Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: DfdTwevyNmuGHLtSYe5uHVYNyXJhVYj1gOslG6xNT3A=
Subject key identifier: 8C:96:49:A2:3A:B4:25:23:57:30:31:4A:87:12:A2:01:12:75:53:C3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6BBADA37045D9CEC49A1C940118674166392992B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:19 +0000
ROA not before: Mon 26 Sep 2022 07:56:19 +0000
ROA not after: Mon 25 Sep 2023 08:01:19 +0000
asID: 59282
IP address blocks: 2400:d680:166::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:ba:da:37:04:5d:9c:ec:49:a1:c9:40:11:86:74:16:63:92:99:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:19 2022 GMT
Not After : Sep 25 08:01:19 2023 GMT
Subject: CN=8C9649A23AB425235730314A8712A201127553C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:53:37:d6:06:b0:4a:b1:91:b5:54:dc:c3:1a:
41:d7:cb:1b:58:27:a9:76:37:78:46:5d:fd:5d:18:
46:35:e7:4b:63:fe:b9:73:86:6f:67:71:46:44:21:
95:90:3e:cc:69:43:65:1d:fb:6a:49:6d:e6:52:7d:
42:19:39:08:8b:ba:dc:91:ea:db:47:4f:e4:97:fe:
d4:89:a1:e5:76:c4:89:66:ee:01:bd:f6:4d:d1:0a:
e9:7e:1d:58:54:61:14:36:c1:b1:01:f0:97:58:4f:
9c:6c:30:c8:00:e6:19:0c:13:f8:68:e9:67:13:25:
c2:39:13:1c:e8:ee:94:8e:7c:ee:7b:83:31:e9:c7:
e0:d6:d7:ed:15:9d:91:6a:88:c9:0c:f4:5f:53:22:
9a:0b:08:3b:16:33:ed:42:8a:28:62:88:75:65:9c:
e4:d6:75:06:ed:b1:5f:64:38:d8:76:b5:40:5f:1a:
a5:3c:c7:14:35:42:05:c8:3a:11:ed:ff:9c:63:b4:
0c:9e:41:04:84:0a:1c:33:3e:8a:a5:8b:af:77:3d:
c6:6d:c2:8d:c2:44:87:9b:e5:c9:38:d9:88:9d:e6:
ff:b5:17:18:f3:4f:d4:a4:0d:86:b4:b5:94:ef:53:
c5:57:bd:2e:56:2c:f9:c2:e2:8a:26:db:bd:f8:3f:
7e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:96:49:A2:3A:B4:25:23:57:30:31:4A:87:12:A2:01:12:75:53:C3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:166::/48
Signature Algorithm: sha256WithRSAEncryption
c5:c0:e0:ed:e0:31:63:b8:6d:7b:d9:73:92:70:11:34:7e:c6:
f1:0b:23:23:1c:07:f2:04:d5:97:92:e0:38:ec:a9:f4:10:43:
ee:65:14:8b:9e:4c:5a:85:e8:dd:da:b4:0b:7a:7e:08:96:93:
cc:20:5f:8f:9e:60:17:55:39:22:37:75:f6:14:4b:2a:20:fc:
d7:1c:f3:3b:88:c4:a9:ef:22:d5:f2:94:66:ea:6a:e8:7c:2c:
1f:34:31:52:ed:28:bd:0d:00:92:d6:9b:20:6d:bc:50:4b:22:
5a:d1:45:3b:ba:71:58:f2:15:76:1c:3e:07:df:f1:6f:15:56:
f9:5c:8d:42:76:30:0b:ae:ee:7a:8c:15:24:20:47:66:f2:71:
d1:a6:e2:03:8a:cf:7a:de:c7:1f:f7:04:83:f6:53:98:56:8a:
fc:65:8f:92:ab:fe:b2:35:27:99:67:4b:b2:fc:66:72:a7:84:
67:06:f6:92:78:ca:89:57:18:c1:24:57:0a:b2:f7:8f:5b:be:
4a:e0:50:c1:0c:71:3f:6d:bb:cd:82:af:10:ea:83:14:a3:e9:
80:e9:27:39:1e:1e:1b:14:ea:7c:be:4e:38:45:f0:84:79:d5:
91:13:3a:93:f1:a2:27:69:2e:13:41:23:a3:4a:5d:4f:84:f2:
18:88:0e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org