Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +setSvBilSI/2dw63jdo/HJNYLfjv+mkbrI27pos0sU=
Subject key identifier: 14:69:7E:62:D9:83:D8:9F:84:2C:DD:FF:77:3C:62:7C:96:41:27:E1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 18AB39022DF18B8ABC1F81A7946E93461B43B714
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:36 +0000
ROA not before: Mon 26 Sep 2022 07:56:36 +0000
ROA not after: Mon 25 Sep 2023 08:01:36 +0000
asID: 59282
IP address blocks: 2400:d680:232::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:ab:39:02:2d:f1:8b:8a:bc:1f:81:a7:94:6e:93:46:1b:43:b7:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:36 2022 GMT
Not After : Sep 25 08:01:36 2023 GMT
Subject: CN=14697E62D983D89F842CDDFF773C627C964127E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fb:7a:0a:c3:b0:9a:09:b0:ca:95:09:f5:10:
2b:30:22:ee:b2:ca:b8:40:aa:e7:fd:66:f5:76:48:
0a:92:a3:61:7e:75:07:61:59:20:96:3c:16:5a:25:
c2:36:40:f9:a7:ad:bb:52:0d:89:ec:1f:d6:77:15:
5e:27:93:16:65:93:9b:7d:1e:e8:ec:df:e4:d8:82:
31:a2:fd:34:ce:9d:4f:98:71:a7:4a:d1:1c:53:b5:
1e:69:75:8c:03:75:9f:b3:3b:78:4f:06:de:29:12:
b1:97:88:ff:25:97:cd:bf:2e:1d:65:7b:3b:28:1f:
ae:6a:9b:9b:47:e0:4e:d8:ed:1b:93:b8:09:bf:c5:
3c:15:85:e6:5d:4b:4d:09:47:a8:13:17:f8:90:ce:
09:7f:5d:3a:bc:00:51:fe:63:bb:4f:08:37:a7:1d:
8d:e6:df:cf:8a:12:7e:b7:bb:a7:0e:a4:39:c3:e9:
bc:0b:ce:cc:58:03:b9:3b:f4:01:ad:2c:96:bb:8d:
2a:01:80:8e:2d:ef:15:54:4d:8f:91:04:8a:04:d5:
2c:7d:8c:97:33:1d:9a:80:f3:90:ac:0a:44:63:b6:
41:09:36:05:87:61:2e:70:5e:41:4b:0e:df:6e:93:
27:8c:44:cd:25:a7:0f:2f:d1:75:a7:b0:3c:14:85:
4b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:69:7E:62:D9:83:D8:9F:84:2C:DD:FF:77:3C:62:7C:96:41:27:E1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:232::/48
Signature Algorithm: sha256WithRSAEncryption
c6:15:ff:70:ba:b4:6e:c1:c7:6f:c1:b9:e4:47:74:c5:5f:80:
49:43:06:cc:77:7d:87:3e:91:22:fc:69:f8:2d:5a:40:d9:37:
2f:4c:a7:1b:96:c7:ae:99:69:8b:11:91:60:fe:0a:10:9d:83:
23:ad:8e:28:c2:4b:f8:3a:fd:ea:1b:51:b2:07:1b:24:cc:a7:
60:9e:87:95:2d:f6:3a:97:3a:8f:d6:dc:c2:2a:b5:8c:a3:da:
32:d0:38:8b:a5:cd:15:a4:34:14:07:b2:b9:56:da:0b:28:5e:
a4:1c:95:75:de:ab:68:8b:d2:a5:e6:59:6d:ca:0a:71:05:bb:
de:4e:68:5b:35:bf:5f:fa:f8:1f:3b:41:b4:ed:c3:17:a8:14:
b4:4f:8d:9f:b1:39:4c:83:3c:9e:47:76:91:e9:47:c6:3a:b4:
5e:e1:c0:6f:89:ff:8b:49:08:7e:4b:e3:c5:d0:f9:e6:29:59:
54:2f:23:64:48:fe:67:bc:53:af:26:e4:3e:60:4a:29:b5:85:
4b:e6:a3:0a:47:87:d9:e1:34:9c:ec:6b:db:9f:6e:60:44:8c:
4a:26:ca:d6:de:37:99:cf:2c:1a:dd:67:3e:b7:21:53:f7:54:
28:ca:fe:1d:12:ee:74:05:05:7f:80:e8:98:6a:6d:07:3e:b6:
b7:d4:37:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org