Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bAMQ2XZh50kiciXGnswbCJZSdKGQLxsplTD/m1cD75A=
Subject key identifier: A1:ED:61:23:9B:72:52:36:63:9F:65:44:07:29:14:74:CA:10:7D:0B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6FA926BA27310E8792952AD2EFBB9F95A08F29CB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:16 +0000
ROA not before: Mon 26 Sep 2022 09:55:16 +0000
ROA not after: Mon 25 Sep 2023 10:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:250::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:a9:26:ba:27:31:0e:87:92:95:2a:d2:ef:bb:9f:95:a0:8f:29:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:16 2022 GMT
Not After : Sep 25 10:00:16 2023 GMT
Subject: CN=A1ED61239B725236639F654407291474CA107D0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:73:b7:a5:ee:fc:25:bc:00:ad:c6:e6:0b:c6:
cf:9f:e4:98:9f:4e:16:c1:db:06:5e:fe:b7:80:c6:
8d:09:f4:38:2a:75:54:19:ff:cd:31:19:92:44:39:
b2:99:57:53:14:02:63:3b:51:da:a1:b7:03:3b:4d:
56:0a:2f:d0:d3:94:fc:60:2e:54:df:fd:6e:18:29:
6f:dc:c1:d4:c6:a1:7d:37:47:1e:e3:0d:fa:f8:bd:
82:7c:1e:8f:98:1d:ed:d2:80:85:b7:93:ad:c1:a7:
87:f6:3a:9e:1c:06:75:8a:cb:1f:b5:7a:55:31:58:
76:f7:46:2a:0b:f0:4d:6c:f6:b6:73:b7:08:f8:7d:
bd:ae:37:54:e1:d0:25:37:b9:a9:10:14:a5:69:f2:
35:fb:4c:9f:3e:ff:b1:93:a1:e7:65:80:db:09:c4:
95:94:57:dd:53:28:89:17:fd:2e:b6:34:d4:f5:2a:
0d:3d:cc:6f:b1:c6:ff:d5:7d:26:72:9e:7c:99:c2:
32:10:70:1f:99:b4:79:5d:0d:55:9d:4a:fc:39:13:
e7:c5:35:a8:3a:bb:db:73:7a:aa:b9:6e:ea:64:95:
99:c1:c0:9d:f3:ad:8d:26:6e:1b:2c:cf:f6:66:74:
70:9d:da:aa:aa:c5:c3:2c:60:48:79:4b:73:8f:65:
e2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:ED:61:23:9B:72:52:36:63:9F:65:44:07:29:14:74:CA:10:7D:0B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:250::/48
Signature Algorithm: sha256WithRSAEncryption
c5:7d:1a:4e:f9:be:fb:97:56:4c:95:9e:81:30:55:90:f4:e8:
5a:4b:0e:f0:2e:85:e0:0e:79:61:72:20:fc:23:6a:9f:2a:88:
71:6b:2a:8b:22:51:01:f6:88:15:82:a2:5e:5b:51:bd:57:61:
34:ba:a7:e8:d7:05:b8:f9:5b:67:f9:e5:61:0a:cb:3b:a5:83:
be:d1:d5:db:5f:1d:03:c7:b2:13:c5:fa:b5:6c:a4:c9:86:1c:
2d:01:b6:ea:05:f1:3e:eb:6a:d2:eb:2e:d4:b6:76:d7:7e:d3:
a8:02:f4:90:25:a7:6a:f6:d9:b6:20:73:34:37:79:14:9a:b8:
a8:9f:cd:5f:06:d7:2f:4f:b9:9e:f6:41:2f:7b:28:3e:40:04:
86:1a:9e:42:c4:c2:47:1e:8e:24:d9:c7:11:f7:4c:a8:b7:aa:
3b:6e:0c:b4:af:fe:6b:27:b3:a2:4c:b3:46:5b:c3:2a:b4:d3:
86:34:69:b1:f2:6e:03:37:83:b7:7b:8f:d6:42:3c:bd:94:f8:
88:0a:a3:06:0b:f1:83:61:b0:4a:14:4c:05:92:51:cf:b0:79:
2b:e7:de:3a:ad:ba:55:c0:06:f8:dd:6c:81:61:3b:c7:a5:1a:
1a:90:ef:ec:8f:9e:97:e8:a8:39:99:95:73:16:21:5e:bb:fa:
23:e5:d3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org