Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: gid8BfLYihCmUlNfqdxm815OzEWc+h2D20YPYVPpe98=
Subject key identifier: A4:6C:21:5A:AE:C0:5F:16:26:61:94:A0:37:BC:C9:4D:2E:AB:45:44
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2678DD3A237DA2C5DFF437F1A77F864164414ABA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:02 +0000
ROA not before: Mon 26 Sep 2022 09:55:02 +0000
ROA not after: Mon 25 Sep 2023 10:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:1a4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:78:dd:3a:23:7d:a2:c5:df:f4:37:f1:a7:7f:86:41:64:41:4a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:02 2022 GMT
Not After : Sep 25 10:00:02 2023 GMT
Subject: CN=A46C215AAEC05F16266194A037BCC94D2EAB4544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:9d:04:6a:61:5e:be:7c:6e:f2:97:f7:26:d4:
da:48:8b:de:5c:18:d3:7e:60:a1:a1:7e:54:55:43:
0d:f1:16:cb:e8:9f:58:41:93:97:aa:1f:56:39:23:
fe:e1:1e:71:79:b5:b1:fc:4d:dc:32:0d:00:2d:29:
c3:26:47:f5:83:90:f5:28:bf:29:ad:49:b4:b9:6e:
5e:20:6a:12:bf:9b:33:54:da:bc:9c:b9:3e:39:b9:
7c:36:20:b9:8e:55:d0:41:0e:aa:e8:94:d9:dd:e6:
a0:d4:41:4f:84:6f:85:eb:58:97:d3:69:b0:80:1c:
64:9c:92:af:f1:df:c7:cf:f4:45:85:2f:11:e7:c8:
d6:a7:6f:47:e4:5c:f6:15:2b:98:28:b2:b8:2e:5b:
b7:b2:3d:db:c5:e0:81:5f:ef:eb:06:14:5f:d6:13:
54:3c:c9:be:8c:ca:cc:19:6c:d1:a4:b1:45:e9:89:
aa:d6:bf:3b:aa:e2:d0:67:2c:ad:ef:96:d1:dd:9c:
04:10:ee:ee:72:16:cb:ee:a8:8c:a7:46:f0:7d:de:
8b:09:df:51:29:b3:2d:aa:c5:8e:5d:8d:26:75:c3:
f6:e0:11:80:14:d7:8a:94:89:07:8e:36:a5:57:d3:
44:64:ef:3b:36:67:98:c1:f6:52:c1:84:cd:58:a6:
74:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6C:21:5A:AE:C0:5F:16:26:61:94:A0:37:BC:C9:4D:2E:AB:45:44
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1a4::/48
Signature Algorithm: sha256WithRSAEncryption
2a:ab:e6:4e:42:af:7e:17:ce:15:12:bd:69:b1:c5:b7:2a:cc:
a7:b0:d4:d9:15:3d:d3:c5:b7:d7:2a:16:ab:35:63:1c:66:3a:
72:18:9f:7e:8e:d1:c1:e3:6b:04:ee:a2:96:9f:56:e6:70:c3:
d4:3b:f1:c6:59:67:4b:b3:e3:db:d3:18:49:64:86:f7:76:bc:
8a:e0:a1:27:67:db:55:ba:42:82:f5:b6:1d:5c:a0:22:97:19:
f8:81:b5:e9:d5:50:89:dd:27:59:23:f1:40:a3:22:5f:41:1d:
45:81:7f:b2:d6:26:4a:5b:ec:fb:24:ad:46:65:d6:ce:1b:7c:
bd:61:cf:c2:6a:7f:fe:13:ad:a9:c9:56:c6:be:40:5b:df:97:
60:3b:39:1e:12:bd:cd:fb:c3:7b:42:f0:e8:25:f8:62:ae:ef:
18:b8:41:49:34:37:3c:29:e7:d0:60:12:05:57:89:df:4e:28:
5b:61:45:8d:9e:41:47:e2:33:20:1d:ff:86:5f:b8:36:44:1d:
9f:30:14:60:95:45:1f:eb:d7:51:ea:d6:84:51:08:05:35:75:
8c:e8:f6:2a:8b:03:22:20:bc:5f:49:7a:f2:f4:58:04:1d:44:
1a:ac:3a:df:ae:d2:50:f1:24:7a:e7:c7:99:79:69:86:db:02:
57:3f:7e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org