Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: u3OKxFy0my23bHi+7rbioDFYE2EGvX/CnRa/WqARHfc=
Subject key identifier: 22:A5:32:3C:90:69:D6:2E:4D:9A:66:CB:BB:B8:21:3F:77:1D:7D:BD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 35E296DCA102965BEF38BC32F651673243023209
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:32 +0000
ROA not before: Mon 26 Sep 2022 09:55:32 +0000
ROA not after: Mon 25 Sep 2023 10:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:257::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:e2:96:dc:a1:02:96:5b:ef:38:bc:32:f6:51:67:32:43:02:32:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:32 2022 GMT
Not After : Sep 25 10:00:32 2023 GMT
Subject: CN=22A5323C9069D62E4D9A66CBBBB8213F771D7DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:1f:ac:5e:9a:03:ad:6f:55:81:fe:d6:b6:
57:03:23:ff:02:02:88:54:db:8b:c8:55:ec:95:b3:
e1:56:5d:42:ef:6a:50:30:73:cf:77:76:1d:b0:28:
18:45:d2:db:14:2f:4b:69:79:4b:d7:fd:3b:42:d3:
69:58:d7:56:19:9d:2d:16:b0:23:aa:c2:d2:ee:8b:
cd:b4:9f:d3:19:b4:69:93:75:ae:1f:5c:c2:62:6b:
4f:98:b7:92:39:d8:64:fa:a6:7d:e2:47:2d:7a:f7:
97:ad:03:51:1b:fe:0b:25:42:3c:4a:f4:29:a0:f3:
6c:40:b8:df:c1:02:e3:99:19:85:b5:b7:f7:8e:53:
3a:71:75:67:6d:4b:a9:c8:06:fb:a8:75:b9:19:da:
89:3d:01:46:b3:bf:74:5a:a2:96:e6:ce:10:9c:86:
ff:68:0d:36:98:7f:98:82:ba:84:d8:d6:a2:90:a1:
9c:a0:97:09:7e:51:0d:a6:06:1d:7d:2d:43:91:c5:
c5:5f:0a:93:05:52:53:cf:5c:a8:13:ae:d9:1f:07:
86:29:0d:a2:95:3b:f2:ec:24:e5:2e:08:9e:4c:87:
47:21:67:69:04:b1:6f:27:b7:f0:bb:b4:fa:bf:a7:
7e:75:f4:01:12:36:f9:2c:77:26:58:d9:b0:5f:1d:
18:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A5:32:3C:90:69:D6:2E:4D:9A:66:CB:BB:B8:21:3F:77:1D:7D:BD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:257::/48
Signature Algorithm: sha256WithRSAEncryption
3b:54:30:84:6e:0a:d4:52:61:dc:19:fa:a5:50:25:13:d8:0e:
03:cb:d0:bf:64:8f:0d:97:b7:c0:5a:75:92:44:7e:56:2e:6a:
01:3f:c4:eb:89:13:0e:95:4b:c4:66:ef:22:45:bd:06:28:97:
dc:e5:26:93:5d:22:2f:d6:5f:9b:47:62:b8:d8:5b:af:11:14:
10:f4:6e:d4:a6:e3:f6:e9:09:2f:d4:e5:a6:b3:35:19:1a:e2:
47:a9:c9:ec:23:d5:88:93:d6:c9:87:e9:ed:54:20:67:48:f6:
79:0c:31:65:98:11:28:dc:17:93:aa:b8:ef:5c:a6:8c:65:97:
83:9a:6b:7f:20:fc:e8:79:c6:52:3f:09:14:39:94:53:47:76:
db:75:9f:83:50:b2:64:72:33:43:5d:82:58:38:a6:df:2e:02:
63:cd:4d:0a:f2:d7:44:18:f5:2a:74:4b:c4:00:82:83:d4:61:
34:23:48:c8:9c:e9:73:3f:bb:1d:13:c3:5a:74:c4:a5:8f:ec:
08:28:16:06:dc:8c:3b:04:a4:6b:5f:25:e7:fb:d0:3b:42:81:
10:36:d2:61:a9:32:ad:6d:5e:6c:ae:41:97:f4:b9:ea:95:da:
c4:cc:68:d1:13:c6:b7:5b:52:a2:ff:99:c5:35:d8:85:79:15:
d3:bb:46:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org