Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: CBsTHl88xl+YqKUi+tmzGRAL3CF4uGJnQGnnrqXZoDo=
Subject key identifier: 61:81:78:EA:FF:3C:9A:D2:43:F1:47:4D:72:AE:48:3A:A6:31:E5:53
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0F33FC31718185AE9B25538958C6C5033272F88E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:27 +0000
ROA not before: Mon 26 Sep 2022 07:56:27 +0000
ROA not after: Mon 25 Sep 2023 08:01:27 +0000
asID: 59282
IP address blocks: 2400:d680:163::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:33:fc:31:71:81:85:ae:9b:25:53:89:58:c6:c5:03:32:72:f8:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:27 2022 GMT
Not After : Sep 25 08:01:27 2023 GMT
Subject: CN=618178EAFF3C9AD243F1474D72AE483AA631E553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:37:3f:49:9f:7f:d2:6a:60:b3:92:83:16:2c:
7e:3e:9e:82:38:ce:cb:a8:8a:01:fa:f7:5c:88:62:
32:d2:7a:43:f9:28:d4:35:16:35:c2:c0:c3:c1:ae:
96:2b:d5:6f:e5:c3:0c:74:7b:eb:4d:47:d9:47:57:
24:38:c5:5d:1e:87:94:ec:16:25:63:5e:19:f9:43:
0a:6b:45:e0:9e:c2:5d:8c:ff:29:42:f1:01:e4:b5:
8f:d8:22:a8:2b:6f:60:ae:02:21:21:4d:3c:a4:23:
bf:b6:57:c4:51:f1:72:d2:16:ba:c8:0a:32:01:1e:
3c:d0:c9:c0:96:28:2f:a7:63:2c:8a:16:6e:9b:db:
02:7a:8a:75:66:29:57:7e:a2:cd:4f:cc:8e:1f:a4:
99:7d:0b:9f:23:80:c3:44:e4:74:df:1a:18:6c:ca:
7f:49:92:3c:aa:e7:8f:d7:40:14:c0:4f:df:58:fa:
18:33:25:58:07:c3:78:25:c0:f1:e5:21:51:a8:74:
0f:8f:79:ca:38:c9:fa:28:4c:bd:33:4f:94:d1:db:
ca:aa:53:fc:48:3a:c5:aa:f8:eb:5b:7e:be:a9:81:
f6:7f:6b:2e:e5:2d:4f:75:81:86:9b:43:bc:85:45:
e3:50:d9:f2:a4:ad:f3:83:d5:c4:2d:ce:5d:27:34:
78:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:81:78:EA:FF:3C:9A:D2:43:F1:47:4D:72:AE:48:3A:A6:31:E5:53
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:163::/48
Signature Algorithm: sha256WithRSAEncryption
55:e0:d0:85:bf:ab:4e:2a:f5:7c:cd:58:74:41:dc:a4:41:fc:
c9:33:47:2f:67:dd:e2:44:b8:39:93:d2:2e:36:02:89:59:67:
6e:31:02:c4:f7:e1:cd:47:34:81:d7:a8:f4:ba:95:3d:7d:84:
65:95:32:bb:08:bc:49:4d:6e:f5:0d:90:58:12:12:58:80:71:
c1:fe:ed:46:7f:1a:64:8e:c1:a1:c2:46:ed:5c:f3:f4:42:8f:
6b:ae:80:be:97:7a:0b:d9:97:01:cb:83:fd:2a:9f:c1:e1:ce:
16:5e:da:fb:2e:7d:41:0a:79:70:f4:51:ab:1e:96:a9:9f:4f:
b8:0c:01:20:79:05:15:47:b0:b3:0e:d6:ea:24:ef:e0:fd:05:
a9:74:c3:1a:e1:d6:ad:52:9c:d6:bf:17:93:43:2c:73:62:2c:
84:1b:ef:2f:a6:46:e6:d5:a3:15:a0:cd:bb:5f:c4:b7:02:fb:
a5:02:8e:29:60:46:9a:37:e6:cf:63:fe:35:2b:5f:d6:d2:b3:
2d:50:ec:92:2e:4c:3f:77:a3:41:38:b5:78:a0:71:78:f3:81:
47:5d:33:c4:7a:cf:e1:9b:09:be:6c:83:17:13:74:64:c3:87:
73:03:8e:f5:d9:c5:d9:15:c3:f4:8b:76:a2:c3:75:7d:4f:97:
9d:ae:34:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org