a:81:c4:fb:72:b9:54:51:d9:10:
89:d2:d4:70:98:d9:b2:1f:ef:10:71:13:09:57:b2:3f:10:91:
ae:87:26:53:3e:dd:07:88:f0:81:25:6c:57:07:08:ef:b0:10:
11:bb:cd:aa:8a:e3:4f:0e:6a:ab:2e:3d:6f:cd:36:79:df:16:
68:87:c2:ca:f2:ed:30:3d:03:f9:d5:1b:d7:d9:50:fd:59:0f:
37:c6:1b:01:00:14:6d:bc:9c:81:7a:dc:2d:cf:4d:82:e7:0d:
8c:4b:12:17:d6:c2:8f:96:b9:46:11:bb:22:60:55:11:27:db:
d9:99:ee:52:c0:dd:c6:a7:41:47:64:7d:11:57:21:7c:a7:29:
dc:41:0c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org