Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8fdeb0-3513-4f3d-9259-82b9d19a3556/0/323430313a316663303a3a2f33322d3438203d3e20313431363731.roa
File: 323430313a316663303a3a2f33322d3438203d3e20313431363731.roa (raw, json)
Hash identifier: +WzJlRcZ3gttL3LWQ/hmXcTBpYs2xWpRz3HaM5P0MWE=
Subject key identifier: 3F:85:E0:E5:4B:28:0C:A2:27:BD:53:5A:29:FA:39:C6:8D:62:93:24
Certificate issuer: /CN=EFC476AB80A5D0AD9FCCAA1441C1F641838E2E02
Certificate serial: 22CDFE4E085C57015C73B9B41B4FCCB316D8193C
Authority key identifier: EF:C4:76:AB:80:A5:D0:AD:9F:CC:AA:14:41:C1:F6:41:83:8E:2E:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC476AB80A5D0AD9FCCAA1441C1F641838E2E02.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e8fdeb0-3513-4f3d-9259-82b9d19a3556/0/323430313a316663303a3a2f33322d3438203d3e20313431363731.roa
Signing time: Mon 14 Feb 2022 06:01:36 +0000
ROA not before: Mon 14 Feb 2022 05:56:36 +0000
ROA not after: Tue 14 Feb 2023 06:01:36 +0000
asID: 141671
IP address blocks: 2401:1fc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:cd:fe:4e:08:5c:57:01:5c:73:b9:b4:1b:4f:cc:b3:16:d8:19:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFC476AB80A5D0AD9FCCAA1441C1F641838E2E02
Validity
Not Before: Feb 14 05:56:36 2022 GMT
Not After : Feb 14 06:01:36 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c5:62:9b:1e:8c:85:64:8a:a5:39:db:9d:58:
76:4b:6c:76:74:5d:aa:47:f5:96:02:bc:26:4d:c2:
c0:b8:24:34:57:1d:ad:e3:a0:20:ba:b4:cd:ab:53:
5d:27:bf:d9:a8:1e:f3:fd:a5:a0:e6:4b:04:08:dc:
35:d6:c0:e1:c2:52:a4:14:8f:40:9a:26:01:bb:a4:
eb:1a:c4:eb:95:f2:4f:01:5b:23:93:c5:a9:49:dc:
6e:f1:60:1a:43:0b:e3:2e:54:b1:ef:3d:af:45:c0:
84:f0:36:1a:6f:d5:69:b9:f3:d2:ec:43:25:c2:51:
6e:c5:c4:a2:4c:dd:50:d2:48:d0:90:03:c5:ff:fb:
22:0a:2a:f7:58:46:e1:89:d3:81:45:71:91:75:82:
ef:1e:1e:fb:a6:d8:40:5e:55:15:5a:db:23:81:67:
31:a1:a5:08:cc:42:fa:8c:18:cc:04:d6:d6:fc:79:
e3:31:02:b8:55:5b:f1:cc:61:16:a2:7c:5e:13:1e:
55:ea:6e:69:d4:02:1e:4d:1f:f4:7f:a6:25:9d:3e:
dc:24:2a:e9:20:31:a8:8d:f8:d0:92:a4:21:f5:2e:
f8:53:70:c0:bb:74:4a:2a:43:af:0e:68:8c:23:23:
a5:fb:50:82:82:07:04:34:3e:0f:2a:7b:6c:a3:0e:
8d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:85:E0:E5:4B:28:0C:A2:27:BD:53:5A:29:FA:39:C6:8D:62:93:24
X509v3 Authority Key Identifier:
keyid:EF:C4:76:AB:80:A5:D0:AD:9F:CC:AA:14:41:C1:F6:41:83:8E:2E:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e8fdeb0-3513-4f3d-9259-82b9d19a3556/0/EFC476AB80A5D0AD9FCCAA1441C1F641838E2E02.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC476AB80A5D0AD9FCCAA1441C1F641838E2E02.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8fdeb0-3513-4f3d-9259-82b9d19a3556/0/323430313a316663303a3a2f33322d3438203d3e20313431363731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:1fc0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:8e:44:5f:13:61:f9:fe:a5:b5:36:9f:c3:90:ea:2e:ae:2b:
b6:4d:b0:f9:77:c5:18:9d:5a:fe:0d:c7:bd:56:a6:7b:49:ee:
55:db:b6:f9:b1:4f:1a:83:13:5b:0d:68:eb:c4:e2:45:a2:48:
75:27:51:59:c9:53:df:73:f2:c6:a2:92:8b:24:8e:b2:d6:cb:
c9:e6:44:9f:e8:57:c7:7c:72:76:47:49:43:46:fb:bc:50:22:
16:49:ad:be:e8:7d:2a:32:2e:a9:07:76:bd:3f:6c:a0:88:04:
99:8f:1e:f5:c5:63:c7:82:65:1d:79:42:cb:7e:e9:56:4f:b3:
16:20:15:37:97:10:d4:85:db:2d:0d:2f:9a:28:57:9e:d0:de:
1e:fb:ed:a3:c8:c8:7c:5e:72:66:85:2a:2f:09:8d:c9:dc:b1:
0e:9b:80:fc:09:59:98:ab:03:b4:7b:5e:14:3f:fe:35:9f:21:
91:8e:96:d9:bf:77:29:c6:e2:c3:28:f0:50:4c:cb:fc:a2:87:
b1:ea:77:bb:d9:53:b7:4e:8f:f0:5e:70:83:a5:d6:e3:8b:09:
73:dc:c4:91:96:3d:30:35:ca:5d:8b:f1:44:ff:67:2b:f2:e9:
a4:a7:39:89:6f:b6:51:5b:4d:ac:ce:7f:11:4f:8d:ee:51:f3:
f1:bf:6c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-ams.rpki-client.org