Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZnN/X9DzwBbmg2UqgA1Pjg0bHRp3pVjgsNVI8Chm5cY=
Subject key identifier: D4:C6:93:54:64:A8:44:37:28:11:DF:6D:A2:3C:27:C5:E4:26:BD:97
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0D7D0CCE36B7431A29E87CBC55CDA8178BF24CFD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:12 +0000
ROA not before: Mon 26 Sep 2022 07:57:12 +0000
ROA not after: Mon 25 Sep 2023 08:02:12 +0000
asID: 59282
IP address blocks: 2400:d680:201::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:7d:0c:ce:36:b7:43:1a:29:e8:7c:bc:55:cd:a8:17:8b:f2:4c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:12 2022 GMT
Not After : Sep 25 08:02:12 2023 GMT
Subject: CN=D4C6935464A844372811DF6DA23C27C5E426BD97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:c1:1e:87:59:da:03:89:f0:3b:47:59:6f:
ab:d9:1a:74:eb:cd:7b:57:19:c5:1f:6d:ec:bb:00:
0f:c2:95:6e:86:20:48:bd:80:1a:25:63:00:09:25:
a8:4e:66:5b:e8:86:55:94:18:7e:57:f8:1e:41:0e:
0a:0c:8e:c8:ba:fd:ba:88:87:5c:0b:cb:8d:fb:ac:
9b:d4:bd:96:f5:b9:61:1a:a7:cb:38:0c:64:46:75:
d8:ab:95:cd:7e:d8:db:4f:c9:c3:76:e2:44:94:44:
46:32:f3:4d:51:4a:f9:e9:2e:05:ac:0e:ea:5b:85:
0d:4b:77:86:ce:77:28:4e:a2:3f:60:b2:b7:ce:41:
d4:57:7b:6e:7b:7c:a8:69:7c:2b:cc:47:a1:8e:f0:
f7:74:23:af:cb:a9:db:2d:84:ac:06:f7:42:f7:fc:
60:dc:a0:0e:9d:95:e5:ef:4f:e7:59:bc:70:4a:b4:
95:ea:9e:04:65:8f:a7:22:f5:c2:58:bd:dc:28:25:
b2:72:5d:a9:33:95:05:fe:f0:83:cf:60:62:b1:08:
66:ba:de:b9:00:5c:ca:57:b4:89:cc:be:bb:fe:e0:
90:93:16:80:79:bb:ab:cb:93:fb:fd:d6:ee:9e:36:
17:33:ac:7b:d9:c1:d6:bd:35:28:8f:62:d3:36:9d:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C6:93:54:64:A8:44:37:28:11:DF:6D:A2:3C:27:C5:E4:26:BD:97
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:201::/48
Signature Algorithm: sha256WithRSAEncryption
a7:ee:77:82:9a:41:b6:01:67:6b:b6:f9:56:18:4e:63:14:17:
de:86:2d:21:b6:e9:da:22:52:2e:b3:64:ea:65:67:87:9e:05:
f8:96:78:73:c9:bc:d8:9d:58:b1:98:06:13:59:76:52:c8:4e:
fe:8e:29:60:9b:32:00:66:02:eb:15:b6:dd:8f:59:b5:2d:ea:
78:c6:a4:8d:fe:10:0a:f9:8e:ef:1f:60:b3:7b:8b:7b:9d:02:
44:44:26:1d:82:83:c3:27:2a:af:2e:44:33:8c:38:a5:72:09:
2a:67:56:5a:7f:64:13:b2:ea:a4:89:be:94:7f:e6:a1:5d:7c:
31:95:2c:02:f2:70:d5:84:d9:c4:98:b7:34:8f:20:d0:60:ef:
ce:37:3d:54:11:50:78:a3:67:7e:73:12:92:d9:57:f5:dd:71:
a7:3f:82:80:6e:ba:24:46:f6:a3:81:c6:3e:71:32:bf:c5:b1:
ce:3d:66:70:da:ac:90:93:b8:34:46:80:37:5b:71:c0:9d:cf:
cc:ed:b0:6a:ae:ff:5f:38:d1:4a:c1:ce:36:e9:9d:e0:eb:f5:
e8:e6:2c:78:82:f3:02:42:65:50:2b:c9:03:6e:a7:0c:9a:07:
98:3d:21:1b:ba:1a:33:1b:6c:45:e0:7c:1c:9a:24:b5:b3:ce:
3f:e7:2f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org