Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jCXopp4AUOU3wOfdQqXwZliG/IxFOh7QwtSJ1AoDpFA=
Subject key identifier: 76:96:0D:D5:46:98:51:B0:2F:CC:AF:6C:58:F7:2E:34:38:89:3F:5D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0EB67FA9D32FA36AFA4D2F27501961F0E92AA769
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:15 +0000
ROA not before: Mon 26 Sep 2022 09:55:15 +0000
ROA not after: Mon 25 Sep 2023 10:00:15 +0000
asID: 59282
IP address blocks: 2400:d680:1b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:b6:7f:a9:d3:2f:a3:6a:fa:4d:2f:27:50:19:61:f0:e9:2a:a7:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:15 2022 GMT
Not After : Sep 25 10:00:15 2023 GMT
Subject: CN=76960DD5469851B02FCCAF6C58F72E3438893F5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:05:1e:c7:91:b6:e4:57:f7:44:f2:e9:ff:
af:f4:7a:c6:ca:6e:99:2c:d6:5a:fc:60:fc:79:86:
af:54:d2:80:76:58:43:79:4f:fa:8e:16:f9:43:71:
2f:36:c4:32:61:d6:3d:3d:75:98:f6:3b:39:20:3c:
b1:0f:c3:46:e7:d9:bb:44:7e:fe:74:63:3c:30:9c:
ab:8d:08:1a:0c:51:ed:6a:02:30:cd:06:be:79:94:
a0:8f:3b:64:f3:a1:5c:91:bb:43:d1:4f:ef:20:6c:
9d:3b:96:42:ca:9d:df:03:e1:1a:c8:fb:8b:8b:61:
c4:f4:94:35:fb:d7:8b:30:b0:52:d8:5c:91:f0:b3:
39:e6:ed:49:fd:19:70:68:c3:d3:61:74:04:e1:32:
bb:8c:c2:9f:8d:be:fb:86:7c:a4:d9:1d:d0:9e:3d:
12:80:b7:b4:db:2a:4f:51:51:f2:8c:a3:cb:d1:aa:
fd:0d:5c:21:22:9e:88:40:a5:a0:b1:5f:84:14:59:
b3:28:42:5c:b6:8e:ce:f2:32:42:e2:ec:7a:20:84:
77:a6:a0:83:e9:47:54:8b:23:d7:a0:a9:53:1d:eb:
92:72:d1:2b:4f:92:20:71:6c:88:cb:49:eb:46:c9:
e2:cf:eb:56:f0:45:ba:e3:da:cf:cf:b7:32:e3:b6:
55:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:96:0D:D5:46:98:51:B0:2F:CC:AF:6C:58:F7:2E:34:38:89:3F:5D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1b0::/48
Signature Algorithm: sha256WithRSAEncryption
bd:84:53:be:5f:7e:de:5b:5c:4f:be:98:a9:50:d5:a0:45:48:
e6:29:c9:7e:27:28:2a:83:52:5f:7a:da:b6:bd:c4:a6:8e:ee:
f2:c4:79:a7:a8:59:a7:2a:a1:a2:98:e4:ba:85:2c:57:6a:13:
4e:7d:fb:ad:4c:a6:06:93:52:89:3c:7c:ed:1b:4e:1e:4d:37:
d0:95:27:4d:8f:b4:d0:cc:6b:60:b5:a6:5e:a6:d8:2c:ca:bb:
e6:b3:00:b3:f9:fa:b3:1a:32:7d:c2:68:35:f2:eb:00:c1:2f:
d2:73:bb:b0:cc:f6:78:bb:de:c9:5a:87:07:ab:e2:f5:87:4f:
e1:77:7d:05:f7:45:ee:ce:23:55:e1:47:d5:8b:d2:1a:c0:77:
db:0a:b8:46:18:fd:ee:ea:19:88:36:31:20:a4:c1:7b:51:58:
cf:67:93:5f:9c:2e:58:93:a9:94:2e:dc:83:0a:38:cc:1b:20:
c7:f0:7e:cb:49:17:bd:f2:2d:ff:eb:ad:09:fb:a8:dc:52:7b:
14:4c:ef:13:0c:a9:cf:84:61:9b:bf:63:53:91:17:2b:7a:f9:
3d:ed:77:bc:8c:6d:25:89:6b:23:ee:78:b5:c7:77:12:bd:10:
b9:dd:5b:e2:7a:a0:1c:c6:76:51:59:f2:e7:d3:01:dd:d9:37:
cc:bf:a6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org