Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: AnXpVYm3KaALRhIlA+mxT6WBXVKeCjnCFfSQFITHbt8=
Subject key identifier: 90:76:74:CB:40:5C:AD:4A:27:98:35:BF:17:25:A7:F6:DB:89:52:78
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1A34AC0FB93ACE0E9121AC4CAF0CB31E672045FE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:11 +0000
ROA not before: Mon 26 Sep 2022 09:55:11 +0000
ROA not after: Mon 25 Sep 2023 10:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:1ed::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:34:ac:0f:b9:3a:ce:0e:91:21:ac:4c:af:0c:b3:1e:67:20:45:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:11 2022 GMT
Not After : Sep 25 10:00:11 2023 GMT
Subject: CN=907674CB405CAD4A279835BF1725A7F6DB895278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:04:02:b5:69:81:03:1a:74:c2:55:d6:a9:36:
b0:88:a7:63:0c:b2:72:8e:3b:3e:05:a6:0b:a6:8e:
53:71:f2:cd:fc:9a:46:12:5a:73:27:1e:08:76:7b:
fe:5e:08:27:c0:86:5e:91:1e:85:51:b4:47:02:f9:
f5:78:5a:03:3b:ad:27:a9:56:c9:56:6d:ab:bf:69:
70:d4:7f:50:4d:c7:1c:c4:c0:04:25:fe:23:7e:33:
97:cf:e3:d9:29:e7:f8:e4:d5:3c:fb:f6:d0:d4:79:
89:a0:2d:35:a1:6a:a7:08:99:9f:c5:5d:9a:4a:ee:
ed:0e:2b:db:5b:c3:1b:8b:b8:d8:b8:ef:32:47:c6:
f1:55:c3:33:a6:42:62:1c:bd:68:57:03:27:9f:bc:
ec:5e:b3:25:40:a5:a4:8d:cb:55:50:c4:a0:d0:5d:
83:d5:b4:11:ed:93:61:9c:92:20:8b:63:e8:04:5f:
f6:24:6a:cc:ca:fd:14:6c:33:1b:b2:41:72:a2:57:
a8:bd:97:1c:fd:d0:ef:0d:2b:bb:df:18:45:ff:6a:
eb:0a:0b:00:6b:f1:cb:44:b4:12:e4:05:f1:2c:ec:
2e:af:c6:52:9d:6f:ee:ff:1e:01:a1:46:5d:e5:ff:
2c:be:85:b5:ee:5e:57:94:5d:60:e9:ae:31:81:62:
1c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:76:74:CB:40:5C:AD:4A:27:98:35:BF:17:25:A7:F6:DB:89:52:78
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ed::/48
Signature Algorithm: sha256WithRSAEncryption
bd:fc:17:79:01:f1:78:d0:df:b4:f1:4d:6f:12:7a:32:98:6b:
07:a0:48:b2:be:fa:64:a4:60:ea:ec:0d:1e:a9:21:45:53:ec:
0e:2f:07:74:5b:a7:e5:d1:c4:90:4f:46:96:c7:5b:f5:6f:7f:
6a:58:9a:28:ee:27:45:80:8a:d1:5f:5c:73:88:73:b7:ab:d7:
32:aa:50:d3:b6:37:a5:ad:66:47:a5:c7:dc:9a:b6:b3:c7:c0:
da:25:e5:e3:c4:ba:a1:42:44:cd:72:80:bd:32:ce:43:54:8d:
bb:d7:01:da:98:a7:cc:eb:5e:28:42:b0:bf:4a:56:d7:df:98:
99:bd:98:34:6c:8d:57:c0:7d:16:df:53:18:87:69:59:9e:5a:
2a:47:28:9c:72:ba:ce:18:d9:d8:80:c2:4c:1d:eb:da:f6:c9:
26:1b:ac:ae:42:09:5b:b9:56:eb:27:4e:f0:fd:79:42:d2:1c:
64:20:15:22:54:4a:27:9b:8b:e5:19:29:65:06:7c:a8:f3:e9:
0d:aa:e4:35:ec:b7:5c:0c:3c:ff:de:55:1b:7d:11:21:84:57:
07:7f:5f:2e:e1:66:ae:b0:2b:b2:65:a7:cf:54:68:fc:76:d9:
f7:9a:77:b2:60:24:24:26:a8:27:8e:1d:d0:c5:c8:30:5b:f2:
73:91:53:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org