Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3133333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hbm+UWHnkevmSM3kF6ebem3q3hhAFYZDcMO6BhRRPBc=
Subject key identifier: 92:2C:E0:BD:F5:BB:9B:F2:98:03:48:85:4F:E1:3E:99:FA:E6:D6:80
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 78FF3B207065540642341C2BBB536564D12A19FF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:46 +0000
ROA not before: Mon 26 Sep 2022 07:56:46 +0000
ROA not after: Mon 25 Sep 2023 08:01:46 +0000
asID: 59282
IP address blocks: 2400:d680:133::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:ff:3b:20:70:65:54:06:42:34:1c:2b:bb:53:65:64:d1:2a:19:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:46 2022 GMT
Not After : Sep 25 08:01:46 2023 GMT
Subject: CN=922CE0BDF5BB9BF2980348854FE13E99FAE6D680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6e:1b:d8:a4:15:ca:51:a1:22:58:70:b6:c0:
8d:fb:7b:50:26:54:ea:ad:1e:4d:3d:23:d9:15:b7:
55:6d:8f:eb:ce:75:76:d0:68:d8:f6:fd:4d:0f:8a:
ee:e0:7c:6c:16:5c:e6:d7:f6:71:1c:51:34:76:fb:
02:22:9d:d4:a9:bb:d8:ec:72:2b:c3:91:3d:05:23:
ba:2a:15:dc:ec:78:b2:9a:96:d0:09:30:e7:14:c7:
6d:5b:d9:d7:f8:03:77:8f:d0:2a:33:60:4d:fc:63:
b7:fc:ce:5e:6a:26:e6:3a:23:4c:90:86:b1:2d:2a:
ac:b6:b5:18:6b:cc:ea:48:2f:41:3c:87:54:1e:99:
e2:84:d2:3f:2b:92:4d:2f:0c:0a:96:79:9c:7a:16:
e9:77:6f:d8:e8:81:e9:54:b0:1e:56:58:b4:44:2d:
b7:b3:42:59:90:70:a8:ff:11:94:3c:8f:24:ce:59:
98:88:4e:ba:6d:9b:4b:93:9f:96:9a:6d:db:04:d9:
8c:c1:40:70:d9:95:03:8f:6e:22:2a:f3:b9:9c:a6:
7e:c1:b1:2c:10:54:5f:9c:29:b0:c3:48:92:16:d0:
06:a3:6f:03:cb:65:00:ec:5a:ca:f1:0a:ad:c4:17:
d3:55:19:30:3f:11:e5:5e:72:f0:f3:1e:bd:05:fc:
a8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2C:E0:BD:F5:BB:9B:F2:98:03:48:85:4F:E1:3E:99:FA:E6:D6:80
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:133::/48
Signature Algorithm: sha256WithRSAEncryption
3e:a0:a2:d8:44:9a:c0:d7:8c:83:43:eb:a3:8b:8f:37:ad:23:
ae:2d:5f:9c:27:f5:b0:9a:23:35:6d:3a:9a:84:96:6a:03:e0:
dc:2b:32:da:9f:b1:db:e5:06:90:d3:a6:06:f1:8d:2f:d8:6c:
e7:51:20:a9:61:80:06:27:4f:01:0d:ed:ee:b2:e3:53:c5:68:
52:ab:ea:72:cd:ce:30:dc:c4:37:bc:05:e7:1c:21:23:a3:02:
94:06:2d:b0:7d:57:db:86:e6:bc:1a:db:09:16:a7:6b:7d:0b:
1b:0b:46:20:93:83:23:3a:52:d6:11:90:42:bb:b4:f5:28:9e:
82:89:60:9b:9d:87:90:36:c9:df:df:69:41:89:84:b1:8b:a6:
41:d9:d0:c8:0a:59:87:60:01:2a:52:85:30:2a:13:2e:2d:dc:
70:e8:c3:7c:d1:eb:77:01:a6:ec:77:bf:41:3e:d3:50:ef:ae:
92:f0:dd:ba:98:7f:e5:a2:0c:33:c1:a1:a3:9d:0a:18:ef:20:
f6:b7:06:10:30:b1:50:ed:6e:f2:aa:02:1e:49:23:99:66:8b:
29:a9:f9:ed:34:8f:9b:7e:66:7a:ca:c6:e8:b0:1c:a7:33:58:
0b:38:49:2e:06:0b:cb:11:2d:94:d4:7b:43:8f:90:a4:c9:5b:
8e:b1:18:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org