Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YdBFozzrYCohB5GqJ1KrpIymfYgFul08jTLO1emH1i4=
Subject key identifier: 62:38:53:34:F2:F1:C1:97:8E:C3:DB:6A:3F:8D:17:B1:96:CA:D8:7A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 17ABC49A9C6724E48A331D93FE880518260E8E8F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:17 +0000
ROA not before: Mon 26 Sep 2022 07:57:17 +0000
ROA not after: Mon 25 Sep 2023 08:02:17 +0000
asID: 59282
IP address blocks: 2400:d680:208::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:ab:c4:9a:9c:67:24:e4:8a:33:1d:93:fe:88:05:18:26:0e:8e:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:17 2022 GMT
Not After : Sep 25 08:02:17 2023 GMT
Subject: CN=62385334F2F1C1978EC3DB6A3F8D17B196CAD87A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:4b:b8:ee:99:af:f2:64:88:ff:bb:3b:5f:
f4:fb:d2:5e:95:11:a7:fd:80:ef:03:df:20:8a:d8:
09:b6:d1:5c:5d:38:da:45:7c:9e:13:ed:ff:8d:68:
53:7e:79:76:d2:8f:75:cf:3f:f9:08:1a:4a:cd:e5:
1a:89:24:02:6e:24:88:9a:e7:13:69:be:83:51:85:
b6:2a:85:6e:ff:e3:b4:10:d4:1e:14:66:ee:d2:8a:
b8:ef:d1:ca:8d:63:77:82:54:3b:68:8e:90:b5:13:
11:45:69:88:86:94:07:80:ce:bb:18:17:ab:c1:28:
16:2f:13:e3:86:0a:25:50:64:16:e3:da:cf:91:40:
b0:00:e8:68:70:1b:22:ab:21:6f:a2:1d:26:1f:03:
0a:96:a1:da:56:ae:e7:7e:18:84:3b:0f:d8:5e:2d:
fe:39:76:74:b8:67:99:23:54:ef:38:3e:e2:90:c9:
fd:54:bc:14:df:99:cc:c4:c4:1a:b0:90:2a:b7:01:
0c:a6:1e:60:d6:e7:d6:1a:e0:c8:a1:18:1e:93:6a:
c8:6c:26:f8:3a:b7:1a:21:ba:3e:21:86:f6:53:1c:
0b:93:b4:f0:3e:43:ec:dd:b9:56:3c:13:64:2a:1b:
54:4c:cf:62:1f:9c:ca:4f:16:77:12:6d:1a:ca:89:
91:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:38:53:34:F2:F1:C1:97:8E:C3:DB:6A:3F:8D:17:B1:96:CA:D8:7A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:208::/48
Signature Algorithm: sha256WithRSAEncryption
b3:83:c9:bc:6a:fa:04:55:a1:33:d5:7e:66:19:cd:41:7a:66:
59:1f:0f:3e:a7:06:35:71:f6:15:43:32:ad:cd:7f:b9:ca:45:
9c:86:6f:f4:63:1d:10:5d:45:d1:a9:be:70:37:93:1f:69:c1:
db:cc:49:32:9a:e0:03:cb:7d:f6:d6:5a:e6:ae:b3:9d:68:50:
fd:de:64:4a:7e:1e:6f:66:66:2d:e3:db:f8:2c:de:f5:29:30:
bf:58:e8:b1:5c:c6:c4:0f:67:ad:51:40:79:4c:1d:2e:6f:d5:
05:3d:87:e6:a8:d3:59:83:d0:eb:00:e9:8a:62:e8:73:c2:97:
59:cf:73:8c:fe:b2:e6:1d:68:7b:88:e0:80:6b:20:ac:19:dd:
59:5a:2d:9e:be:38:06:0a:a0:90:74:d1:40:14:db:7b:18:bd:
4b:18:a7:81:cd:2f:34:08:12:58:82:cf:72:82:8e:fb:19:c7:
a4:66:9e:bf:2b:59:f9:c9:5a:a4:38:da:43:4a:82:5f:5e:21:
15:9a:1a:61:e9:60:67:a8:b0:69:fc:1c:65:0c:0e:c7:6c:14:
62:7d:9b:c1:4c:5c:77:9a:86:c0:9c:62:92:06:af:10:1f:d1:
b5:88:a2:c2:e6:a4:8a:9f:a6:cb:9f:14:20:3d:78:d3:b7:9b:
4b:88:8d:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org