Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jf0VkQRaIY27bNxWIusQXKsw2DQ6MEaD3/1QI95U790=
Subject key identifier: 89:6E:F0:32:6A:C4:CC:47:03:9C:29:91:10:ED:B9:FD:D6:BF:97:EF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1CB563AA8864B2C544FA1B43A7D4F1EA64026317
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:20 +0000
ROA not before: Mon 26 Sep 2022 09:55:20 +0000
ROA not after: Mon 25 Sep 2023 10:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:1e1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:b5:63:aa:88:64:b2:c5:44:fa:1b:43:a7:d4:f1:ea:64:02:63:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:20 2022 GMT
Not After : Sep 25 10:00:20 2023 GMT
Subject: CN=896EF0326AC4CC47039C299110EDB9FDD6BF97EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bd:d5:c5:d5:f3:c3:67:d4:f1:a2:f5:56:15:
35:0e:b6:e4:55:8c:72:b8:9a:7b:17:99:f8:13:c1:
99:7f:d0:04:8f:41:ac:da:c6:ac:42:8f:b1:05:1d:
78:81:a9:27:7a:be:6a:15:c6:2a:03:e1:c2:0b:d5:
3d:1b:c8:8e:de:ff:a1:5b:7a:53:7d:e0:67:db:48:
81:f2:04:dc:96:2f:73:ff:d1:19:d2:ff:bb:cc:07:
ed:53:45:e0:d5:e5:dc:b9:6b:3f:0f:96:ac:2d:2d:
30:37:bb:cd:c8:0f:c6:d6:27:a2:ac:6a:15:b4:7c:
4f:81:9f:66:8a:bd:df:d1:41:28:ba:2d:12:04:11:
15:d5:e1:3f:a9:81:b2:88:30:20:01:14:3b:c8:fe:
2f:4e:b3:23:70:b2:57:e4:55:9c:8b:4f:5d:37:d4:
b9:b6:cf:8d:19:4e:8b:81:fb:80:db:59:1b:85:ff:
bb:b2:50:22:82:87:15:d2:4d:28:1f:7a:a3:b1:80:
91:88:98:38:99:b6:80:b4:28:7d:80:43:bd:dd:74:
70:af:ac:e6:5c:39:97:52:5b:1b:6e:54:32:d2:40:
82:d2:8d:c6:b7:9d:be:a6:49:d8:f5:70:d3:08:57:
f2:bf:7a:2b:1d:05:a7:c5:90:27:13:64:fe:4f:94:
5b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6E:F0:32:6A:C4:CC:47:03:9C:29:91:10:ED:B9:FD:D6:BF:97:EF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1e1::/48
Signature Algorithm: sha256WithRSAEncryption
bf:1f:33:72:6e:f8:32:a3:3d:04:4e:9c:de:23:60:d7:14:52:
ac:d6:72:b5:32:63:8f:23:b8:90:e2:68:fe:88:28:5e:91:f1:
2f:ea:b6:0e:87:71:d9:93:e4:47:ec:7a:cd:a2:e5:7a:0e:4d:
e3:3f:ba:1b:4e:a5:aa:77:bc:58:96:85:24:be:27:a9:d5:ab:
54:b7:7e:26:70:eb:a0:f9:ea:ff:8e:aa:d6:69:aa:2f:d7:5b:
2f:f9:e8:93:41:58:02:6d:b5:c8:a0:7b:b9:f5:74:4c:c2:77:
58:17:bb:b1:a8:9d:b6:30:28:78:59:53:bd:19:6f:5d:07:54:
d7:3e:4b:90:1f:75:d4:a8:f7:4d:3f:99:cb:99:d7:44:9d:75:
c9:19:5d:21:fb:f3:9a:ce:33:91:6b:56:ca:37:96:ff:ff:3a:
b6:4e:58:5a:10:b0:fd:b8:8b:43:21:92:f6:0e:78:f8:66:bb:
7a:c6:f5:d3:e3:24:11:d9:23:59:bb:38:42:ae:2e:01:05:0a:
37:15:33:84:85:4f:29:d5:fd:b1:80:b8:70:84:3f:a1:2c:f0:
7b:bb:90:b0:ef:27:57:95:bb:a3:fb:79:0c:75:94:6a:a9:5e:
73:ea:f5:08:48:49:f3:cf:c1:66:da:18:44:f7:2b:d8:f1:20:
e3:f6:30:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org