Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: kOf8SimTjsqZRlWHhhZtxbyabQ+DCg4DJGF74tlcEFA=
Subject key identifier: 21:48:AA:ED:5C:0B:A8:06:84:26:A4:ED:D0:8E:D0:92:97:5F:7E:2B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1A74D1773BC88789697F90621BB8A2D17CA23116
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:56 +0000
ROA not before: Mon 26 Sep 2022 07:56:56 +0000
ROA not after: Mon 25 Sep 2023 08:01:56 +0000
asID: 59282
IP address blocks: 2400:d680:165::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:74:d1:77:3b:c8:87:89:69:7f:90:62:1b:b8:a2:d1:7c:a2:31:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:56 2022 GMT
Not After : Sep 25 08:01:56 2023 GMT
Subject: CN=2148AAED5C0BA8068426A4EDD08ED092975F7E2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:07:4c:86:8d:be:92:d0:3f:37:0e:0f:02:31:
a9:02:93:e6:7d:18:01:53:f6:fe:3c:92:f6:5e:bf:
3d:74:97:b3:6b:a9:1f:1c:04:22:de:c8:dc:2c:7d:
0d:78:ba:42:90:6d:8a:ba:75:51:a1:a8:d3:fb:bb:
07:09:99:c8:24:b6:b8:fb:3e:04:97:d7:d8:ea:d2:
d7:63:bd:b0:26:ce:63:1b:4e:5f:4f:1c:d7:7b:a0:
ee:25:e7:e0:51:bb:62:ff:b3:41:1a:bc:52:5e:be:
6a:69:c4:9d:0a:1f:48:a8:40:18:aa:22:aa:19:21:
4e:45:82:f8:b2:8e:98:b4:23:09:43:df:94:ad:4a:
6c:75:b2:c5:4f:3d:2c:51:88:05:d0:4b:96:82:3b:
12:10:30:a7:18:29:f5:f3:ab:bc:fe:45:fc:74:fd:
79:5a:c3:3d:45:0e:84:b0:f4:67:53:16:76:75:07:
fa:f1:d1:03:70:d2:de:61:c6:4e:b7:7b:84:63:b8:
fb:37:ac:9d:a8:90:90:2d:a2:e4:0b:d8:6c:2f:c6:
2d:31:e8:38:c8:6e:ed:c2:c3:e8:31:d6:0b:83:7d:
47:40:7d:f1:96:22:b3:fe:2e:1e:11:72:9c:35:97:
4f:a3:10:22:55:ca:46:de:cf:93:4a:b6:9a:eb:08:
84:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:48:AA:ED:5C:0B:A8:06:84:26:A4:ED:D0:8E:D0:92:97:5F:7E:2B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:165::/48
Signature Algorithm: sha256WithRSAEncryption
d1:bf:2f:02:d3:9b:87:31:9a:f6:48:46:9f:01:5b:0e:f4:18:
e5:bc:23:a1:5a:47:cd:6e:c1:62:cf:5d:2f:f5:64:7b:25:63:
4a:bc:37:18:0d:d9:49:c0:3d:8b:ee:fd:f9:03:4f:bd:44:15:
2d:cf:0b:d0:c2:1d:7b:c2:db:16:b5:ad:6e:0e:a1:ea:0c:d6:
9e:f6:8e:a3:0d:98:b2:b5:e1:fc:aa:88:dd:b7:20:17:81:eb:
5d:ae:d5:dd:3c:64:05:12:2b:bc:7d:ef:b5:fc:50:87:c0:86:
50:a7:2d:95:aa:af:bf:6b:83:42:a6:08:49:ae:8a:e7:55:04:
1e:3c:26:f8:d6:35:21:17:01:3d:c6:4e:b4:84:2d:90:17:c2:
24:1f:12:a2:fe:4f:c6:c4:c9:9e:1f:33:8f:18:7b:bc:84:22:
78:9f:69:91:4f:6e:76:ed:92:74:d0:90:e1:e2:50:c9:2f:b8:
81:b4:32:38:60:42:39:44:de:23:e5:00:df:60:e8:6e:de:45:
9f:e6:9b:dc:23:c9:2a:7b:96:01:f6:9b:67:f5:e1:d2:65:03:
ec:04:65:40:cb:1c:0e:5a:a9:1e:c7:14:1a:3c:e5:4f:09:74:
c7:74:f0:fd:71:7c:4b:34:37:ff:9d:22:a8:1d:62:28:b2:26:
ca:ba:88:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org