Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3336203d3e2034343334.roa
File: 323430313a353430303a3a2f33322d3336203d3e2034343334.roa (raw, json)
Hash identifier: ShIs+x1rWx9b6WOIkqMbCEyFW0Zk7fxBO1+Js+Qntlk=
Subject key identifier: B7:64:C3:69:3F:6A:2C:4C:85:7B:5E:BC:05:CC:E3:37:39:F4:B0:C5
Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Certificate serial: 40D5C6C08528B5DB82FBCA5833ED3735ABCB679D
Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3336203d3e2034343334.roa
Signing time: Wed 19 Oct 2022 07:57:04 +0000
ROA not before: Wed 19 Oct 2022 07:52:04 +0000
ROA not after: Wed 18 Oct 2023 07:57:04 +0000
asID: 4434
IP address blocks: 2401:5400::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:d5:c6:c0:85:28:b5:db:82:fb:ca:58:33:ed:37:35:ab:cb:67:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Validity
Not Before: Oct 19 07:52:04 2022 GMT
Not After : Oct 18 07:57:04 2023 GMT
Subject: CN=B764C3693F6A2C4C857B5EBC05CCE33739F4B0C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:82:d1:68:4f:ab:05:62:3c:1f:27:4c:7b:7c:
6f:b4:6b:5f:a0:bb:ee:ef:7e:77:0b:87:66:47:06:
54:8d:e9:4f:78:11:df:61:20:80:2c:2e:46:fa:22:
52:0a:a4:32:cc:bd:1f:32:b6:2f:31:95:3c:19:d8:
6e:14:f2:2e:95:eb:23:4a:1f:5c:9c:7f:97:09:52:
9d:a5:73:ee:78:9b:8e:35:44:e0:bf:b5:72:58:4a:
52:79:fc:a6:f1:d6:40:4a:fc:21:8e:d4:f2:cd:3b:
50:92:fa:54:d4:d6:86:97:44:ad:53:a7:f1:37:5b:
16:67:c1:7d:3b:11:89:13:14:cf:30:fb:5b:93:36:
e6:0f:1e:05:c2:4d:13:52:88:2b:12:af:bb:55:cc:
2e:98:4d:d3:1a:f7:87:51:62:ff:12:98:2d:83:23:
fe:5b:e4:05:02:9b:0c:5f:81:93:1e:27:10:c3:61:
12:ff:0a:5e:e0:0a:69:ed:8d:3f:cd:c5:8d:8b:68:
92:45:88:12:eb:c5:41:0c:9d:ef:1b:d3:c1:d8:89:
ff:5e:49:47:d0:94:85:e9:e0:23:77:30:1e:f3:f6:
17:52:a0:70:6b:e4:ae:45:94:0c:87:84:9e:f4:17:
84:40:51:46:8f:9a:05:4b:66:3f:f9:7e:0c:2a:74:
b4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:64:C3:69:3F:6A:2C:4C:85:7B:5E:BC:05:CC:E3:37:39:F4:B0:C5
X509v3 Authority Key Identifier:
keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3336203d3e2034343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:5400::/32
Signature Algorithm: sha256WithRSAEncryption
6c:d1:39:f2:67:09:81:e1:7a:53:30:dc:ba:9f:31:19:f7:bd:
07:52:f6:87:71:f4:1c:72:96:92:50:09:e4:ef:b0:ee:e8:ae:
b3:06:63:5e:70:97:79:b9:f8:d7:e0:9d:7f:7d:65:e9:4f:9a:
cb:83:f5:6a:80:c3:e4:98:d3:19:0c:37:95:ff:52:07:ab:a7:
57:ca:9d:a4:ec:b7:19:ee:8d:12:9e:2e:64:82:47:16:ae:ff:
7e:f2:fe:56:34:ee:7d:5c:2c:6a:ec:80:78:bd:5a:8a:e2:f3:
2d:69:68:b7:d8:10:a3:a2:76:a7:dc:fc:cc:12:85:38:cc:91:
14:c4:f2:34:a8:b8:f8:b7:00:5a:9a:1c:bd:f0:26:9f:25:48:
7f:57:b7:12:03:8a:59:e3:fc:c8:c4:71:65:7e:0b:b3:dc:e4:
bf:60:6b:f5:4b:84:64:8a:b9:03:e2:bf:42:bc:dd:53:5a:23:
21:60:05:9f:a6:50:39:24:39:a6:a1:b7:c4:09:99:5b:aa:1a:
44:3e:58:bf:37:15:d4:7a:74:ac:e0:61:e6:88:e9:4a:b9:92:
fb:48:8e:5d:61:d3:f8:2f:03:90:88:de:2c:75:19:ef:5a:f0:
cf:92:3e:cf:28:0e:cf:5a:15:a5:2e:d3:44:cb:81:60:eb:b1:
bd:c9:30:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org