Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3133363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LYoUHZr8P/jhFE/oxlPZdXkPs6G5nRlmXFItqSVNQv8=
Subject key identifier: 46:FC:FE:06:9A:F4:58:A5:09:36:0B:1D:D1:3D:80:5B:00:5B:63:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 71B1CAE0BD3BB87B2BA83E40D7B11C449828EEED
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:44 +0000
ROA not before: Mon 26 Sep 2022 07:56:44 +0000
ROA not after: Mon 25 Sep 2023 08:01:44 +0000
asID: 59282
IP address blocks: 2400:d680:136::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:b1:ca:e0:bd:3b:b8:7b:2b:a8:3e:40:d7:b1:1c:44:98:28:ee:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:44 2022 GMT
Not After : Sep 25 08:01:44 2023 GMT
Subject: CN=46FCFE069AF458A509360B1DD13D805B005B63DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:60:2e:97:ab:8b:5f:4c:3d:df:ff:28:12:74:
d7:45:f0:19:6d:6e:9a:38:62:81:fb:3f:05:58:c8:
f8:97:61:0c:4d:0d:28:24:5a:81:85:6c:a2:1e:76:
7f:a6:84:c2:ee:29:ea:60:d2:fc:1c:68:e0:56:9e:
c1:d8:e2:42:c6:c6:82:90:3a:fc:55:a1:0b:3b:26:
4c:b1:2a:f7:d4:11:33:27:0d:bc:a3:f2:89:b8:42:
81:8a:1c:0a:0f:15:9b:fe:9b:c1:ec:85:8e:eb:da:
65:50:5a:e0:7c:cf:f1:2d:d2:30:3c:93:1b:63:4b:
0c:8f:f5:9e:81:59:57:6e:aa:62:ed:33:59:2a:1a:
df:fe:7a:42:9d:f5:02:9c:12:df:d3:e7:ab:61:07:
0e:e3:6d:b0:55:a9:22:fd:49:37:f3:e8:fd:82:8d:
f3:71:19:26:84:6d:0b:f7:dd:8c:15:30:2d:09:db:
a4:f8:22:f5:be:74:1e:c8:d5:bc:51:22:70:42:e8:
4f:6b:51:57:3a:14:b8:f7:63:ad:5c:a3:ca:88:df:
36:72:c5:ce:30:8b:2b:0f:45:ca:ee:97:9a:80:9d:
6c:bc:f0:d2:e7:90:33:09:3f:6c:99:24:a3:d0:39:
84:ce:e2:fd:84:6d:01:84:7a:f2:22:30:dd:b1:f7:
18:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FC:FE:06:9A:F4:58:A5:09:36:0B:1D:D1:3D:80:5B:00:5B:63:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:136::/48
Signature Algorithm: sha256WithRSAEncryption
c7:a9:d0:36:5b:a2:fe:b6:35:33:33:0d:30:e1:0f:2d:9a:4c:
ea:72:27:2a:1f:dc:6d:64:bd:c0:49:70:6b:16:bd:26:4b:02:
da:04:c3:3b:b1:9b:7c:54:1c:dd:a1:48:c5:68:a7:37:42:a5:
26:4f:6b:f9:a6:1f:83:60:09:91:c0:0e:67:46:4f:cd:68:73:
f3:cc:38:19:5d:0c:e5:90:ee:18:f8:dc:8a:86:67:70:ed:42:
10:30:f9:cc:cd:30:8c:7c:3a:91:49:f0:cb:3a:03:be:a7:c9:
0e:8e:f1:f4:e9:cc:47:6d:a4:07:2d:e3:f5:c2:44:f5:08:07:
fc:00:83:14:dd:cf:7e:5b:e6:93:51:6d:aa:12:3c:79:28:60:
f4:58:fa:6c:7d:52:d1:b7:d2:83:60:91:6d:6a:28:c1:09:07:
1e:93:cf:5b:11:63:ff:53:61:4f:78:9c:6b:7c:61:9d:2d:5e:
40:06:fc:85:30:0d:64:9d:5a:09:39:7a:5d:c6:46:74:94:20:
12:48:e7:42:91:62:01:20:75:4c:ee:90:72:4b:e2:12:32:f0:
ef:a8:78:9b:70:67:46:4c:57:fe:02:04:34:f8:1b:17:bb:6b:
78:df:e3:6a:35:12:b6:89:83:90:99:1b:ec:26:d1:56:a9:35:
48:4d:d2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org