Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: pBFaSOn3eWoswl2zTHaNovk/mLGnny2uH7nI/2kqbco=
Subject key identifier: F4:A7:DD:1D:03:ED:7D:2E:C1:EC:25:66:70:FC:BA:A2:7D:42:D6:0D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 231320B52457511D15120A341CB5247B7FBA8408
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:1bb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:13:20:b5:24:57:51:1d:15:12:0a:34:1c:b5:24:7b:7f:ba:84:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=F4A7DD1D03ED7D2EC1EC256670FCBAA27D42D60D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b7:ae:e8:16:01:98:0b:7b:9d:7c:97:4e:49:
dd:77:e0:15:39:20:49:80:f1:52:4f:e5:1a:76:60:
c9:a0:54:82:27:48:5e:24:d2:22:76:c5:d9:62:db:
94:94:89:64:af:89:1c:35:c3:16:e0:b3:d7:14:11:
dc:53:1f:55:e5:31:8c:b8:58:9f:73:42:46:aa:d0:
52:db:2a:ee:a8:73:38:52:12:e5:01:65:04:0d:3c:
56:8b:81:63:85:de:91:a5:cb:1b:4f:e3:a9:9f:2d:
40:df:60:5b:e0:6f:a6:e9:d7:79:ea:47:66:c7:9a:
14:d3:72:dc:d7:b2:ad:25:9c:5e:89:fb:85:55:e1:
c2:a7:2b:4b:19:fa:cf:c8:11:29:1b:94:a0:49:43:
6a:38:b6:d5:a5:9e:2d:1a:ab:93:62:19:77:1a:2f:
be:21:5b:6f:87:5a:c4:bf:1e:d4:ed:98:c2:d5:2c:
c4:02:f9:26:4c:7c:dc:06:eb:39:11:69:63:15:69:
c8:a7:98:af:8a:78:6e:b1:32:90:db:4c:52:11:6f:
db:f3:1c:c0:ad:bb:ca:a9:5d:74:dd:bd:9a:7d:8d:
9c:f3:e8:fb:a3:73:1e:92:93:e1:de:c1:3e:94:6c:
11:17:db:3a:d3:57:20:26:65:78:3b:7f:57:62:60:
ec:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A7:DD:1D:03:ED:7D:2E:C1:EC:25:66:70:FC:BA:A2:7D:42:D6:0D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1bb::/48
Signature Algorithm: sha256WithRSAEncryption
4d:95:a8:bb:7f:c3:71:48:3c:40:6f:91:7d:24:8b:94:b8:33:
a7:9a:ef:06:a3:5b:f0:18:62:0f:52:0d:ac:b3:e4:76:29:da:
ee:a6:a5:4d:53:92:8d:60:86:4e:5f:94:92:f9:26:dc:d1:f7:
bb:b1:10:52:39:aa:a2:b2:c8:f7:1e:1b:18:aa:08:c8:60:79:
42:7d:7c:7e:90:02:d4:84:53:96:05:80:b1:89:9e:ba:40:3c:
70:42:33:9e:e6:fb:b1:5b:86:fa:1f:d5:14:78:d4:c8:3d:ac:
67:08:65:51:e9:50:10:84:b8:23:10:98:d7:fa:b5:5e:7e:35:
82:5a:c8:9c:67:0d:f8:c2:31:34:80:c6:1b:6a:79:6b:3d:8d:
a0:f6:60:11:96:12:6b:2d:06:ca:3c:d4:de:c2:a1:4d:91:c9:
a5:6c:0c:a4:6f:6b:53:41:57:5d:02:53:03:d7:8e:79:31:01:
49:bd:27:2c:b4:41:07:08:11:a7:65:60:23:10:f5:3b:49:7e:
8d:b6:54:74:49:e8:30:48:31:95:16:fa:fd:38:89:97:45:a2:
64:f6:bc:35:4e:6c:e4:73:53:b6:2f:07:a2:80:74:3e:f0:02:
83:df:14:b0:65:95:8b:4a:a3:79:f1:85:4c:97:5e:b2:0e:4d:
78:af:1f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org