Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ErqcB56C1eJrPo/SJq2/i8ulfTKwNRT2q4QnjfWoUEs=
Subject key identifier: 74:9E:DE:4C:4A:61:1B:3C:4B:B2:59:10:C7:AB:71:DB:C0:E9:B5:37
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 466E9A64E89A1DE8E8B2A42F94F6C2B5EA00635D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:13 +0000
ROA not before: Mon 26 Sep 2022 09:55:13 +0000
ROA not after: Mon 25 Sep 2023 10:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:252::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:6e:9a:64:e8:9a:1d:e8:e8:b2:a4:2f:94:f6:c2:b5:ea:00:63:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:13 2022 GMT
Not After : Sep 25 10:00:13 2023 GMT
Subject: CN=749EDE4C4A611B3C4BB25910C7AB71DBC0E9B537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:30:3c:93:08:ab:58:fe:59:5f:ab:c4:3b:5c:
05:be:7a:5f:65:4d:01:30:05:99:51:34:d5:62:d8:
f7:0c:dc:69:bf:30:09:01:cb:e9:13:58:24:ff:fa:
5c:83:7f:96:6a:e8:d1:a0:09:a1:88:96:0f:07:34:
f0:ff:a2:65:ba:cf:3d:ab:e9:c3:0c:b9:76:6a:97:
7e:81:b4:d3:52:0a:85:3b:05:a7:f4:8a:55:cf:24:
14:50:ab:48:7c:c1:85:c5:95:6d:a5:01:c5:c5:be:
38:8d:72:3b:ac:f8:89:de:9e:a2:4e:28:4f:a6:dd:
a1:f4:cf:da:ba:17:c6:e5:8c:c9:3f:93:1c:92:70:
d7:c0:0b:9b:fe:bb:a4:1c:f4:41:7f:b6:e9:37:f2:
75:93:08:c5:dd:43:4a:f8:34:40:2b:ec:28:59:e1:
aa:c1:ac:1e:c3:89:9f:c1:38:90:67:36:32:2d:f8:
a1:b9:7a:fa:53:e1:be:3b:9e:99:ef:25:e5:6c:83:
6e:c6:c3:ae:0b:a2:d4:87:e2:88:8d:9b:00:f6:83:
03:fb:54:e7:72:d4:fa:6d:d7:20:c2:15:81:a7:bd:
43:84:f2:42:18:69:5d:b3:07:32:28:61:eb:a9:f9:
a7:f7:06:43:95:ca:db:68:81:5c:98:b9:92:d6:c0:
8c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9E:DE:4C:4A:61:1B:3C:4B:B2:59:10:C7:AB:71:DB:C0:E9:B5:37
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:252::/48
Signature Algorithm: sha256WithRSAEncryption
76:32:bc:f6:12:ae:81:4b:1c:e4:89:62:ce:e2:cc:cd:26:2c:
08:99:78:22:7b:ca:df:a4:15:4b:37:c6:fd:c3:5d:c1:dd:ae:
59:3a:39:04:92:d7:5f:2c:2a:e6:f2:b0:5e:b2:db:cb:2e:e8:
44:5e:49:77:cf:06:cd:f9:5b:30:ef:bf:ae:19:a5:5d:14:89:
17:c7:80:42:06:f2:13:f5:3e:34:73:d4:93:f8:27:b3:d1:ef:
d6:4d:2e:41:10:b9:e6:fb:d5:00:76:18:e5:d3:90:ba:33:c0:
eb:41:04:80:eb:80:92:4e:2f:a7:a9:52:54:97:21:20:60:00:
0a:e4:12:fa:9c:0e:34:ba:4e:a5:4b:77:74:43:22:41:81:cf:
36:c1:df:96:56:e8:cf:63:e9:e2:e8:34:87:57:c3:61:f3:51:
ce:f2:c5:8a:a1:3b:a2:00:a3:23:47:cf:5c:85:c3:84:9f:b2:
2b:d8:f2:b5:e3:7d:c9:a4:40:be:90:59:18:27:95:75:3e:6c:
98:83:7b:33:67:66:48:5b:e1:55:e7:c9:1f:71:dd:28:84:ac:
7c:ff:5e:5a:ce:09:f6:89:03:95:c1:8b:f3:76:6f:51:ac:5e:
35:af:53:d5:b2:ae:73:7a:29:6b:d4:d1:98:d8:7f:dc:60:c3:
76:b9:0b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org