Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 0f1pMbEnLzIm05uMqj+ehqJ0GslEIm5D5xsubIcIjoA=
Subject key identifier: 59:5B:FB:61:53:9E:62:42:EB:7A:35:28:A4:7C:D0:9C:8C:F1:2A:3B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3EF34E6CF9F56A2B5C3DBB322BC57B1979954942
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:22 +0000
ROA not before: Mon 26 Sep 2022 09:55:22 +0000
ROA not after: Mon 25 Sep 2023 10:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:1c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:f3:4e:6c:f9:f5:6a:2b:5c:3d:bb:32:2b:c5:7b:19:79:95:49:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:22 2022 GMT
Not After : Sep 25 10:00:22 2023 GMT
Subject: CN=595BFB61539E6242EB7A3528A47CD09C8CF12A3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:af:07:b8:34:d3:03:7a:36:b7:30:df:5f:0a:
d8:81:46:e5:90:8f:8e:64:49:c4:cd:5e:0f:a4:18:
07:2f:22:2d:86:65:9f:5f:39:1c:3b:f5:cc:25:42:
f7:26:e7:72:db:2f:f8:c7:b6:11:d5:85:28:3a:36:
66:a4:68:59:ba:f4:92:79:d4:a3:ea:55:81:e9:cc:
d1:f6:f7:20:d6:db:d0:b5:07:78:5f:f1:db:42:13:
b1:85:7c:09:1e:16:10:f3:0d:74:34:6a:fc:d5:c9:
2f:47:70:37:43:ee:39:2a:03:af:fc:21:2b:77:fb:
73:eb:49:96:ad:55:6f:78:13:b4:70:68:a3:b0:8a:
39:5b:37:36:0f:54:13:7f:61:eb:aa:f1:2f:df:35:
3e:d4:55:b9:6b:96:50:35:17:0b:81:87:3c:15:a7:
c2:44:6d:80:70:96:1d:ba:9a:6c:54:0e:e1:f5:40:
7d:9f:cd:b7:c9:31:eb:b8:2b:67:8e:82:ec:76:60:
7b:82:c6:4f:ab:fb:13:a0:96:ea:d2:92:85:54:54:
25:cf:48:14:04:e8:ac:e1:33:bf:ba:c5:c0:a9:1d:
7b:14:c6:ab:3a:a2:5d:96:a1:d8:d1:7a:65:18:6f:
01:f8:e3:81:43:32:98:08:f2:e1:d6:b9:f0:b6:14:
1c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5B:FB:61:53:9E:62:42:EB:7A:35:28:A4:7C:D0:9C:8C:F1:2A:3B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1c8::/48
Signature Algorithm: sha256WithRSAEncryption
b9:02:01:f8:fc:7b:d0:a9:7d:f3:41:17:31:3c:cb:18:e8:36:
6b:61:78:84:ad:bf:6c:66:02:de:f5:83:45:53:92:8c:71:6d:
63:b3:df:2c:8a:18:f4:26:6e:a9:3b:38:1c:5b:1d:0c:ca:cd:
70:97:8a:77:43:74:4d:0d:cc:ea:91:65:4e:99:3d:f5:56:30:
0c:3b:2d:a7:2a:65:94:cd:02:c1:3e:c8:81:ab:24:3b:65:15:
bf:a4:94:ee:3d:6d:e4:59:c6:2c:b3:a2:19:fb:f3:c7:84:c6:
7a:bb:3b:30:88:79:5f:1d:e0:e2:54:79:29:84:3e:9e:e0:76:
4b:2d:14:fb:38:ec:e5:a8:95:39:a4:8c:76:65:c7:6b:55:5d:
17:84:87:23:9c:9f:12:aa:11:71:c7:c9:f3:27:2f:15:9e:98:
c5:b9:d7:4c:d1:ca:ac:5c:d1:b9:fd:fa:35:6d:54:75:88:29:
f8:ec:e8:18:ba:2d:7e:dd:d3:ad:d4:68:3d:2d:40:6f:07:b7:
9d:b7:3d:71:59:fb:a8:33:2d:c0:b2:40:f8:1a:7d:82:4a:f3:
77:65:08:89:14:b4:99:d6:74:98:2b:88:11:b8:a5:4b:17:5b:
93:f6:f7:86:b4:5f:38:7a:be:2f:bb:65:38:5a:60:6b:21:d0:
6c:91:6e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org