Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3131323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: /5cjXson71e+bMCsr4AQmUjBXTBeX8vBAP7ZYSjsCYY=
Subject key identifier: 08:50:D4:10:C6:F8:6B:F1:63:66:78:CE:7F:89:F4:62:8A:75:90:07
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 430DFB8A9FFF46F862413F88DCC3BC2171E56B1A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:35 +0000
ROA not before: Mon 26 Sep 2022 07:56:35 +0000
ROA not after: Mon 25 Sep 2023 08:01:35 +0000
asID: 59282
IP address blocks: 2400:d680:112::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:0d:fb:8a:9f:ff:46:f8:62:41:3f:88:dc:c3:bc:21:71:e5:6b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:35 2022 GMT
Not After : Sep 25 08:01:35 2023 GMT
Subject: CN=0850D410C6F86BF1636678CE7F89F4628A759007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5f:94:8d:ee:9b:5f:7b:f6:ef:37:a2:9b:9e:
10:fa:01:29:1c:1a:96:2b:6a:96:7c:36:63:b7:99:
33:0f:a6:b0:17:84:2c:7a:b0:80:82:4e:d9:a8:5b:
45:b2:00:28:dd:b4:85:e4:44:7c:45:0d:b2:5a:63:
40:a9:67:d5:47:c1:1e:33:9b:2c:7b:7b:37:2f:94:
36:bf:b9:2e:0f:87:2d:af:af:17:70:51:a6:ca:05:
44:b5:bf:01:5f:99:aa:eb:05:a4:2d:b8:de:9a:08:
a2:27:68:44:c0:3c:9b:48:bb:19:3d:91:fc:9f:66:
ff:14:c4:4f:b5:a4:fb:7b:31:aa:0f:2d:dc:53:58:
20:1e:cc:0f:7c:22:db:7d:56:7b:40:f1:0e:de:75:
d1:e5:22:92:77:d7:fd:9a:18:5b:2b:5b:a6:12:0b:
cc:45:b7:cb:e6:e3:86:dd:db:f1:16:3d:23:dd:f0:
3e:bb:13:d7:38:8d:11:87:dc:91:39:b3:56:e6:a7:
50:14:f4:93:ec:ec:0f:fb:b1:32:78:ab:ad:df:5b:
09:79:c9:7c:82:5f:48:75:96:ea:34:b0:43:ac:ff:
60:a6:99:d1:95:34:00:1c:d1:d7:ea:db:5a:74:8e:
9c:fd:36:81:86:bb:2b:74:69:a4:25:30:f2:dd:d4:
5d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:50:D4:10:C6:F8:6B:F1:63:66:78:CE:7F:89:F4:62:8A:75:90:07
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:112::/48
Signature Algorithm: sha256WithRSAEncryption
c8:b0:8e:65:0c:bb:7a:03:f1:27:32:ff:e6:ec:19:d9:6a:39:
3e:10:bd:13:c2:13:bd:d1:9d:0b:fe:c0:d5:36:ca:e5:7a:ca:
3f:a0:76:a7:2f:c5:8f:ee:8d:54:03:54:4b:b6:6a:21:2c:e2:
51:0d:54:73:46:94:cc:59:ae:ff:68:30:59:d6:ae:5f:aa:fe:
6a:7b:89:09:60:29:27:46:26:35:9a:2b:ea:9a:78:f6:ce:c3:
bd:38:93:d5:63:ef:de:a7:57:bc:91:0a:da:d1:9f:34:46:b6:
a3:95:92:44:1b:35:1c:9f:00:7a:8e:9e:26:14:49:bb:6e:5a:
cf:6b:5c:cc:ac:b8:61:19:60:7e:4d:1a:2b:5f:ab:00:e6:5c:
9c:f4:cf:55:93:f4:e8:98:08:75:ad:76:fd:18:41:b8:4b:9f:
ba:6c:44:25:b9:4c:b4:e7:42:2f:f5:03:8e:fc:3d:7d:51:02:
98:0c:17:7a:94:b8:de:8b:1d:72:30:ef:4a:50:28:02:11:7d:
6c:93:55:c5:30:46:05:37:fb:10:d6:80:b7:54:5c:b1:d9:a5:
17:77:26:cf:e8:b5:b5:bf:9e:28:62:3b:56:08:b2:f6:b5:3e:
ff:03:53:a1:48:94:7d:98:c1:79:5c:07:de:4c:2a:e0:67:dc:
60:2b:16:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org