Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 7Bq8seuwlQQyFbfOEj6exY5Kx9LPsAZrKf6sD+kb7d4=
Subject key identifier: 81:5A:F8:37:47:56:98:77:AE:11:FB:81:B2:B6:31:B8:B4:E9:59:43
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 36A294CA146F6E4016C88FA85BDFA3DCE6EB9742
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:12 +0000
ROA not before: Mon 26 Sep 2022 09:55:12 +0000
ROA not after: Mon 25 Sep 2023 10:00:12 +0000
asID: 59282
IP address blocks: 2400:d680:1da::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:a2:94:ca:14:6f:6e:40:16:c8:8f:a8:5b:df:a3:dc:e6:eb:97:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:12 2022 GMT
Not After : Sep 25 10:00:12 2023 GMT
Subject: CN=815AF83747569877AE11FB81B2B631B8B4E95943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:68:39:16:d1:15:3a:3d:82:52:5f:2f:04:39:
f3:ab:c6:da:92:92:b7:b1:ab:93:8b:b6:fe:36:89:
60:a6:06:08:ef:37:b6:ee:0d:65:1c:40:72:9f:d2:
55:5f:8b:3b:85:c0:81:6f:0d:c1:86:fc:d2:0d:22:
e0:b6:0a:b4:3b:d2:01:ec:fd:3b:07:3d:7e:68:6d:
16:bd:85:3a:88:d0:cb:4e:05:c8:f5:f8:b2:c6:93:
13:1e:00:60:3e:96:49:65:1f:b3:25:11:af:b2:56:
9c:0b:77:95:51:3b:76:32:93:eb:6c:ac:ff:25:c7:
0c:3f:a9:a7:f8:d5:a4:08:99:0b:20:63:0d:73:3f:
2b:4b:8c:8b:bf:46:10:1f:09:83:9e:06:4a:cb:42:
fd:73:ba:0f:18:52:cf:0a:01:76:31:4b:3b:dc:b0:
a9:50:04:84:0d:a2:4b:ba:4f:e8:cb:2b:dc:d0:0a:
38:61:6a:a6:dd:ac:da:d9:08:a7:ea:37:25:af:62:
0e:de:38:0a:05:f4:0c:ba:6f:34:19:76:94:7f:ac:
b5:f2:a5:a2:e0:d3:58:61:48:35:ae:9b:d4:1b:c6:
0c:58:ed:86:b5:a8:e1:07:85:97:68:5f:0f:78:76:
a0:00:52:35:68:d9:a4:8e:5c:ae:8f:28:82:5e:da:
5e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5A:F8:37:47:56:98:77:AE:11:FB:81:B2:B6:31:B8:B4:E9:59:43
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1da::/48
Signature Algorithm: sha256WithRSAEncryption
7c:7f:76:c7:53:89:aa:72:4a:f4:e5:d0:0b:ba:3d:5a:31:b8:
33:fd:58:70:12:a1:4e:8e:82:ff:85:13:e5:0e:b9:23:c2:43:
97:d9:dc:9a:24:6b:ec:f0:13:56:15:a0:df:f5:4a:8e:d2:45:
12:83:c8:c3:d2:ef:f2:78:8a:f7:3a:d6:04:05:f4:89:9e:8b:
72:c5:ff:75:9c:95:ae:fd:66:fc:2e:1c:5e:d8:a1:31:cc:4c:
f6:f0:db:53:b5:ff:3b:e9:86:35:8f:a9:33:7d:d5:df:e1:4e:
11:7c:c5:82:dc:68:54:c8:03:61:b2:37:83:c0:43:ff:c7:7b:
22:c0:b9:e8:c3:4d:2e:fa:ef:45:ef:68:82:29:61:24:43:a0:
8a:0f:87:26:24:eb:89:1f:9c:eb:52:1f:55:01:f9:b8:e0:2d:
e6:5d:85:18:27:74:87:5d:d3:e1:9b:49:1f:e0:b4:35:5d:bb:
b0:52:b0:8a:42:92:f6:d3:1a:af:dd:a7:8e:20:0e:c4:fd:e0:
6f:22:d8:3d:57:65:06:19:e6:3a:a7:bd:e6:30:ae:0e:4f:70:
c5:28:b1:8d:b8:68:73:b4:4f:a1:b1:d4:d2:1d:0e:a8:b7:ed:
08:32:b5:a1:92:74:07:f9:29:f3:75:27:c7:0a:35:7d:3a:9d:
91:73:4c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org