Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: NhdDD3TX9Vm+FePgCNkd5EIDitq1qkrd9i7TjN/2nL0=
Subject key identifier: A2:AB:30:6C:E3:32:E0:72:30:78:69:0F:D0:65:C2:81:D3:47:FA:5F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5DF23BFACB6B26CEBDCCFB4428D1624F99623337
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:42 +0000
ROA not before: Mon 26 Sep 2022 07:56:42 +0000
ROA not after: Mon 25 Sep 2023 08:01:42 +0000
asID: 59282
IP address blocks: 2400:d680:217::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:f2:3b:fa:cb:6b:26:ce:bd:cc:fb:44:28:d1:62:4f:99:62:33:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:42 2022 GMT
Not After : Sep 25 08:01:42 2023 GMT
Subject: CN=A2AB306CE332E0723078690FD065C281D347FA5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e8:5c:44:5e:3a:fa:8f:c9:36:98:a7:45:10:
99:aa:23:1b:e4:ba:54:c0:55:08:47:4b:81:40:d6:
37:62:8b:48:ad:65:57:30:ab:cc:7a:f7:6f:19:54:
85:ee:da:be:e8:3e:c1:f8:c7:0f:05:be:13:57:1a:
b9:ba:f7:29:8e:8c:10:30:bb:87:4e:64:d2:a3:55:
ad:43:eb:32:25:7a:38:eb:7c:92:6f:a9:35:7e:07:
0e:b7:40:6f:4d:5e:d5:c2:37:bd:05:a6:61:87:bf:
2e:67:a8:9a:d6:ed:d1:05:dc:7d:b7:4c:a2:01:65:
a3:50:bd:a5:2f:30:1b:20:23:5b:92:be:83:85:e0:
8e:c4:76:87:f9:fa:f6:14:7f:06:d6:29:88:15:7c:
d6:eb:88:7f:2d:9b:e0:c5:46:63:43:d6:44:f4:39:
bf:0e:16:ec:a6:57:f5:43:5b:ef:ac:f7:65:f0:84:
10:3e:12:d7:07:19:e9:b4:14:97:0f:fa:cf:79:64:
e3:0e:1a:ab:62:e9:82:ee:e0:4f:87:ae:d4:4e:8b:
41:92:09:60:7a:23:e3:d8:8b:15:58:53:9f:db:ac:
f6:47:5d:e5:3d:2c:b1:6d:b7:3d:14:59:f5:1d:45:
e0:4a:69:6a:e4:b2:05:9c:50:dd:5d:db:57:16:9d:
1b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AB:30:6C:E3:32:E0:72:30:78:69:0F:D0:65:C2:81:D3:47:FA:5F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:217::/48
Signature Algorithm: sha256WithRSAEncryption
af:f8:94:c3:17:a7:6d:3b:c8:79:3c:5a:9b:00:58:7c:d6:df:
04:9a:9f:2a:4e:19:be:37:3d:3e:70:98:8b:8b:2a:7f:79:0d:
89:17:64:c9:b1:96:38:40:55:31:ce:25:54:a4:c4:45:85:fa:
5a:be:9d:aa:34:cc:cf:90:be:a6:7c:34:44:59:52:a3:9b:b7:
a0:06:66:21:c2:46:4c:23:1e:7a:4e:b5:a7:ea:c7:99:b0:f4:
c2:7b:f9:68:a8:81:06:14:c7:fc:99:ac:e6:67:70:08:3e:4f:
d3:15:75:04:b6:67:09:81:50:06:92:bd:09:77:8c:0b:50:9c:
7d:9d:8d:30:d7:b3:5a:09:ed:da:04:a0:69:50:a0:da:18:0d:
95:ac:c5:2a:46:d8:a7:c8:99:02:a9:09:4b:95:72:08:0c:80:
20:b9:39:14:c2:8b:d1:0d:2a:93:84:28:b2:c0:06:23:ed:7f:
54:1b:0c:85:9b:c2:09:9b:b9:9c:b0:73:74:85:af:de:93:ec:
2f:e3:7a:5b:b5:5a:ca:c1:7e:1a:51:e9:c6:15:c1:56:fb:84:
7d:ce:77:85:ff:49:f4:17:81:e4:af:bb:12:b0:2e:7a:1a:cd:
7c:5d:0c:bc:f4:22:26:71:01:88:9d:4d:a4:df:13:12:6f:95:
79:d0:57:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org