Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: IF59D82Sq8F3zgVOo8lQHvOZCw1KzapPMte0zHAwuRU=
Subject key identifier: 04:D7:75:AC:22:21:34:0E:F3:B4:87:33:98:88:8F:0F:5C:B3:00:46
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3857A871C2688299EC09E14695F859A7BC7E4E80
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:34 +0000
ROA not before: Mon 26 Sep 2022 07:56:34 +0000
ROA not after: Mon 25 Sep 2023 08:01:34 +0000
asID: 59282
IP address blocks: 2400:d680:21b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:57:a8:71:c2:68:82:99:ec:09:e1:46:95:f8:59:a7:bc:7e:4e:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:34 2022 GMT
Not After : Sep 25 08:01:34 2023 GMT
Subject: CN=04D775AC2221340EF3B4873398888F0F5CB30046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:99:d6:91:5e:e2:a9:4b:95:09:0c:f8:b0:
ce:b8:c9:82:5b:a8:bc:90:7e:a5:5f:4e:a8:e9:2d:
aa:d1:1d:8e:ca:9f:2e:ee:f0:4f:48:34:ca:d3:7f:
32:9c:9c:b6:42:9f:39:d4:16:3b:78:52:a4:bb:1f:
4e:a4:2c:25:b5:f4:df:f7:ae:09:73:42:f8:e2:09:
e8:3b:9a:b4:1b:c0:52:85:ae:1c:60:6b:d3:06:e9:
f1:15:86:4a:1d:b6:10:41:55:09:d2:82:15:00:b2:
42:82:88:7e:28:be:7b:ab:71:2f:a1:2c:2f:a2:2d:
be:b1:10:45:ab:da:a0:74:45:09:2a:65:12:1f:99:
51:f0:58:49:0e:7c:b4:62:de:13:0f:17:8f:1c:cf:
cc:59:3f:b6:83:c5:cb:da:2d:76:35:0b:a3:16:05:
da:21:d9:61:6a:2d:62:bb:e6:04:18:41:a7:ee:4b:
56:26:14:bc:1d:84:3e:a6:1a:da:59:ce:2e:40:4f:
7a:e1:62:89:2c:8c:46:8e:0c:0a:83:66:c0:df:8f:
d9:63:84:9a:30:30:52:19:21:2a:fb:5a:dd:28:68:
ed:88:53:bd:7d:31:8b:df:5a:3e:05:3f:68:12:b1:
1d:e6:67:4e:be:0a:81:fb:d3:c6:ec:b7:5c:0a:cc:
74:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D7:75:AC:22:21:34:0E:F3:B4:87:33:98:88:8F:0F:5C:B3:00:46
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21b::/48
Signature Algorithm: sha256WithRSAEncryption
ce:7b:87:42:e9:9a:90:1e:c1:e2:b1:cf:db:bf:7d:1b:b7:5f:
93:4b:0f:50:88:60:3d:eb:85:d9:16:a7:4a:90:db:d6:58:79:
09:12:17:a4:8e:08:2e:7b:a0:c6:8f:60:4a:4b:f5:57:04:63:
8c:79:2f:97:18:94:bc:8b:33:22:40:4a:49:b2:27:b6:3b:76:
2a:83:1a:bb:c4:fc:59:92:aa:c6:1a:5a:28:a7:76:66:1d:72:
97:6c:17:da:57:1d:8f:b2:d3:0d:85:d4:bc:71:55:34:23:8c:
8e:3c:36:55:9d:23:8b:96:fd:f9:6d:9a:17:7e:59:77:e2:15:
94:85:9f:06:db:49:40:6f:8c:f2:2d:6a:f4:14:b0:08:20:f4:
14:60:c6:d9:ac:6c:0f:e7:75:37:b2:b0:f3:91:de:29:d2:42:
06:27:f0:f4:cd:6d:79:71:fd:94:69:fa:cc:d5:bd:e9:5c:e8:
e6:5c:78:87:5e:9e:ec:9e:4c:10:c3:94:f4:c9:7d:bf:3f:d3:
64:71:95:90:bd:d9:c4:a8:1c:c5:7a:73:1d:77:80:a4:ba:cf:
a3:9d:62:8d:bc:16:d8:f9:e3:37:13:81:7b:04:be:25:49:05:
fa:86:11:20:94:74:37:4d:01:ed:9c:69:9f:ad:c2:96:7f:c7:
7a:f4:66:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org