Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nxtH71LIHfdFJNftvSeRJ6X4eYQZWIqN5NvuwR/uc7E=
Subject key identifier: FB:95:82:E0:EF:C2:36:51:19:AC:6D:0F:FD:78:F4:03:59:A2:77:4E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 66BE2E9D0FF6127E575AFB872EB2D8088F5948E6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:32 +0000
ROA not before: Mon 26 Sep 2022 07:56:32 +0000
ROA not after: Mon 25 Sep 2023 08:01:32 +0000
asID: 59282
IP address blocks: 2400:d680:207::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:be:2e:9d:0f:f6:12:7e:57:5a:fb:87:2e:b2:d8:08:8f:59:48:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:32 2022 GMT
Not After : Sep 25 08:01:32 2023 GMT
Subject: CN=FB9582E0EFC2365119AC6D0FFD78F40359A2774E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:98:83:9f:68:40:f9:02:82:52:93:cf:23:f0:
e7:8b:e5:bc:41:9f:2a:fb:88:18:54:d9:a3:3a:a4:
e2:b9:17:a7:bd:b3:d2:07:0e:80:2f:2d:d3:38:93:
6f:f1:f2:1d:93:8b:7e:8b:5d:30:01:95:e4:0a:ad:
24:dd:fb:45:77:d7:13:3b:a2:be:1e:f1:50:12:c2:
09:31:b9:58:c1:21:0c:da:99:8c:ac:11:47:6e:e0:
d3:95:0d:ac:1e:b4:09:38:65:ac:c5:6f:2c:7f:d3:
a6:1c:f8:78:3a:64:b3:30:1d:d5:a7:a7:53:4c:22:
dc:f1:d3:ed:06:ca:ed:31:59:dd:c9:fd:11:19:39:
73:d0:0f:7b:c9:67:a4:a9:d8:ff:d6:f9:8a:10:03:
03:d5:df:4c:a4:ee:c8:62:9e:bc:4f:04:fc:1d:a7:
56:b4:f4:85:f9:66:42:30:63:1e:36:7a:01:bd:c1:
7e:2a:34:be:7b:51:76:a2:af:02:11:f9:b3:59:c1:
b7:b6:38:8b:6f:b5:95:d1:6f:24:40:bd:2f:b3:8b:
1d:5f:7d:fa:34:42:27:48:83:a3:6d:e2:5d:f0:ae:
8a:50:9b:93:a6:cd:87:4f:6e:12:7e:df:6a:e8:e8:
24:53:72:da:20:11:d4:71:80:15:ec:af:1d:c6:dc:
f3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:95:82:E0:EF:C2:36:51:19:AC:6D:0F:FD:78:F4:03:59:A2:77:4E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:207::/48
Signature Algorithm: sha256WithRSAEncryption
cb:ab:55:ab:87:c8:2d:47:75:08:a2:4c:e9:4d:82:2b:15:cd:
98:59:f0:17:bb:bd:09:7f:7d:95:04:00:fe:e2:2f:99:eb:78:
13:e1:01:13:a7:1f:85:c2:de:39:b2:0c:00:41:ba:0d:15:db:
30:3e:5a:d7:42:37:79:04:72:67:8c:34:46:38:1f:61:8c:dc:
c0:2f:ac:a2:d8:3b:fa:87:07:7b:ea:3a:ac:2c:78:1d:dd:92:
0b:b3:46:a4:a3:e4:1b:a1:4d:c8:35:ab:18:93:cc:17:b4:60:
7d:3b:f9:3f:5b:88:40:51:6e:c1:a2:3e:a4:e6:1b:d9:c7:96:
e2:c4:f9:3c:d3:a7:84:46:0a:e2:a7:61:04:5d:ac:23:05:e1:
d5:b7:ad:37:1e:e4:dc:00:37:a2:ab:56:72:13:b0:11:4a:bd:
3f:e4:86:21:34:78:6c:7a:29:d6:fd:77:28:48:39:0d:9b:db:
46:e5:44:ec:a1:87:c7:fb:5d:67:80:11:e2:3e:b8:d8:35:9c:
7e:3f:b7:0d:4f:49:88:79:6c:db:2e:74:57:02:89:ad:51:50:
c1:8a:d2:5a:f1:89:b1:c3:c9:6b:37:e5:91:4f:ae:c1:f7:33:
a1:26:f8:e2:d4:2e:92:0e:64:ac:ab:a5:eb:59:c3:f0:b9:61:
ff:7b:92:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org