Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 6iqQ8qbohfW2WvNHy8t4AlNp7U2Mnk65EHWu5otdtyc=
Subject key identifier: 96:3C:CC:86:5E:DB:BE:8C:06:A3:38:2D:2E:47:CD:7A:65:66:E4:A1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7023DE4EA64E391BF9B872BCEB5AF277579C19D7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:1a8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:23:de:4e:a6:4e:39:1b:f9:b8:72:bc:eb:5a:f2:77:57:9c:19:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=963CCC865EDBBE8C06A3382D2E47CD7A6566E4A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9d:37:23:2a:ae:fe:cd:4f:fd:c7:3f:de:8e:
00:63:81:f6:96:b1:72:e3:82:2d:34:90:81:b9:9f:
25:10:69:f3:40:c3:11:ab:5b:f6:1d:47:5d:94:c1:
bd:2a:4e:de:10:36:e5:3d:cf:16:27:5e:9d:0f:23:
32:c2:6d:47:22:30:0a:8c:61:f1:38:58:74:8c:c1:
30:a5:46:04:79:14:22:26:a1:39:71:13:69:7d:45:
da:ea:ce:3f:81:b3:08:0c:83:e2:dc:81:87:76:79:
c4:62:7f:89:ba:c5:2b:80:da:50:09:e7:78:b9:04:
9a:bf:81:c6:f7:25:0c:51:7d:4d:f1:5c:86:6b:c0:
05:d4:23:09:8a:fc:e5:9a:39:2a:c7:7b:0a:e7:a4:
9a:87:e9:d4:86:00:c1:b0:c6:b5:cc:d0:d7:3c:8a:
67:49:72:1d:f4:86:35:1a:26:1e:cc:96:f0:c1:8f:
a2:32:3a:d1:ff:e1:bb:6a:5c:c6:ab:84:4c:9f:c7:
f1:4c:01:e7:c0:ba:24:78:25:25:ad:8e:1f:97:67:
4d:fe:52:42:55:41:5e:66:76:21:6c:e7:05:4b:18:
0d:d6:20:bb:54:bd:3a:38:fd:b4:d2:37:1d:0b:80:
4b:81:b1:87:e9:36:6c:de:77:c9:b2:79:f2:e6:10:
78:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3C:CC:86:5E:DB:BE:8C:06:A3:38:2D:2E:47:CD:7A:65:66:E4:A1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1a8::/48
Signature Algorithm: sha256WithRSAEncryption
7c:50:32:1c:6f:77:8a:4a:fc:ad:45:de:05:6c:c2:92:dd:e1:
44:42:db:b8:4b:81:00:c5:bc:7d:d2:db:da:e3:e8:18:ec:cf:
d6:c8:19:e9:ac:09:b0:10:6a:90:c9:04:b0:a0:74:b6:dc:74:
04:f5:fd:62:f7:eb:ff:f6:8d:54:2c:da:e3:9c:3c:c4:01:6c:
51:53:8b:97:d9:79:59:89:fa:15:10:82:9d:a0:90:9e:73:01:
d3:10:e5:ee:67:c7:42:16:8c:76:65:08:9c:0e:00:f7:29:c5:
a7:ae:82:4c:de:dc:14:1e:80:55:f8:b9:1b:67:fb:f9:94:82:
d7:5e:e2:f1:e7:35:cf:f7:c7:e6:df:bb:f5:17:9c:9e:e4:1e:
29:2a:60:dd:82:c1:7d:4a:ac:85:c5:00:c6:6c:14:cc:23:5d:
f0:4c:8d:8e:86:42:ca:41:2d:3e:94:2c:a7:df:2d:3b:59:6f:
ab:4b:6d:da:65:c8:3e:63:5f:a9:08:3a:fb:b9:1e:ac:e7:6b:
30:b0:af:fe:b3:c7:d9:4e:30:ca:64:a4:65:34:1a:c6:61:aa:
f1:89:7a:b7:40:75:04:4b:44:7b:41:28:a6:f5:97:59:46:07:
8f:4d:45:7d:03:61:54:3d:bc:7d:51:10:f4:8b:c9:0c:72:55:
61:77:b2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org