Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RGi7nJyYHA1PphkvObO5KNqON4NVYC+C6luVmcX1dys=
Subject key identifier: B0:26:CF:4F:36:93:7B:6E:9D:35:2D:D7:C9:30:DA:13:63:D9:66:FF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6BE5C47D52CEA583468CDBC7023AFB1958CB8ACC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:1d2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:e5:c4:7d:52:ce:a5:83:46:8c:db:c7:02:3a:fb:19:58:cb:8a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=B026CF4F36937B6E9D352DD7C930DA1363D966FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:73:e3:68:71:cc:29:42:eb:44:ba:cc:8e:81:
ae:7a:c0:d8:86:36:bd:25:b3:ff:0d:09:c9:aa:5d:
70:09:07:c9:a8:ca:7c:6d:97:fd:b8:29:7d:6f:a8:
66:f9:a1:df:c5:8c:54:4b:15:4c:8f:db:6a:bd:cf:
20:87:bc:3d:82:8b:e1:14:82:06:7f:81:5b:24:bd:
81:8e:81:97:4a:01:90:65:6c:de:cb:50:f5:af:5f:
40:cb:3e:18:07:ac:63:4a:bc:05:0f:8a:fe:69:9e:
d0:40:9a:47:32:0f:6d:1a:e2:de:9c:19:15:20:f8:
f0:40:bb:8e:55:4a:9e:30:89:7e:c8:34:c9:c8:ca:
6b:62:4c:9f:f0:92:4b:4c:2d:52:3b:71:02:20:68:
21:5b:1b:c4:33:00:88:59:55:af:9d:cf:76:1c:0f:
bc:72:31:52:e9:47:93:7c:fc:2e:06:24:73:87:e7:
f4:cc:3a:7c:b6:24:65:1d:13:55:3d:19:18:53:c8:
ad:f7:05:b3:f2:8b:86:79:08:ad:04:e7:ba:8b:1a:
cd:39:07:99:05:7e:9b:a6:13:9a:03:5a:d8:41:c8:
8a:d2:a8:50:38:0d:40:65:52:30:32:44:74:84:e3:
0d:74:d3:a4:d1:4f:05:65:67:93:5c:5c:14:02:77:
ea:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:26:CF:4F:36:93:7B:6E:9D:35:2D:D7:C9:30:DA:13:63:D9:66:FF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1d2::/48
Signature Algorithm: sha256WithRSAEncryption
aa:b2:dc:18:a4:63:91:a3:aa:2a:88:c3:8e:97:7e:a6:8c:4e:
d3:49:0d:45:67:96:27:da:06:05:e3:00:1b:5a:56:48:74:56:
c2:e4:de:34:dc:53:41:a3:11:d3:ae:76:f0:5d:4b:1e:e5:6b:
db:de:67:4b:18:1d:7c:03:c7:7a:a0:b0:3f:f9:87:c7:1f:01:
3d:59:ae:b4:41:1f:70:39:82:98:e3:7d:f4:d4:aa:30:26:26:
ef:59:9f:c4:dd:54:21:12:aa:9e:71:87:65:dd:7b:e0:58:9f:
8a:68:77:cc:a5:40:f7:91:13:cf:ba:87:23:ff:69:35:ea:01:
5c:9d:d4:55:c7:37:26:df:96:4e:7b:ff:9a:ab:3a:d6:fc:33:
5e:45:9a:e5:5a:5a:17:6a:95:25:ab:30:01:b3:09:79:50:d6:
b0:57:31:bc:7c:38:13:9b:ce:52:19:d1:df:fc:ea:5b:90:0b:
a6:9f:df:a8:f7:c3:7e:07:b8:71:8d:f8:68:10:c6:8f:60:05:
4f:43:76:15:c1:71:2e:e3:02:6d:fd:fe:5d:e5:9c:0e:e8:d5:
7a:7e:3a:16:5d:c0:92:d2:54:60:ef:00:08:8e:b6:c4:e1:f4:
0a:2d:67:16:d6:a7:8c:50:fb:15:53:f9:d6:7e:fd:fa:bb:d8:
df:d1:16:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org