Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3332203d3e20313437313337.roa
File: 323430303a343661303a3a2f33322d3332203d3e20313437313337.roa (raw, json)
Hash identifier: ZusP7G7djWxMhPb2q+MyQ7tbIjz6lwQuV6wz4eupXEI=
Subject key identifier: 6E:3F:1C:E8:AC:E4:CD:AC:56:F8:2E:1F:16:03:00:F6:21:74:DC:50
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 20D61176D8CE7134ED8799A0B09D1427EA056FF6
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3332203d3e20313437313337.roa
Signing time: Mon 10 Apr 2023 06:28:57 +0000
ROA not before: Mon 10 Apr 2023 06:23:57 +0000
ROA not after: Mon 08 Apr 2024 06:28:57 +0000
asID: 147137
IP address blocks: 2400:46a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:d6:11:76:d8:ce:71:34:ed:87:99:a0:b0:9d:14:27:ea:05:6f:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Apr 10 06:23:57 2023 GMT
Not After : Apr 8 06:28:57 2024 GMT
Subject: CN=6E3F1CE8ACE4CDAC56F82E1F160300F62174DC50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2b:1f:82:a1:77:6d:80:fe:07:cb:65:b7:bf:
2e:02:4d:70:d0:4e:e1:54:1b:2e:a3:76:e0:ba:3a:
42:2a:3d:6c:6a:86:9c:d2:1f:74:a1:50:12:dc:5a:
43:39:cf:66:ca:78:0e:b7:14:38:56:60:f9:d3:ad:
0b:75:5d:72:36:f9:df:37:03:ec:be:28:e1:f9:c0:
0a:cf:bf:4f:af:c9:13:d1:bc:08:64:9b:e2:5a:88:
e6:aa:17:ab:f7:d9:0e:ae:a2:54:d7:57:3e:d4:01:
2f:46:eb:ff:97:b2:7b:4a:bc:67:d2:ac:b2:59:0d:
7e:af:6f:ee:dc:63:f8:1c:25:e3:a6:9e:3e:85:c7:
65:91:9c:d7:63:9e:43:a7:4d:94:d8:c8:c7:3c:fd:
9c:c9:38:4c:85:43:0b:fe:7f:ad:e8:57:fd:b2:f5:
89:ec:03:a7:df:de:6b:de:a2:69:3b:10:03:1f:9d:
06:ed:6e:a8:16:89:cb:88:5b:f0:03:f4:f5:c7:d7:
54:61:7f:4c:72:a4:cd:6e:6c:6a:5a:49:96:81:a3:
46:e1:94:7f:2d:38:36:6b:38:4e:f4:2a:d5:6e:97:
3b:64:86:85:fc:93:37:94:66:a3:92:95:6d:43:7c:
84:ca:b3:a7:53:b1:ab:2e:01:c4:72:be:8d:0e:80:
37:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3F:1C:E8:AC:E4:CD:AC:56:F8:2E:1F:16:03:00:F6:21:74:DC:50
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3332203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0::/32
Signature Algorithm: sha256WithRSAEncryption
96:b0:b0:8d:c9:9f:33:30:5c:97:b9:07:6b:cd:3d:de:00:8b:
0b:58:61:26:f6:02:46:92:5d:14:f4:91:53:7a:07:48:d5:3d:
0c:04:46:39:9b:64:d0:6a:81:fa:0f:d7:85:b9:09:d4:8a:06:
86:ab:53:78:97:76:77:b0:31:52:8b:4c:e5:aa:a3:18:fc:bf:
b6:16:2a:ca:74:7b:2f:75:07:19:0c:45:e6:91:3e:d3:8c:d7:
07:02:ef:23:d2:0a:0c:33:a2:e1:e0:f7:88:8e:45:78:fd:7b:
f3:62:8f:7d:4d:b0:1e:5b:29:3b:3b:1a:74:40:11:f3:8b:32:
09:8a:c3:6d:b6:b5:6d:ef:6d:54:b9:6f:ec:11:9d:22:23:fa:
3b:6e:2c:e6:e8:a1:3d:2e:30:71:03:c0:27:0c:a8:ba:6f:79:
02:81:ae:15:d2:46:89:9d:50:af:39:ac:43:42:4f:45:30:a3:
2f:95:10:5a:a3:04:56:59:0b:64:4f:8a:c7:c3:c9:39:3c:0e:
dd:72:1c:2e:b7:57:57:6e:aa:15:7d:33:26:19:d0:96:3f:d2:
cb:67:f0:48:af:a1:17:d1:d9:6a:cc:e9:a1:4e:d7:9c:38:e1:
b4:9c:fa:68:33:8c:6b:0c:26:01:63:d8:a7:97:84:03:e6:73:
10:82:6b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org