Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: WKYiLiarskNteqVt7ywqsDEkstsM5mCi3gUX0KGrNEg=
Subject key identifier: 2C:6A:C5:08:DE:12:89:CB:AC:62:A9:BA:9E:EC:6A:EC:39:5F:83:7E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 375CA898B4B0FF72D6DED8177D6F612975409A9E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:04 +0000
ROA not before: Mon 26 Sep 2022 09:55:04 +0000
ROA not after: Mon 25 Sep 2023 10:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:24a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:5c:a8:98:b4:b0:ff:72:d6:de:d8:17:7d:6f:61:29:75:40:9a:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:04 2022 GMT
Not After : Sep 25 10:00:04 2023 GMT
Subject: CN=2C6AC508DE1289CBAC62A9BA9EEC6AEC395F837E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:57:42:eb:09:a0:0e:c9:97:d5:7d:5d:7d:
c7:68:74:66:72:b4:20:73:57:44:78:bd:14:76:f4:
d4:4f:7f:b4:44:6b:34:db:01:84:d9:50:c0:1c:1b:
5b:3f:98:da:ac:f4:e8:59:18:6a:3f:72:7f:61:0f:
75:93:11:0b:49:23:6a:11:7f:1d:33:a8:cb:c1:24:
36:86:43:3e:65:01:d3:5a:1d:64:fb:2a:84:59:fd:
eb:5d:b8:6b:c8:8b:2c:4c:26:28:b8:bb:17:e9:6a:
49:b0:d0:05:69:f0:f0:16:f8:a4:ab:3e:35:03:46:
d8:54:80:59:a3:5d:72:20:0a:4f:68:43:9d:02:f3:
4f:ce:e4:92:f3:76:f0:09:a0:31:4a:7f:f8:9e:57:
56:3d:44:68:3c:00:0b:dd:9b:ca:be:1f:dc:18:c5:
9c:34:86:aa:45:ef:e8:ec:c3:c6:a4:00:29:e6:04:
25:4b:ff:ab:eb:68:34:80:05:8a:ab:fb:8f:27:89:
2e:2b:fd:c4:2e:49:72:3c:2f:57:5f:ed:85:be:14:
d6:41:9d:68:63:51:51:d7:23:5f:34:22:49:7b:8b:
cf:f5:6f:f1:6e:43:e8:73:6f:df:29:62:db:20:12:
29:2b:fd:9e:11:28:e3:1e:d9:4d:08:04:1a:7e:60:
d5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:6A:C5:08:DE:12:89:CB:AC:62:A9:BA:9E:EC:6A:EC:39:5F:83:7E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:24a::/48
Signature Algorithm: sha256WithRSAEncryption
95:b4:e3:c5:64:1e:a7:de:65:0a:88:07:e4:0a:8c:21:fd:9f:
9f:bd:88:54:1c:a2:fb:87:97:e5:4e:3e:dc:86:d9:e5:ad:80:
1e:67:a7:ee:b2:90:ea:44:27:5e:c4:d4:fd:25:4a:47:1a:51:
29:5a:82:30:15:f7:fb:62:3d:63:cc:96:e9:0f:e5:d7:3b:90:
99:e4:c1:1e:47:9d:83:c1:dc:e1:53:d9:d9:a9:5f:c7:96:51:
c7:66:78:e0:53:13:59:fc:97:08:ff:81:32:05:95:f2:0f:e1:
fc:ce:9b:35:c3:f5:b6:ee:17:42:95:b4:76:22:63:fb:7f:0a:
74:7f:aa:fe:8c:1b:51:86:00:11:6b:cd:54:c5:4a:2c:d8:ae:
5f:9f:4f:d3:1e:03:f2:83:2d:09:e6:bb:22:ef:b6:29:8b:8c:
a8:66:47:cd:2a:da:c1:05:ac:e9:d2:a5:a3:d4:f8:05:7e:a2:
4c:24:b8:0f:a0:fa:a1:44:f5:8c:52:f9:60:45:ac:8b:98:27:
eb:a6:79:6e:57:e2:37:93:cf:58:c0:b0:7a:a2:bd:07:a1:81:
19:74:32:9e:e6:d4:59:4e:71:cd:96:05:64:d2:c0:74:e6:b9:
8e:98:58:56:5b:4c:71:28:4c:f5:2e:b4:32:de:c6:22:17:2f:
4d:ea:42:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org