Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3166373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: llPqElYa1/if2PT87F0WOZqMLGN3MLPjINSQow0nXKI=
Subject key identifier: E8:D8:7F:E6:29:7E:0E:2F:C4:AD:15:EC:B1:45:2A:67:8E:89:BB:71
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0A8005D2F8E684E16478A72A05C0F4CC0D1218EB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:34 +0000
ROA not before: Mon 26 Sep 2022 09:55:34 +0000
ROA not after: Mon 25 Sep 2023 10:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:1f7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:80:05:d2:f8:e6:84:e1:64:78:a7:2a:05:c0:f4:cc:0d:12:18:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:34 2022 GMT
Not After : Sep 25 10:00:34 2023 GMT
Subject: CN=E8D87FE6297E0E2FC4AD15ECB1452A678E89BB71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f1:04:2b:89:63:88:0c:4f:b8:66:01:55:60:
37:95:2b:68:b4:c8:08:df:28:2f:50:4c:1e:04:b0:
03:26:67:4a:90:47:08:1e:de:af:41:fd:ac:7b:84:
4e:de:7d:c9:09:89:2f:bf:98:c8:37:7c:eb:25:7d:
66:d5:4b:4e:20:5c:c0:ff:d7:4e:ed:c3:2b:a6:fb:
da:fc:9a:30:b7:6c:83:fe:be:e0:8e:cd:e3:68:a9:
c3:e2:5a:1d:15:79:a0:e7:60:37:39:4e:f1:82:35:
b5:b5:67:b6:a0:22:ff:d1:42:fb:18:e0:47:be:45:
c7:1f:f0:28:96:c2:70:15:67:d7:4e:c6:49:19:48:
e6:92:9d:83:b1:94:cf:be:38:a3:40:4f:62:50:bf:
cd:79:af:d8:0f:5f:a4:ee:cd:47:3c:95:ac:32:ec:
14:d0:df:f0:a2:52:76:72:db:24:fa:c6:8f:fb:84:
25:e8:31:aa:70:00:06:eb:b3:a8:3c:12:42:6f:3c:
cf:f1:59:b9:61:9f:1d:ce:8c:79:6b:6b:55:b5:75:
42:bd:e1:fd:c1:92:97:36:88:a6:bf:81:9c:21:0e:
12:08:81:2a:13:6e:99:4c:f1:62:94:d4:09:d9:87:
b9:27:5b:e4:c9:05:0a:6d:5c:3c:e9:40:c8:ae:62:
97:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D8:7F:E6:29:7E:0E:2F:C4:AD:15:EC:B1:45:2A:67:8E:89:BB:71
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1f7::/48
Signature Algorithm: sha256WithRSAEncryption
12:cc:e9:a3:93:e7:74:fa:d3:e6:69:16:3b:07:ff:88:49:1a:
0a:7f:84:02:ea:68:65:ed:bc:47:13:43:c4:14:af:cd:d6:dc:
81:6d:48:61:72:46:43:35:e7:9b:35:2a:f9:bf:22:03:be:6f:
d7:4c:cf:50:87:4d:26:5d:f8:c6:30:99:16:1b:47:71:43:c9:
4d:c9:0e:5c:97:2e:be:83:f7:57:c7:7e:5c:e9:c5:ec:f4:a4:
20:0e:52:ff:11:91:c9:bb:76:fe:6a:43:5b:e6:5c:68:d1:0d:
6e:19:e1:f6:ef:70:54:94:8e:a1:3d:87:55:85:92:c4:b3:5a:
fb:5c:ac:46:4b:7e:87:b4:66:33:ec:00:7c:dd:39:00:69:49:
6b:03:b4:f4:d9:48:09:56:37:aa:ae:a9:de:b4:d4:d4:d7:02:
66:20:7f:7a:70:db:3a:e6:b9:84:62:40:c6:09:61:71:cc:b2:
b1:8e:e8:15:45:ad:95:3b:09:b5:b8:bc:0f:4a:8a:67:62:bd:
4f:43:e3:2a:91:af:3d:9c:27:57:2d:2c:63:a6:34:96:fb:df:
ca:19:41:32:19:bf:85:14:7f:98:60:86:0d:5a:9d:60:00:a8:
a6:b4:30:7a:50:44:55:e4:75:51:ff:a3:e1:48:36:d0:f3:9f:
94:65:f3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org