Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3138653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: B3gsD8s7MzvPuVLjkTNms+4Xoq1vrr+tEBdjAWyyR/I=
Subject key identifier: C8:13:1D:27:68:08:A4:C4:A9:85:D0:24:01:86:FC:4A:11:E2:45:05
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6B92321E236A710D56812D3D234FBB7DE62717B8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:18e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:92:32:1e:23:6a:71:0d:56:81:2d:3d:23:4f:bb:7d:e6:27:17:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=C8131D276808A4C4A985D0240186FC4A11E24505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ad:75:b7:6d:64:8a:ca:a8:e7:7d:6a:96:c3:
0c:9a:03:c9:12:d2:ee:02:13:c7:94:bc:75:01:0a:
60:74:7f:fb:d7:aa:ed:99:f6:f2:5a:58:68:24:d2:
4d:4a:cd:0c:6b:97:6a:4b:3c:a5:52:1b:5f:ab:03:
11:c1:98:0a:15:e2:4e:ee:f6:92:a3:13:7a:96:f8:
81:bb:d6:5d:18:35:31:6c:5e:eb:60:a4:7f:a9:a9:
42:aa:67:47:e6:d7:1f:e6:68:02:7c:d7:61:e0:7d:
1c:25:b2:22:65:e0:0c:a7:9f:e6:26:a3:4b:85:98:
00:ac:da:6e:83:eb:4f:fd:e9:c7:bc:24:68:74:33:
85:34:87:c9:83:a0:64:5a:c4:63:2c:63:74:6a:42:
27:d0:97:d7:2f:20:b7:a3:e1:09:64:40:89:38:6c:
ce:47:74:31:ab:61:e9:72:44:49:97:17:37:5e:cb:
ba:b7:4d:ec:76:b6:8a:10:92:e6:0f:bc:52:57:96:
0d:61:99:69:0d:09:17:a7:c1:7c:36:2d:9c:99:5d:
b7:a1:d7:db:30:4f:d6:94:ae:41:b2:5d:61:cc:6e:
fc:69:4d:6c:6a:06:47:9d:5d:e4:d6:1a:0f:48:9c:
da:6f:d2:fe:26:ca:20:0c:7c:a7:34:71:4a:6d:81:
f6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:13:1D:27:68:08:A4:C4:A9:85:D0:24:01:86:FC:4A:11:E2:45:05
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:18e::/48
Signature Algorithm: sha256WithRSAEncryption
20:60:e9:34:e2:17:d8:10:49:9f:7a:37:63:25:39:23:44:bb:
6e:57:2f:40:a1:47:b4:a0:10:70:3d:84:c5:4c:0a:92:d4:64:
7a:0b:5f:7f:97:e2:08:27:9d:ec:d1:71:24:05:77:e6:f5:ef:
ca:a2:72:95:7a:91:65:69:4e:19:cc:61:56:df:23:e1:c7:be:
ae:6b:cd:3c:80:83:52:c8:42:ee:7b:0c:90:ec:18:7f:02:d4:
0c:03:cb:2a:9f:f9:fd:cb:7d:2f:0a:8e:d2:18:ef:c0:83:ab:
25:16:9d:45:76:8e:ba:56:d0:aa:de:85:aa:23:a7:f6:1e:2c:
92:4d:68:50:ed:69:e4:cf:cf:0a:0b:f5:15:1a:e0:f6:b2:e0:
fa:cf:a3:79:6c:92:0f:c7:79:ac:ae:77:bd:c1:22:d5:2c:71:
5b:aa:e8:fe:62:a2:7f:ff:22:30:82:83:2f:f6:41:be:df:90:
9b:e9:be:7d:9f:4e:83:31:4d:a4:bc:56:3c:f6:c5:b7:b1:3a:
fe:5b:b3:32:ee:7c:61:f8:73:a4:3f:7b:d4:a4:fe:42:3f:9d:
92:8c:56:92:72:09:cb:f0:00:07:a9:c6:ae:2b:91:03:c5:05:
17:0e:fd:68:a8:c0:8c:0f:9a:54:ad:fb:db:82:48:1e:ff:24:
10:e1:95:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org