Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e39362e302f32342d3234203d3e203137383835.roa
File: 3134302e3231332e39362e302f32342d3234203d3e203137383835.roa (raw, json)
Hash identifier: vdvNoolQMXOIV5M2Jf6eWfGlo/uYobbvfABQl0so0SE=
Subject key identifier: 9F:A2:6E:14:6D:C4:B1:40:81:D0:F6:CC:6F:64:1A:DA:A2:F2:B7:50
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 4EE0A2093D921CEB16871E4FCD7B5DE7D5E89710
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e39362e302f32342d3234203d3e203137383835.roa
Signing time: Tue 19 Apr 2022 10:00:01 +0000
ROA not before: Tue 19 Apr 2022 09:55:01 +0000
ROA not after: Tue 18 Apr 2023 10:00:01 +0000
asID: 17885
IP address blocks: 140.213.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:e0:a2:09:3d:92:1c:eb:16:87:1e:4f:cd:7b:5d:e7:d5:e8:97:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 09:55:01 2022 GMT
Not After : Apr 18 10:00:01 2023 GMT
Subject: CN=9FA26E146DC4B14081D0F6CC6F641ADAA2F2B750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:52:3c:5f:d9:71:8d:75:16:22:25:5e:79:
74:a9:12:3e:67:30:e5:f7:72:7e:da:49:39:ad:cb:
18:4b:e0:bf:3f:46:c7:7e:4b:eb:5e:fe:48:f0:87:
13:9a:d5:6f:c2:73:da:1c:88:bd:fa:64:38:9d:82:
bc:49:5a:76:c2:07:70:35:40:18:d9:49:76:70:4c:
0d:b3:22:91:b7:c0:23:b1:55:06:1e:45:07:c2:be:
ed:c7:43:85:7e:56:fe:23:0d:5c:5a:63:d6:39:10:
9b:92:eb:77:2d:9b:14:f5:ab:58:36:de:0f:b8:7b:
33:e6:37:a2:43:2e:ce:c7:74:aa:c1:f1:b3:bb:f5:
f8:fc:64:8a:e8:6c:28:74:46:b6:cd:f6:9f:dc:a8:
5f:b2:d6:f3:0f:69:6e:7c:7a:dd:a6:67:cd:45:db:
3e:18:e2:21:0c:7a:79:58:a6:ce:2f:7d:ae:22:0b:
b6:f3:a7:1e:0c:21:29:66:d6:a3:9a:f8:e7:b4:fe:
48:74:23:28:99:73:c4:cf:fe:59:16:d1:fe:8b:07:
21:4f:64:83:8c:fe:69:c1:88:de:d4:f6:16:2b:cd:
6a:90:82:b0:6c:45:13:9d:b1:23:07:fa:64:87:68:
f2:92:19:6b:7d:b3:ce:80:db:49:49:c9:15:f5:ef:
66:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A2:6E:14:6D:C4:B1:40:81:D0:F6:CC:6F:64:1A:DA:A2:F2:B7:50
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e39362e302f32342d3234203d3e203137383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.96.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:90:ba:b7:0b:ec:6c:5c:72:f3:45:3d:34:3d:1e:13:b2:38:
17:2a:0d:f0:92:f5:e4:4b:00:67:70:16:35:c3:07:8d:af:8c:
0e:80:c5:51:fc:6c:a5:39:31:64:4b:aa:fd:81:d6:47:92:48:
cc:66:0d:22:f8:fa:b2:92:69:12:5d:f4:1e:89:43:81:2e:02:
ee:70:a7:c2:81:da:d4:ee:9f:a6:ff:b2:4a:54:88:fb:fb:e0:
94:56:77:b1:2f:37:26:97:fc:49:6e:86:5a:19:34:ba:f7:ac:
82:86:c9:05:04:34:1e:6e:64:80:be:31:59:66:56:58:3e:8e:
bc:55:d5:0c:38:3f:78:1f:06:0d:36:fc:46:4d:26:80:98:50:
05:33:91:fb:87:56:3a:99:95:45:68:f0:c1:c5:50:0c:0e:66:
d6:6b:e5:fe:2d:88:0f:c5:53:2c:3d:53:dd:e9:e7:24:fc:77:
f9:d4:0b:1f:b4:6c:f8:6a:7f:fc:8c:49:02:78:48:fa:b6:4c:
fd:2b:77:82:04:d9:c4:e4:b5:5e:1f:23:c6:83:7b:84:83:ec:
45:c1:be:a4:cb:7f:b2:b3:37:9e:ea:5f:ef:8d:0b:c4:e7:a8:
7a:39:dd:5e:c6:e6:a1:e3:fa:f5:14:ee:83:2a:a0:c2:a8:2d:
f6:8b:de:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org