Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1f73GeOlk/hjrmC9TivC6h9KfrpSNq+a+EHKyeBtnWM=
Subject key identifier: C9:6E:F6:E5:C6:24:04:DA:50:F0:BF:F6:D6:23:EE:00:F8:05:C2:D5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1C2FA12B17092F7814841ADEBF1EF2FD55374E79
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:25 +0000
ROA not before: Mon 26 Sep 2022 09:55:25 +0000
ROA not after: Mon 25 Sep 2023 10:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:1ce::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:2f:a1:2b:17:09:2f:78:14:84:1a:de:bf:1e:f2:fd:55:37:4e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:25 2022 GMT
Not After : Sep 25 10:00:25 2023 GMT
Subject: CN=C96EF6E5C62404DA50F0BFF6D623EE00F805C2D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:90:68:97:02:e4:c6:4c:f6:e2:d0:ff:dc:6f:
30:64:b8:da:72:99:b9:d7:7e:8a:46:79:ee:69:ca:
d8:74:fb:a1:51:67:54:74:b5:e9:7d:f8:82:2e:bf:
8f:0c:fe:10:40:16:54:42:b4:84:43:43:dc:f0:cb:
31:f2:85:12:b3:32:24:81:d7:52:a7:d1:53:03:ec:
93:6e:db:b4:af:9c:b1:63:56:c9:47:1f:6c:44:7c:
b7:f4:c6:1c:d2:2b:de:4c:c8:35:47:e3:bd:0c:cb:
79:4b:32:41:22:4b:30:98:b8:1a:f3:3c:f9:33:e4:
c1:cb:a9:10:42:57:9c:58:92:e3:21:2a:ac:d7:ef:
9b:5b:6a:61:3e:e7:42:6a:b1:56:a5:5e:97:ca:93:
cb:1e:5f:97:78:5c:e9:ef:13:f7:b0:91:32:e1:07:
d3:07:b7:dd:32:6a:62:bc:1b:01:bb:6b:41:22:6d:
2f:d1:3f:0c:fc:d2:97:06:96:09:30:15:c0:36:90:
7e:16:88:e9:f2:90:1b:5f:d8:48:cd:19:06:f0:4a:
a4:63:00:4c:a5:98:3b:a5:99:6d:dc:cd:59:d3:a3:
76:4d:68:7f:50:0c:cd:46:53:b1:fd:b3:07:be:2d:
b1:61:e8:e2:9f:61:d6:a7:84:93:a1:df:66:39:f4:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6E:F6:E5:C6:24:04:DA:50:F0:BF:F6:D6:23:EE:00:F8:05:C2:D5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ce::/48
Signature Algorithm: sha256WithRSAEncryption
0c:d4:f1:6a:76:28:ee:6b:aa:17:33:92:85:a8:78:99:68:a5:
0b:69:eb:b4:32:7e:9b:f6:82:22:ed:3a:6d:fb:09:ed:83:21:
94:99:02:c8:90:27:b0:b9:05:5a:c4:32:4a:a3:f6:b8:38:f2:
2b:3b:6d:3b:a9:33:d3:ec:b1:84:55:31:2d:86:21:1a:74:7c:
62:81:a6:12:73:07:c7:e8:2c:f7:d2:ab:9b:e2:71:1c:a1:8b:
48:f1:ea:05:50:1a:e9:61:af:bb:f8:0d:d5:49:8b:19:df:32:
35:1c:5f:4a:dd:cf:db:dc:19:77:8e:93:7e:ed:b1:47:10:ea:
7f:73:80:ad:a8:28:e0:29:9d:5c:42:4d:f9:79:fd:ee:b1:58:
f5:d0:4b:2a:29:ce:8f:3d:de:35:98:44:d3:9b:47:fe:7a:13:
d8:01:c7:2a:d8:6f:3c:21:76:ac:70:80:8f:92:28:21:96:05:
aa:4a:03:86:89:e5:ef:a1:2a:95:cf:f5:b5:c1:ba:77:69:17:
3d:82:57:68:ce:ee:1f:14:d9:68:ea:bf:90:ac:25:4a:4f:68:
7f:c3:81:3d:9c:64:ea:b2:f3:78:c5:e3:fc:c6:25:28:f2:2c:
40:67:10:a7:72:a4:ba:c2:8a:30:ad:05:83:32:6a:ae:de:f0:
1e:05:ac:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org