Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3130303a3a2f34302d3438203d3e20313432333634.roa
File: 323430373a633663303a3130303a3a2f34302d3438203d3e20313432333634.roa (raw, json)
Hash identifier: bn6MPtodyf4ERw7z8bWLRzg/3nhKEc/KH3uObodVMS8=
Subject key identifier: 08:A4:A1:7A:BC:02:C1:4B:13:47:13:E4:E7:8F:BF:B6:01:43:5F:D0
Certificate issuer: /CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F
Certificate serial: 082BFBABDAE37D4BBF98BEF43D3566151B5FF623
Authority key identifier: CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3130303a3a2f34302d3438203d3e20313432333634.roa
Signing time: Fri 14 Apr 2023 06:50:01 +0000
ROA not before: Fri 14 Apr 2023 06:45:01 +0000
ROA not after: Fri 12 Apr 2024 06:50:01 +0000
asID: 142364
IP address blocks: 2407:c6c0:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:2b:fb:ab:da:e3:7d:4b:bf:98:be:f4:3d:35:66:15:1b:5f:f6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F
Validity
Not Before: Apr 14 06:45:01 2023 GMT
Not After : Apr 12 06:50:01 2024 GMT
Subject: CN=08A4A17ABC02C14B134713E4E78FBFB601435FD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:04:7b:18:6b:eb:c0:97:ae:5e:5b:7b:d3:
a1:17:40:23:96:5f:32:a3:51:ca:b1:db:20:e0:4e:
05:eb:bc:b8:31:8a:13:f2:01:11:0e:f9:fe:54:cf:
00:ff:8f:3f:7d:fe:c2:94:15:73:85:67:2f:c8:89:
fa:62:fc:87:84:e4:b6:ab:48:5a:ba:b8:05:88:97:
77:bd:84:16:06:ee:bd:ef:03:72:94:9d:ff:e1:e9:
44:65:7d:74:bb:f4:55:29:d7:44:8e:52:18:d7:be:
dd:18:c5:ff:f4:7d:e3:c4:47:0e:c5:44:61:f7:4a:
75:87:76:7e:e0:12:d6:77:6b:ff:91:94:85:7e:3c:
ff:8a:95:e9:5a:84:8f:5e:3a:02:50:b7:af:f3:85:
85:24:41:be:6f:a9:2c:fa:99:a7:c4:a4:ed:5e:65:
df:eb:0a:af:67:15:63:b9:6b:c4:1b:c1:5b:0b:64:
c9:bc:1e:39:51:32:97:fc:ae:30:ee:48:d0:2f:c2:
23:1a:14:3f:12:aa:b2:54:9e:6c:0b:dc:a1:41:42:
d5:d3:6f:e9:6a:96:3b:bf:1f:f1:93:df:cd:55:71:
b7:50:f7:82:24:cb:27:b4:00:56:2b:41:4e:0c:ad:
c9:fd:3c:68:81:d8:c6:18:e5:4b:74:0a:4e:96:22:
e3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A4:A1:7A:BC:02:C1:4B:13:47:13:E4:E7:8F:BF:B6:01:43:5F:D0
X509v3 Authority Key Identifier:
keyid:CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3130303a3a2f34302d3438203d3e20313432333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:c6c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
03:fc:42:7e:c1:89:cf:cb:cd:ab:70:d3:db:98:94:5b:5a:96:
d2:c3:b6:99:62:1d:fc:2d:b2:a9:dd:a0:6d:0f:ca:a0:61:90:
12:63:2e:f3:29:71:bc:7c:bf:6b:76:4c:6e:56:3b:c1:dc:a9:
de:2e:1a:82:9a:e7:86:1b:d6:8b:49:cd:ad:e2:0f:21:65:69:
68:9f:ab:8a:89:12:a7:6a:45:88:64:ed:37:e8:d4:13:cf:d0:
6e:4b:7a:9a:a7:51:dc:29:bc:e1:b3:a3:ce:79:61:32:ae:7c:
89:00:83:e2:17:9c:b1:e8:27:2a:d3:9d:7f:7a:4c:7c:4c:d4:
16:c3:30:86:c8:af:2c:bd:47:3a:74:20:d8:b3:58:39:99:5a:
6b:cb:2b:80:56:48:72:eb:f3:29:1d:00:6c:20:98:02:83:54:
94:47:26:d3:3e:03:2d:22:95:2c:21:4b:c4:57:f3:26:16:a4:
6e:1d:fe:6b:a3:fe:6a:a9:fd:84:a3:57:54:2b:3f:6b:04:d4:
46:8c:1f:48:3e:4c:fc:6d:73:fe:ad:28:85:3e:fe:a4:d0:b9:
4c:16:7b:cf:1d:47:0e:b8:64:13:0f:5a:74:d7:a5:86:84:38:
8e:d8:0e:64:63:48:81:aa:8e:ac:db:0a:f0:6c:9b:f4:df:e9:
ec:71:71:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org