Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: CoBQiiIuTPSRM9Rf/L9PbVoqDCb166jkWyWyzC9Yg+k=
Subject key identifier: 21:64:F8:24:EE:F0:6A:45:9D:A8:53:29:B3:FA:FD:5B:24:82:81:FA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4AD9392E40A8369053D0F40E3A3D60F38E6A32F4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:07 +0000
ROA not before: Mon 26 Sep 2022 07:57:07 +0000
ROA not after: Mon 25 Sep 2023 08:02:07 +0000
asID: 59282
IP address blocks: 2400:d680:17b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:d9:39:2e:40:a8:36:90:53:d0:f4:0e:3a:3d:60:f3:8e:6a:32:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:07 2022 GMT
Not After : Sep 25 08:02:07 2023 GMT
Subject: CN=2164F824EEF06A459DA85329B3FAFD5B248281FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b1:d6:6f:f3:99:a7:b2:8d:11:c1:8b:96:a3:
30:55:cf:cd:e0:4d:2b:d4:bc:67:25:fc:ea:8f:a2:
f3:26:a0:b1:8f:75:a5:1e:bf:e5:53:a7:ff:1d:91:
c0:ce:c4:f3:ce:68:c7:cb:3c:cd:73:b1:a1:de:56:
a2:17:c8:27:e9:22:9a:f2:2f:15:e0:eb:6b:4c:41:
92:d1:e4:6c:7f:91:6f:6d:a7:b4:b1:cf:b6:c9:6c:
d7:30:24:7d:f0:48:1b:3c:35:a2:13:10:47:1b:56:
53:ca:f2:91:04:9c:52:e5:6c:4f:9d:a4:cf:b8:a6:
eb:be:57:0b:8d:16:a0:92:9b:3f:bc:f5:8f:be:b5:
61:44:70:b9:d3:df:2f:03:95:be:b9:40:22:51:b1:
2f:aa:f5:5c:aa:9c:c6:37:96:d5:d2:ab:f1:b1:12:
03:43:41:73:2e:c7:e1:14:95:c3:43:c6:a1:c2:9d:
0f:2b:d8:8b:b5:67:b9:6a:07:63:3e:48:a2:40:5b:
94:fa:a4:3d:22:df:cc:a9:e0:5e:dd:f8:0c:7a:75:
4d:e9:50:73:5c:db:39:db:37:69:9d:b4:df:65:e4:
be:89:7d:31:62:15:00:24:70:5b:00:90:1d:c0:a9:
16:01:b2:3d:6f:fc:a0:ef:be:8c:93:3f:73:c4:54:
7a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:64:F8:24:EE:F0:6A:45:9D:A8:53:29:B3:FA:FD:5B:24:82:81:FA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:17b::/48
Signature Algorithm: sha256WithRSAEncryption
4f:11:e3:48:e0:20:26:c2:ae:b1:23:dc:7e:a1:48:03:5f:6b:
ad:8b:02:6d:c6:e2:dd:11:a7:3a:e0:26:be:1c:4a:98:2c:eb:
fe:74:a4:45:30:42:a2:e0:73:11:ab:5c:a6:35:be:a2:67:52:
2d:0d:5a:fe:b7:20:c6:2d:a8:ee:4a:33:1d:6c:7a:d5:36:4d:
6f:98:ff:61:ef:4d:39:35:a6:76:f0:d9:8c:bf:f8:52:39:44:
aa:64:98:c7:eb:ce:f7:ba:6d:f4:d1:12:e8:23:ea:bf:7e:69:
6d:61:58:c5:eb:58:e1:4c:6e:6f:2e:fd:f9:69:3d:57:5e:18:
4a:72:d6:5a:7c:2c:82:36:e4:f3:77:c5:f9:4c:99:ec:3f:17:
47:54:cb:36:84:10:89:4a:bd:96:da:be:83:d3:3c:e3:87:15:
7b:9b:b2:6c:0a:44:eb:1d:25:88:c7:81:c1:0a:69:a1:e7:34:
d3:fe:da:09:de:79:b0:b2:96:67:ea:a2:69:43:c2:62:62:f1:
94:b3:6e:fe:f5:08:b8:f6:1b:a0:a5:b5:a9:0f:72:46:4d:a6:
12:0a:1b:1c:2d:4a:e5:68:a6:8e:70:5d:a2:69:61:d2:ef:df:
df:ed:27:84:df:91:0a:8a:96:1f:13:5b:19:f9:04:4a:a9:e9:
73:e3:72:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org