Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3130313a3a2f34382d3438203d3e20313432333634.roa
File: 323430373a633663303a3130313a3a2f34382d3438203d3e20313432333634.roa (raw, json)
Hash identifier: 95dJQFSMJgEbxE5CcBal9o/HNypTv9SLS6kGyhFdnmE=
Subject key identifier: F0:C7:39:1A:5A:01:01:9B:F0:A9:9C:26:4C:7E:53:73:3F:57:DB:C4
Certificate issuer: /CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F
Certificate serial: 65C3F95ECE8D80E5A3E33185081DEF47A3866756
Authority key identifier: CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3130313a3a2f34382d3438203d3e20313432333634.roa
Signing time: Fri 14 Apr 2023 06:52:32 +0000
ROA not before: Fri 14 Apr 2023 06:47:32 +0000
ROA not after: Fri 12 Apr 2024 06:52:32 +0000
asID: 142364
IP address blocks: 2407:c6c0:101::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:c3:f9:5e:ce:8d:80:e5:a3:e3:31:85:08:1d:ef:47:a3:86:67:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F
Validity
Not Before: Apr 14 06:47:32 2023 GMT
Not After : Apr 12 06:52:32 2024 GMT
Subject: CN=F0C7391A5A01019BF0A99C264C7E53733F57DBC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ca:fa:26:87:09:2f:a7:cc:f7:a0:18:f6:d4:
fd:8a:66:dc:46:5a:75:f7:3f:dd:51:2e:86:7a:06:
cb:7e:03:34:a8:a5:4b:34:40:35:9c:a0:44:ce:50:
96:6e:29:e8:91:0f:a1:7d:15:17:67:1b:ec:66:50:
18:58:00:be:6a:64:9b:91:db:f4:9e:54:2c:45:2e:
a4:75:31:1f:82:08:31:7d:c3:7e:5e:38:f9:7c:50:
05:d1:d5:96:31:a6:f9:0b:14:ce:e1:5c:d0:6b:ee:
d0:98:d0:8a:21:56:f8:f6:2f:95:67:e0:2d:c3:80:
13:9d:21:36:ee:a7:22:3d:25:dd:64:0f:a9:57:95:
6f:8d:a3:e1:f5:66:b0:27:1d:71:81:b4:86:b8:97:
e9:bc:12:5d:3f:ea:bd:f0:e6:73:37:1a:7a:2b:96:
f0:48:de:df:74:95:6f:93:fe:7e:82:71:a9:82:68:
f0:d5:d2:95:c0:90:ed:c6:71:05:6a:1c:f4:dc:f5:
c6:fc:50:6c:25:f7:e6:d1:cf:a0:dd:96:9e:04:18:
d7:99:99:cc:ec:9e:2b:7a:59:02:2f:59:62:8f:f0:
10:22:38:66:e2:30:86:37:a6:34:48:ac:0e:f5:2b:
b3:65:31:80:de:b0:5f:9f:94:55:5a:28:3e:e9:79:
0e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C7:39:1A:5A:01:01:9B:F0:A9:9C:26:4C:7E:53:73:3F:57:DB:C4
X509v3 Authority Key Identifier:
keyid:CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3130313a3a2f34382d3438203d3e20313432333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:c6c0:101::/48
Signature Algorithm: sha256WithRSAEncryption
94:ae:7e:18:e4:21:d4:84:2c:09:9a:73:0e:da:e9:d1:54:ab:
4e:00:d0:38:cd:b7:bb:a5:e6:d4:87:86:a8:20:4a:c6:e3:99:
c5:1c:80:2d:9c:88:43:c8:6d:13:27:1e:e0:87:57:95:7f:72:
60:1c:ca:49:6c:a3:bb:c8:83:32:dc:59:31:ad:0f:10:93:84:
12:f3:b6:f0:ac:14:e7:40:df:39:2e:3e:86:be:26:74:db:53:
a7:e4:c3:ac:a4:d4:02:b0:81:6a:43:1b:1f:9f:50:64:1c:7b:
cb:38:f8:43:10:09:4e:8a:58:ae:de:9e:ff:57:a2:86:44:17:
9c:ab:a1:b0:f9:69:41:c2:b2:69:b0:54:0e:fa:ce:20:1f:44:
05:13:44:95:17:67:d9:e7:ae:8b:82:d1:21:7a:d2:47:48:9b:
05:7e:20:12:f4:47:d2:2c:24:a3:ee:1e:36:35:c5:37:31:ed:
e3:20:51:83:8a:02:39:16:51:b1:2e:64:4b:03:4a:df:77:29:
14:8e:1c:f3:ad:ab:27:30:3e:40:c4:1d:40:9f:fc:5f:0e:d3:
57:02:93:f7:31:8d:c3:5c:c3:e7:ac:fa:7b:72:fe:da:d1:7e:
9b:ad:8f:90:11:3c:18:8d:c1:70:5c:fd:6b:2b:02:c6:e7:87:
4b:8b:f5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org