Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: XlA7q8IY3uR6IuT5EtZuBGnFy3j2Ka2454PbB9/PJ5c=
Subject key identifier: 3C:0C:77:E4:2E:D9:EC:C0:4A:AF:72:3B:F9:1D:E2:13:F3:AD:60:93
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 32B82BD98EA6E27422878734D2FDBF2FD711E882
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:31 +0000
ROA not before: Mon 26 Sep 2022 09:55:31 +0000
ROA not after: Mon 25 Sep 2023 10:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:25e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:b8:2b:d9:8e:a6:e2:74:22:87:87:34:d2:fd:bf:2f:d7:11:e8:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:31 2022 GMT
Not After : Sep 25 10:00:31 2023 GMT
Subject: CN=3C0C77E42ED9ECC04AAF723BF91DE213F3AD6093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0d:05:a3:2e:be:55:f5:7a:a7:fc:af:35:dd:
90:e4:0c:d5:a8:7a:dd:1d:75:c8:8a:24:08:70:00:
9b:5b:92:cd:e3:6d:35:99:46:28:cb:5e:5c:47:8b:
8b:0c:3a:90:86:30:81:f2:bf:45:66:7c:37:28:fc:
1b:0c:8c:d9:fb:62:b4:3e:26:9a:09:d6:6c:37:ab:
80:d3:28:c2:3e:fc:12:c5:ac:81:54:89:80:86:f6:
e8:e2:80:3d:4a:29:48:16:5c:a4:77:ec:d0:7f:2b:
12:1d:e0:85:b6:47:23:9d:3f:1f:c9:25:9c:ef:83:
8c:b5:20:33:16:39:8f:87:d2:0b:ad:6f:f0:a2:cb:
c1:aa:a6:96:0a:7f:5a:5c:8b:d3:ed:30:05:14:96:
35:15:40:d7:bb:d2:7b:13:bb:06:cd:bd:22:30:25:
c4:9a:08:98:fa:dd:70:b2:d2:19:df:05:61:30:d2:
a7:49:db:a1:c1:9c:59:e9:41:32:2c:62:4b:d7:8b:
2a:f7:07:cc:83:4c:01:72:60:9d:15:1c:6f:6a:84:
b4:05:7a:84:ed:40:09:d5:25:f3:bd:f3:46:c1:a2:
27:9c:0e:c6:94:ea:35:79:0d:5f:22:5a:0f:17:ff:
a2:6b:51:ff:67:d2:2e:eb:c9:0d:0e:2b:8a:68:92:
bc:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0C:77:E4:2E:D9:EC:C0:4A:AF:72:3B:F9:1D:E2:13:F3:AD:60:93
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:25e::/48
Signature Algorithm: sha256WithRSAEncryption
31:7e:19:39:d2:41:06:54:7a:d9:a3:f8:79:37:2f:c8:67:c5:
cc:36:1e:a8:8b:8d:69:fe:71:2e:41:1a:0b:f3:d2:58:81:29:
99:30:04:b9:1d:da:f8:74:48:88:d0:d4:2a:6d:62:41:33:31:
f4:f6:5d:70:96:73:e7:bf:64:e0:73:be:93:bd:8e:13:07:fc:
4c:05:f8:21:01:ce:48:a0:8a:91:23:f4:d6:d1:16:f8:57:da:
bc:cc:fb:2e:fe:80:6b:76:0f:8e:af:30:b6:53:11:d8:29:c4:
e6:a6:ad:22:10:93:47:c0:3a:87:38:74:2b:fb:6d:22:33:df:
68:be:50:0c:17:c4:e6:2e:50:9d:d0:c5:62:07:da:aa:ff:d9:
bd:b6:2c:6f:ca:27:77:be:04:fe:86:22:bc:38:eb:32:ca:3f:
b5:5c:26:e0:77:11:dd:13:ad:25:65:13:6e:0f:c3:3a:f1:8e:
9c:e3:54:14:c9:36:fa:93:70:88:4e:e7:21:12:ee:bd:72:e0:
d0:66:91:6c:89:98:04:ea:80:45:ad:35:1b:6d:73:51:69:b1:
b7:10:95:47:47:fc:cc:2c:f4:32:94:56:83:aa:09:d2:5b:28:
b7:7e:bb:26:89:fe:83:50:9d:c3:38:4f:3f:5f:af:74:e0:fd:
b4:bd:fc:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org