Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: NoE6Yu6d03mA3Out1Q62T1w/ilq3RAErV4VRB25pi6g=
Subject key identifier: A1:06:0B:FA:81:75:DA:51:B5:8E:D9:03:49:B0:B2:04:A5:25:E6:4D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 65FF9EFF960EC29FD1F28E86D556789B8F31721C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:38 +0000
ROA not before: Mon 26 Sep 2022 07:56:38 +0000
ROA not after: Mon 25 Sep 2023 08:01:38 +0000
asID: 59282
IP address blocks: 2400:d680:20c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ff:9e:ff:96:0e:c2:9f:d1:f2:8e:86:d5:56:78:9b:8f:31:72:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:38 2022 GMT
Not After : Sep 25 08:01:38 2023 GMT
Subject: CN=A1060BFA8175DA51B58ED90349B0B204A525E64D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:73:77:ed:6b:e8:8e:00:ef:c5:ca:67:18:41:
e5:b9:29:26:a3:e2:c9:55:f2:c6:ca:70:83:2c:77:
d0:7a:f5:e1:14:d5:6d:2a:c9:18:81:62:77:0d:a3:
7b:aa:8d:dd:3b:28:b5:38:30:00:50:f4:f9:d6:ef:
b2:23:42:cf:3b:6a:b9:55:f2:06:3b:c1:70:3c:56:
db:f7:5d:af:75:96:c4:7d:be:14:f4:20:39:fc:6d:
ec:1e:67:c0:2a:b7:5e:65:06:3b:4d:be:99:39:31:
47:02:6d:a8:f9:ac:8f:6c:47:44:25:70:ad:52:f0:
59:68:5c:5c:f4:95:60:27:7b:5b:85:d1:20:3d:0f:
30:69:31:a8:8b:77:39:80:06:10:93:9b:fd:d0:41:
bd:21:12:3a:fe:64:1a:96:4f:b8:2c:cf:6d:82:4a:
39:51:50:0b:c5:ab:29:9c:36:aa:e2:d6:c0:e5:09:
12:0c:12:7a:d4:8b:29:93:e6:7d:9f:be:41:aa:41:
88:ea:de:5d:3c:c6:eb:70:6b:3c:e6:7b:d1:28:53:
13:90:b7:10:1a:07:09:6b:10:c9:fc:a5:4a:24:a2:
f4:e0:e9:b1:2c:c5:87:7a:00:ca:d9:5f:da:db:e0:
79:2c:cf:9a:fa:5b:e3:52:6f:77:27:47:51:78:bc:
7b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:06:0B:FA:81:75:DA:51:B5:8E:D9:03:49:B0:B2:04:A5:25:E6:4D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:20c::/48
Signature Algorithm: sha256WithRSAEncryption
b8:2d:db:13:a0:22:71:1c:fc:11:b6:10:6f:b6:81:ba:3c:54:
76:79:5c:88:ad:32:c1:86:75:7f:84:44:41:a6:a7:b8:2e:8a:
e8:43:7f:0b:89:bf:d1:cc:6b:3a:e8:83:ec:dc:96:b6:14:70:
bd:80:e5:e2:d8:27:b4:bd:65:d9:42:5f:28:8f:55:c2:aa:2a:
a3:d0:ee:d4:72:ef:ec:12:17:19:02:15:99:5d:d2:82:13:1b:
63:c2:dd:d7:16:dd:be:6c:bb:41:77:ca:1f:fa:49:9f:b8:88:
6d:2d:2b:60:a5:3c:f2:11:31:93:3d:38:6c:cc:9c:ce:9b:07:
6a:58:be:70:f2:7a:47:2f:db:49:df:15:55:bf:74:51:da:88:
9b:83:fc:5e:2b:e8:dc:7c:14:6a:14:d4:1d:4c:2e:de:42:82:
f3:a0:a4:5c:00:ea:b3:c2:08:10:09:d7:5b:66:f6:6e:a9:bd:
1e:50:f0:39:f9:27:18:d4:e6:5c:82:71:0a:31:de:67:45:74:
2c:24:26:ff:fc:df:e8:5e:9c:d0:3c:bc:00:bc:91:93:10:32:
7c:5d:19:67:c5:21:77:17:d3:f5:9d:1d:49:ec:fd:ad:99:3d:
16:d4:cd:c3:47:dd:1c:a1:ca:fb:5b:d4:fa:43:cc:b6:ad:22:
fc:14:d2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org