Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 6kSbq+V1Z5QWv30jPoTrSbJ6FBPP24rwH/+RoADxVb8=
Subject key identifier: 26:90:C1:98:59:2B:17:43:B8:59:ED:B1:8A:F9:60:8B:78:6E:9E:9F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1F9E992A0D58EAE53BB0326A137DBE486D6DF8BC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:09 +0000
ROA not before: Mon 26 Sep 2022 09:55:09 +0000
ROA not after: Mon 25 Sep 2023 10:00:09 +0000
asID: 59282
IP address blocks: 2400:d680:25a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:9e:99:2a:0d:58:ea:e5:3b:b0:32:6a:13:7d:be:48:6d:6d:f8:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:09 2022 GMT
Not After : Sep 25 10:00:09 2023 GMT
Subject: CN=2690C198592B1743B859EDB18AF9608B786E9E9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:62:78:e7:42:45:13:7c:21:da:2f:01:4b:db:
1d:32:e5:bc:4f:49:c4:9b:e8:12:2f:64:a4:99:07:
6a:c1:3f:9a:70:21:21:ba:d6:6e:70:5a:ee:48:cf:
53:1b:70:b7:9b:68:0d:eb:4a:d5:8f:83:71:50:55:
c4:70:51:3f:be:12:b0:c4:82:58:aa:c8:23:18:74:
ae:67:e7:e8:b2:78:9a:02:01:a0:46:4f:51:cd:1f:
98:71:55:7b:5f:cf:57:3c:d9:5f:a2:ee:ed:12:34:
97:5c:e5:f9:07:ae:5a:c7:6c:4f:8f:a1:9e:38:81:
3b:d7:63:48:88:ea:b5:31:1e:f7:89:60:e1:f0:0d:
2e:4d:27:05:96:c5:05:0f:86:8c:9f:dd:2d:2e:91:
8f:c1:02:8d:2d:8b:61:58:5c:63:94:3b:2d:5b:b6:
5a:3c:d9:be:27:8f:ab:41:27:c5:c4:06:f1:04:c7:
d1:17:57:92:38:9a:c7:d1:41:5c:fe:da:fa:d5:6a:
96:33:48:53:93:69:25:eb:e1:3a:8a:3f:d2:a3:c5:
18:0a:99:32:ea:c6:1f:c5:ce:d6:7d:c6:4b:af:f8:
00:82:bd:c9:39:e2:05:8c:30:52:98:fd:de:cb:4c:
dd:bd:ac:5f:67:7a:72:c3:84:29:97:68:ad:6f:22:
6c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:90:C1:98:59:2B:17:43:B8:59:ED:B1:8A:F9:60:8B:78:6E:9E:9F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:25a::/48
Signature Algorithm: sha256WithRSAEncryption
55:dd:4d:61:76:e4:f1:fe:19:40:3d:a4:91:b7:bc:17:6d:26:
40:91:8e:9e:ef:da:97:49:a8:be:df:41:99:8d:9e:db:4d:42:
fe:23:ba:d5:cf:70:d8:e3:30:0f:43:8e:c1:4c:ab:68:e9:1f:
17:95:b0:85:0c:11:0f:02:46:60:e3:33:b4:e7:d9:25:bd:2e:
38:f5:c9:86:9a:61:d8:e9:80:44:88:d6:f3:5c:15:cc:8f:5a:
1d:35:7a:cf:e2:f7:65:43:2d:11:94:73:1b:f0:ee:f9:b2:27:
4a:73:75:33:b5:bb:29:1d:29:6b:51:fd:a6:16:39:1d:27:e6:
51:35:5c:86:5c:79:d7:9a:45:ae:ec:67:c2:51:32:93:b0:42:
a9:a9:1b:08:9b:d8:29:e9:25:48:0d:b4:8f:fd:c8:ca:af:24:
0b:78:ca:05:08:99:dc:76:f8:18:65:b2:bf:46:db:03:de:ed:
33:65:7a:65:cc:5f:77:06:b4:29:a2:6f:9d:e6:f3:68:4c:a5:
63:36:1e:26:86:c1:9d:b4:44:c1:50:63:37:89:7e:9f:12:0a:
df:3c:bc:56:87:73:de:7c:c3:7c:fc:ff:e3:0a:f3:51:37:b9:
7f:97:80:56:d7:e9:a2:4f:da:32:14:25:ac:b8:f3:fc:ad:a7:
ec:71:6e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org