Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wIYhYW3jAT9ztML27X4DCT0qVjIyAlusAQ9Rp1MfTzU=
Subject key identifier: E9:23:A6:F5:7A:61:4A:83:FD:A6:EB:99:A2:39:45:F5:1C:9C:8C:0C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 079DF898858F372512BDF616B79AD15F4BC53594
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:00 +0000
ROA not before: Mon 26 Sep 2022 09:55:00 +0000
ROA not after: Mon 25 Sep 2023 10:00:00 +0000
asID: 59282
IP address blocks: 2400:d680:1b3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:9d:f8:98:85:8f:37:25:12:bd:f6:16:b7:9a:d1:5f:4b:c5:35:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:00 2022 GMT
Not After : Sep 25 10:00:00 2023 GMT
Subject: CN=E923A6F57A614A83FDA6EB99A23945F51C9C8C0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:38:f3:31:8f:68:d2:9b:12:00:4e:cf:3b:42:
01:71:98:79:a1:e1:3f:1e:a5:a3:4a:d9:1b:43:46:
16:c6:75:5e:83:87:7d:cd:3a:8a:2c:5f:88:f1:fd:
aa:e1:57:a1:80:55:3f:fd:f8:2b:6e:d6:19:58:7b:
f7:40:22:2c:c1:6b:8e:74:25:e5:ea:8b:69:97:2f:
ca:69:99:d3:f1:9c:1d:b6:53:a3:93:d2:eb:b3:85:
85:50:6d:f1:c3:60:7b:e6:48:5c:a4:ac:ea:db:1c:
37:31:1d:48:8c:a1:16:4e:da:1d:36:89:61:b6:b9:
00:34:31:77:b7:ec:42:0a:5a:93:ed:82:e2:a8:e9:
27:47:0c:a4:75:19:20:47:4b:17:54:25:ef:fc:da:
7f:1a:56:40:33:35:39:16:b7:e9:3b:90:36:bd:7e:
9f:ad:a8:6f:1d:e5:cf:da:59:8d:79:55:84:1b:3d:
bd:d3:11:ac:10:04:cc:bc:e6:7c:92:16:36:84:57:
56:f1:6e:0a:0e:a2:44:7f:55:d3:a0:e5:07:cd:4a:
3c:e1:23:c6:06:03:ba:f3:a4:61:8c:6b:e4:91:c9:
1c:28:9e:3c:8c:8e:d5:3e:89:80:00:af:91:95:bf:
ba:18:e9:ec:fd:58:a7:0c:56:96:17:14:e5:d5:4e:
4b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:23:A6:F5:7A:61:4A:83:FD:A6:EB:99:A2:39:45:F5:1C:9C:8C:0C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1b3::/48
Signature Algorithm: sha256WithRSAEncryption
8f:e6:55:b3:e1:96:66:1a:5d:8a:05:08:c9:4f:54:ff:01:6d:
d0:eb:86:17:bc:5e:91:db:e6:2a:aa:d7:7b:7e:5b:4a:c8:dd:
75:0c:7a:65:f2:28:dc:3f:ce:15:f4:b2:ca:ab:49:46:26:f1:
98:5e:37:fc:df:4f:01:f2:e0:ed:6b:9b:18:d7:9c:72:52:a8:
61:db:12:0a:94:3a:ad:82:63:a8:07:5c:74:84:20:96:38:4d:
b3:f0:b1:f7:14:e5:07:d7:f4:86:13:18:89:97:a8:0a:8d:59:
47:dc:e2:65:b5:57:b0:bd:54:8a:6a:40:8b:f6:cd:51:8f:cb:
c8:c8:82:80:a5:d5:a8:68:f5:0b:1e:e9:48:6d:2f:db:2b:28:
96:68:16:b6:a2:23:d8:28:53:88:b6:00:f5:c3:fb:e3:92:62:
f9:06:75:fa:56:90:e8:23:75:9a:65:42:d9:ff:d8:92:2b:c5:
4c:11:40:07:b7:ad:d0:68:50:e6:78:cb:e3:e8:95:35:3e:84:
ac:71:0b:90:27:90:ff:0e:93:8b:32:04:ab:f1:1f:be:51:28:
12:fe:96:be:29:ff:a8:71:b5:18:93:fa:ac:40:a6:59:9e:23:
c3:db:b7:1e:bf:ea:b0:99:27:13:09:36:13:df:3e:70:c5:f4:
7b:79:aa:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org