Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LkXzuYVjC4zQWNrn65GO7UtxZoCgdkkYTWXJbJFvsCE=
Subject key identifier: 47:69:E2:FB:1A:21:F2:46:4F:E5:3D:57:D6:9F:88:EE:B4:F3:55:C4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1D3781D7AC74A0E0A618C18448D5146CECD5B86C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:21 +0000
ROA not before: Mon 26 Sep 2022 07:57:21 +0000
ROA not after: Mon 25 Sep 2023 08:02:21 +0000
asID: 59282
IP address blocks: 2400:d680:158::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:37:81:d7:ac:74:a0:e0:a6:18:c1:84:48:d5:14:6c:ec:d5:b8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:21 2022 GMT
Not After : Sep 25 08:02:21 2023 GMT
Subject: CN=4769E2FB1A21F2464FE53D57D69F88EEB4F355C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a0:cf:8a:d8:40:2e:9e:44:72:a5:b2:99:90:
e4:af:74:fc:94:9c:e5:23:a8:bc:c4:4b:dd:89:6c:
c0:c5:b0:9c:a2:fc:8b:c2:61:63:7d:9b:e9:83:c8:
4c:ba:b4:b3:c2:68:a6:4e:1d:44:05:75:22:06:34:
ef:ce:64:8f:2f:6b:56:3b:8d:84:e7:f1:af:a8:4c:
ba:47:4c:ee:53:7c:be:f8:0f:33:e3:09:3b:05:eb:
77:43:d3:1e:7a:c4:f3:5d:d6:7c:f7:0d:70:c7:f1:
77:9a:e8:b3:7c:04:3a:63:aa:10:c5:4c:02:f3:12:
9f:d0:66:50:08:4c:94:a9:6e:87:67:40:72:a9:7e:
e6:13:bc:d9:99:c2:ea:6d:2d:59:00:3e:0b:e4:3c:
3a:76:06:94:11:e7:95:2c:c1:3d:12:a2:0d:6e:74:
3e:e4:25:92:dd:05:f3:d1:0b:d7:5b:b4:f0:4c:4d:
b6:02:64:c8:f2:75:86:71:39:0d:de:8d:cd:ff:58:
cc:78:93:d2:40:19:a0:89:5c:5c:f9:35:00:10:19:
ae:92:2d:22:b5:86:29:45:78:a7:9c:27:f5:f4:88:
df:82:21:91:1e:0a:a0:ed:40:dd:11:f6:06:da:b2:
c8:17:d7:55:65:38:80:ed:32:45:aa:73:ba:87:a7:
95:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:E2:FB:1A:21:F2:46:4F:E5:3D:57:D6:9F:88:EE:B4:F3:55:C4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:158::/48
Signature Algorithm: sha256WithRSAEncryption
5b:66:15:b4:b8:ce:8a:6a:b3:09:68:e3:19:71:bb:19:de:dd:
b4:92:ed:55:90:a4:7c:c4:c6:4f:a1:fd:b5:35:88:d1:04:4b:
f5:a5:67:ad:f7:8a:f4:fd:be:fe:80:ec:c0:5e:01:3b:cd:e6:
64:e6:1f:6b:07:06:57:7e:71:19:d7:90:e9:f5:b8:e5:8b:22:
f3:08:7f:b7:5a:90:71:74:1b:ed:1c:ff:63:bd:be:60:4c:26:
72:e3:3f:10:66:02:48:2c:83:90:df:eb:ad:79:18:4c:28:48:
72:2c:a7:cf:4e:06:73:dd:8d:44:0b:ac:d6:9b:be:36:d7:1f:
99:97:67:3d:14:f0:89:f6:db:88:55:92:e9:79:77:61:b7:d0:
e6:8e:59:b9:7e:7a:75:0d:8f:de:47:55:74:b5:54:2c:87:87:
a5:7d:3e:a8:ec:67:35:04:36:c5:dd:96:8e:5d:cd:e4:30:25:
29:7e:2f:fb:6f:3a:af:f0:23:e0:d6:0c:c5:d6:09:24:57:60:
09:ba:a6:78:84:06:ca:1d:aa:eb:5a:3c:ec:8d:2e:f6:fe:be:
2d:8a:76:0b:da:5d:8c:7a:ca:d3:77:3a:a2:2a:76:a0:06:17:
7e:84:09:58:9c:f5:84:d7:ee:5e:25:1d:fb:ca:78:2b:2c:0f:
a3:47:63:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org