Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31382e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31382e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: 8v2j6rArXh+54Tle5Qva0nBnrJtc+376yJo9AbTAjYo=
Subject key identifier: 1D:D9:5D:36:29:43:0B:4B:65:5B:69:CF:D1:DD:6B:C8:96:97:4A:B4
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 71A3ED8A9294E82BC188301531E75F3EB9798CDA
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31382e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:02 +0000
ROA not before: Wed 13 Apr 2022 07:55:02 +0000
ROA not after: Wed 12 Apr 2023 08:00:02 +0000
asID: 24203
IP address blocks: 140.213.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:a3:ed:8a:92:94:e8:2b:c1:88:30:15:31:e7:5f:3e:b9:79:8c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:02 2022 GMT
Not After : Apr 12 08:00:02 2023 GMT
Subject: CN=1DD95D3629430B4B655B69CFD1DD6BC896974AB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1a:2a:c7:5f:96:b1:2d:a0:3c:27:65:f1:59:
84:59:a1:36:6b:d5:ae:94:cf:a1:18:6d:f1:05:9e:
78:27:89:cc:12:3a:85:b6:79:1b:3c:55:bf:c8:f1:
4a:fe:ae:af:e0:ea:ff:2b:9e:dc:92:55:bd:51:f6:
d4:79:74:ca:e7:a3:95:18:05:ca:41:ee:0b:dc:2f:
12:c5:ab:33:8b:d5:0b:bc:ad:d0:dd:da:c3:02:c2:
bb:c5:f5:7e:3c:1d:91:94:40:9c:30:56:0a:72:29:
3c:90:71:bd:6e:45:1e:36:f8:80:74:1e:59:2f:85:
8e:04:68:06:28:d0:54:c8:40:8d:be:90:af:2b:26:
48:bf:16:5e:84:92:17:68:77:40:35:a8:e8:f3:20:
08:f5:66:cb:34:af:28:af:01:93:fa:fa:4c:d7:12:
62:b9:45:67:2c:51:18:0a:34:86:41:81:cb:2f:b7:
83:56:10:8f:73:c7:c6:3f:3c:fa:d0:46:6e:7c:1d:
ae:39:a4:7f:ef:eb:6f:8e:0f:17:d9:ff:85:39:bf:
b4:b6:24:3b:ef:71:e3:9a:59:e1:98:79:e1:b1:08:
25:46:c0:d9:05:b8:85:e7:83:8a:8c:35:04:76:14:
09:0d:3f:2e:a9:59:c3:19:2f:92:a7:fa:36:80:db:
ef:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D9:5D:36:29:43:0B:4B:65:5B:69:CF:D1:DD:6B:C8:96:97:4A:B4
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31382e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.18.0/24
Signature Algorithm: sha256WithRSAEncryption
46:1f:8c:e4:4c:9b:fa:70:66:22:4e:dc:38:d8:d0:f2:3f:9a:
3f:3f:aa:12:b7:ce:c8:e0:ce:f6:7a:91:02:25:99:6e:07:a6:
eb:d5:55:0d:90:eb:d3:d7:51:92:96:a8:a7:4b:a2:9d:5c:e8:
c1:d5:bc:1e:11:de:8b:c1:17:64:99:a9:3c:0d:1c:4f:55:29:
a8:71:d4:f9:a4:c4:e8:72:0e:92:63:f3:32:91:9a:f0:51:62:
c8:41:a1:ac:7e:33:05:6e:7f:fb:cd:7f:e9:da:f3:61:96:e9:
b0:ec:61:0a:80:05:e6:99:e6:d9:1f:a3:9b:b4:f4:c1:32:ab:
d0:7b:32:95:d7:b4:92:28:5d:bb:a1:68:76:01:a4:9c:4a:1d:
74:66:2e:c0:95:0c:c9:49:3d:73:86:11:76:5d:84:d4:56:27:
7c:e5:c6:ed:aa:84:c1:8b:05:af:7f:ed:5c:0c:e0:39:0c:c3:
ad:a8:ea:c7:94:5c:8a:59:a9:71:c2:df:1a:82:a5:f9:6a:3c:
8c:f5:90:8e:7a:b0:b9:85:80:67:f0:39:96:62:a7:be:2b:64:
99:e2:27:3b:02:85:fe:4d:29:29:47:df:18:e9:eb:90:39:45:
74:84:3f:99:8a:c4:aa:a1:00:0e:24:4e:6d:0e:a4:75:54:6e:
7d:d2:89:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:29 2025 by rpki-client