Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZRrhNtbzEn4AKXvHnz5RxfHp4mbjckUoaG17Aqf/oXk=
Subject key identifier: 2F:4E:D2:54:93:B7:40:17:22:FC:98:A3:0F:31:4B:27:44:F9:4A:3E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 14430870F95E73EA53103BB0790D1F6630E3DA1F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:11 +0000
ROA not before: Mon 26 Sep 2022 09:55:11 +0000
ROA not after: Mon 25 Sep 2023 10:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:1d6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:43:08:70:f9:5e:73:ea:53:10:3b:b0:79:0d:1f:66:30:e3:da:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:11 2022 GMT
Not After : Sep 25 10:00:11 2023 GMT
Subject: CN=2F4ED25493B7401722FC98A30F314B2744F94A3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:aa:4b:71:b8:e1:ea:ae:08:95:61:fe:46:
61:f0:88:e1:4b:1b:31:86:f0:04:cf:78:4d:61:27:
90:9b:2d:f9:56:8e:11:d1:30:f4:f8:a4:9a:de:7d:
b9:a1:94:d1:84:b7:72:19:47:1a:e5:9e:2f:12:25:
13:e1:b9:71:ce:7f:82:68:66:f8:7b:6c:8a:db:76:
75:0d:af:e8:d1:01:88:d8:cd:f1:dd:17:f2:12:a0:
67:29:5e:15:ef:3c:21:70:5e:5c:a8:b8:b0:ff:2e:
fa:66:15:97:57:08:08:fa:07:99:78:fd:d2:fb:b6:
c9:6e:95:e8:40:eb:f1:5f:21:ed:bb:80:d4:d8:dc:
53:67:14:48:36:95:10:d3:59:76:c5:f2:7a:cd:06:
55:ad:6b:8c:aa:14:9a:11:d6:37:4e:68:98:51:b6:
28:e8:5f:44:cd:54:61:75:0d:f6:32:da:25:d9:fe:
b6:5f:6f:b7:97:48:78:71:1a:b7:0b:85:c3:ec:ee:
eb:a7:fa:d4:38:ca:4b:6c:11:17:e6:52:30:19:e3:
60:48:11:bd:4a:50:53:02:88:9b:a9:ea:44:8e:18:
d9:ca:75:ec:44:64:2a:99:2f:c1:16:5f:24:a9:79:
24:7f:c7:ff:67:0b:33:69:a9:7a:a5:40:42:a3:07:
2e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4E:D2:54:93:B7:40:17:22:FC:98:A3:0F:31:4B:27:44:F9:4A:3E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1d6::/48
Signature Algorithm: sha256WithRSAEncryption
0f:76:b8:f3:3a:60:a0:37:76:d8:be:09:b8:b4:e7:46:f7:50:
34:ad:90:81:4f:b4:7f:88:69:43:43:b4:23:ae:91:5b:0e:32:
42:0c:26:76:23:4f:f2:76:f6:56:6c:c3:1d:af:37:58:db:6d:
8a:4b:19:8a:fb:42:29:83:93:2d:cb:a5:f5:c9:fa:d1:94:bd:
e7:8b:65:13:78:c2:45:88:05:96:1d:3f:3c:d2:2c:37:68:b2:
82:fe:16:fb:9a:c3:76:04:31:b2:37:2e:fd:68:e4:a4:75:ad:
5c:d1:b1:f3:22:e3:1d:87:d3:52:e8:b9:c6:d0:10:54:12:cd:
28:59:cf:49:43:92:06:16:bf:da:e9:ff:44:1b:62:b3:f3:95:
16:23:3f:89:60:05:35:82:78:ed:40:e8:c8:e7:cf:4f:ed:3f:
7b:9e:84:56:b5:8a:33:c5:91:6f:a1:e3:e7:85:09:48:bf:a2:
b1:43:c4:bd:83:7a:76:da:fe:71:66:4f:f8:4c:cc:2a:b1:dc:
e7:36:5d:0e:32:63:21:4d:5b:64:f5:22:d8:b2:88:ff:10:81:
8a:d1:0f:70:3b:ba:3c:65:b3:36:1d:51:59:f7:c3:f0:be:6c:
45:1e:f5:2a:53:97:4b:a3:d8:9c:01:2b:e4:6e:34:5b:38:d5:
c4:4b:6f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org