Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3133623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: t6TedrgBbTbEbfMOGKoXQDIqL0KECa2LTf4hL1u9IzY=
Subject key identifier: CE:60:18:64:97:0B:11:A5:CA:CA:67:2F:6A:F3:02:CE:90:B0:AA:76
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 368E1FC9B661A6F9C944EFE6BA06E03F40A97200
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:56 +0000
ROA not before: Mon 26 Sep 2022 07:56:56 +0000
ROA not after: Mon 25 Sep 2023 08:01:56 +0000
asID: 59282
IP address blocks: 2400:d680:13b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:8e:1f:c9:b6:61:a6:f9:c9:44:ef:e6:ba:06:e0:3f:40:a9:72:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:56 2022 GMT
Not After : Sep 25 08:01:56 2023 GMT
Subject: CN=CE601864970B11A5CACA672F6AF302CE90B0AA76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:31:7d:08:f6:7b:6a:88:c3:71:74:b8:8e:cf:
96:f3:ac:b6:ab:02:09:fd:4a:20:3c:9d:92:0e:13:
23:f1:59:7c:e5:dc:f6:12:f5:cb:86:e6:4c:61:af:
09:20:f5:de:b6:13:aa:9d:ab:76:89:b4:72:10:4e:
67:d8:ae:b8:e5:31:73:ef:39:ae:fe:15:9e:47:55:
be:23:11:e2:2d:87:53:49:6a:4e:9d:a7:11:ac:96:
97:6b:ac:78:15:ca:ad:38:97:8e:92:9a:69:da:1e:
8b:08:0d:c0:c5:df:28:62:0a:25:6d:8d:d9:7c:33:
5d:f6:6b:eb:50:2b:38:c2:4f:a1:4a:a9:62:5d:bf:
68:6c:ea:9b:f5:37:41:fa:9d:49:73:d2:09:24:b9:
38:79:99:c3:65:be:7b:e0:57:9e:26:3e:55:f1:a2:
ea:89:a6:49:8c:f1:42:4a:ec:9f:07:a5:d7:df:c2:
7d:af:12:64:40:d5:ca:40:34:a1:71:fa:02:60:e4:
b6:5f:4e:fb:5d:e7:97:d6:ab:68:6a:bf:46:cc:7e:
47:af:1e:bc:73:85:b0:e0:5d:1c:bd:24:4b:f5:30:
46:f5:50:4c:e0:9d:c9:3d:6e:c7:6f:ea:7f:72:88:
98:aa:fc:95:25:16:d1:e1:6c:0b:b6:af:73:53:62:
ed:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:60:18:64:97:0B:11:A5:CA:CA:67:2F:6A:F3:02:CE:90:B0:AA:76
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:13b::/48
Signature Algorithm: sha256WithRSAEncryption
34:c9:2e:c4:fa:0f:31:68:51:62:7b:23:dd:64:8f:30:d3:88:
17:99:36:0e:7e:00:06:85:98:ea:a6:c8:3f:d6:96:73:0b:31:
aa:c2:7a:8e:9f:88:de:bf:f0:46:b2:83:53:43:01:ea:ab:26:
33:6e:fd:a2:0c:1b:73:ea:d7:cc:17:db:cd:ce:2a:3b:43:91:
08:8f:48:a2:54:8d:5a:db:b9:b1:fb:99:3e:5f:03:e9:bc:28:
c2:1a:ac:18:d7:28:e1:c5:fb:12:3e:36:c7:33:ce:65:35:5e:
b3:05:df:b1:ef:fe:c7:c2:6a:5b:36:d8:e3:36:8d:98:da:50:
01:7b:98:5f:c5:f5:15:24:f5:30:fb:cf:b4:a7:a2:86:66:6f:
b2:88:40:f1:bd:f8:44:12:5d:4e:7b:7f:bc:9f:4d:3e:c9:c9:
4d:00:42:fc:d8:a3:87:a1:23:22:47:b3:50:d7:30:f3:33:81:
3f:c2:be:d9:98:44:e7:2b:fc:47:a4:b7:b6:be:91:62:8f:8d:
12:28:73:e2:71:18:ef:2f:e3:f7:96:ea:df:2a:ab:73:9c:39:
79:1c:40:37:32:dd:21:d7:54:1e:06:a5:7d:df:2d:ca:e9:78:
2b:51:34:a1:6a:cb:69:2b:fc:97:5a:48:bb:24:73:45:33:87:
b4:c8:56:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org