Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3131333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: p94hyfxncZaBtMk+3sHZWFa4ob93CNWJLo3Z4w6D9Ms=
Subject key identifier: 8B:2F:25:CD:9E:D8:F2:00:2C:7B:37:B3:F4:A7:1C:AA:08:E7:A4:59
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 26A64E7E02B81A5A054F64A96E839706FDDCF155
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:20 +0000
ROA not before: Mon 26 Sep 2022 07:56:20 +0000
ROA not after: Mon 25 Sep 2023 08:01:20 +0000
asID: 59282
IP address blocks: 2400:d680:113::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:a6:4e:7e:02:b8:1a:5a:05:4f:64:a9:6e:83:97:06:fd:dc:f1:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:20 2022 GMT
Not After : Sep 25 08:01:20 2023 GMT
Subject: CN=8B2F25CD9ED8F2002C7B37B3F4A71CAA08E7A459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:78:a0:1c:6f:11:e2:ab:af:7b:40:53:92:17:
37:7b:23:be:1c:98:d3:ce:2e:90:9a:75:cd:e4:85:
2d:a4:7a:02:1d:0a:69:89:c2:a9:5a:9f:bd:39:4b:
2b:71:2d:cb:ee:e3:94:ed:7e:41:d5:bc:09:d2:1d:
c5:01:df:d1:35:21:a9:75:a5:be:07:6c:c8:a0:96:
31:4a:47:c3:81:e2:bd:c3:75:dd:fe:e6:21:ae:09:
8f:6e:42:68:2c:05:9f:ea:b2:b1:a7:f9:f3:b5:50:
06:f4:cb:8a:97:f1:bd:09:35:12:31:e8:c7:b9:3d:
bf:3d:1d:d6:72:d9:ef:cd:87:2e:57:2d:b3:c1:4f:
e8:22:9b:9e:b1:58:0c:7e:53:e9:5b:c1:f7:f4:92:
74:56:30:f5:97:7f:5e:86:71:30:26:92:0d:45:f5:
89:a4:de:b4:4d:04:ff:9a:7a:85:3f:62:94:50:d5:
3b:a7:56:1c:5c:67:70:0e:38:55:c9:a2:16:15:c2:
36:dd:cb:b2:93:53:36:27:2b:5d:ad:a1:0c:67:23:
77:13:3b:82:bb:80:e6:55:a3:d0:e0:76:c2:2c:83:
d9:fb:e2:94:76:bb:72:ec:a9:f5:cd:d3:d0:1a:e8:
31:c2:fb:94:47:42:a8:14:e0:32:01:3d:d2:54:d4:
b3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2F:25:CD:9E:D8:F2:00:2C:7B:37:B3:F4:A7:1C:AA:08:E7:A4:59
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:113::/48
Signature Algorithm: sha256WithRSAEncryption
48:bf:c4:e8:6c:6f:5c:9a:0d:69:03:59:6d:16:a6:18:b1:84:
8f:a9:4c:3b:28:70:57:91:a4:49:14:76:7c:3e:77:87:49:90:
b3:f0:3a:1a:61:41:94:73:bd:8a:e5:ad:80:22:a9:13:fe:72:
84:26:83:68:4b:b3:3f:bb:5f:1d:ed:9c:43:af:d8:99:f2:e3:
89:5e:66:24:38:2c:1d:5c:3d:46:fd:3b:88:09:fa:83:45:70:
a6:07:3b:40:37:ec:a1:d3:26:3c:11:73:e6:0f:c0:3e:12:86:
b0:22:a7:1c:6e:d8:35:ee:29:99:7a:b3:5b:fc:14:82:da:f0:
5e:22:73:12:62:32:e7:cd:87:48:ae:0f:33:d3:62:1a:46:d2:
76:94:cf:dc:a1:62:fa:bd:5f:72:66:9a:2c:46:3e:9d:18:62:
7f:d8:2b:de:fc:dd:3d:6a:e4:52:22:74:3f:e9:16:18:e8:7e:
c6:91:6e:1f:c1:3e:8c:06:59:43:97:eb:0c:65:9b:49:56:b1:
53:76:9b:cb:a0:11:fe:3b:8b:64:f1:19:ec:35:55:16:bc:83:
e7:04:e4:e6:c3:b6:e2:40:fe:26:db:3e:fb:1c:8a:29:2a:cc:
0f:bc:79:ce:0a:55:72:d8:e4:17:83:02:4c:47:1c:a4:c2:a8:
e1:0d:52:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org