Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LljTQeEkGaHif/lRLqxe4ZVeSv/0M+BtCU11QrsPUYo=
Subject key identifier: 1D:26:72:FA:70:85:7D:2D:0F:91:FC:05:33:FE:33:BB:65:38:4E:10
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0968B2CBCF1D5988BDB2954180C8C055262AFB2D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:09 +0000
ROA not before: Mon 26 Sep 2022 09:55:09 +0000
ROA not after: Mon 25 Sep 2023 10:00:09 +0000
asID: 59282
IP address blocks: 2400:d680:263::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:68:b2:cb:cf:1d:59:88:bd:b2:95:41:80:c8:c0:55:26:2a:fb:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:09 2022 GMT
Not After : Sep 25 10:00:09 2023 GMT
Subject: CN=1D2672FA70857D2D0F91FC0533FE33BB65384E10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cb:1f:b7:f3:ba:5e:fd:78:f5:4e:64:fa:c8:
f7:8e:6c:92:fc:30:63:ad:27:0e:b1:02:05:46:84:
e1:32:6e:2a:47:8f:ea:d9:a0:d3:e1:8c:dc:13:32:
aa:32:a4:53:8d:44:22:78:cc:49:55:be:2c:88:94:
ab:69:c2:8a:60:01:92:74:81:97:21:20:b9:4f:79:
4e:e2:81:0d:91:c2:5e:e1:7f:be:40:90:07:e0:33:
b2:69:1e:a5:8b:c6:89:57:22:7b:50:32:82:40:4e:
2d:ec:b1:bb:8c:7b:e9:48:7b:19:1b:84:97:7b:77:
8d:de:e5:7a:26:70:b5:a5:6f:75:2d:e7:0f:7d:11:
c7:30:40:a2:d9:11:c9:6d:23:96:ec:94:14:9e:c9:
d2:46:f8:27:8f:6c:73:2f:23:ca:66:15:8b:57:8a:
74:13:48:c3:33:49:85:17:d7:7f:62:ed:6a:c5:cc:
91:b8:b4:9f:0d:36:c0:61:b2:35:c0:b4:0d:8b:72:
92:7e:21:48:80:56:04:b1:73:2c:40:e2:db:87:d7:
34:19:d0:ac:19:47:ce:3d:b1:5c:87:16:23:2a:e4:
93:2e:a3:39:fa:17:0d:dc:b4:d5:20:c4:38:dd:89:
59:13:b0:75:ce:d9:a2:2b:05:25:87:b8:5e:a9:0b:
66:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:26:72:FA:70:85:7D:2D:0F:91:FC:05:33:FE:33:BB:65:38:4E:10
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:263::/48
Signature Algorithm: sha256WithRSAEncryption
36:8f:4b:6d:59:9a:9f:8f:90:e4:5b:69:d5:e5:ae:be:6b:31:
aa:b2:fd:25:39:5a:c8:86:40:4f:7d:72:dc:31:35:73:94:71:
3c:68:e9:10:3d:34:27:b5:31:f1:b9:4e:e0:9b:c8:38:81:7d:
21:e2:15:3e:ad:97:b7:af:10:f6:62:e8:fe:b7:13:51:51:77:
b2:99:b3:37:eb:83:64:bd:a0:7b:be:c4:46:56:0b:b4:e6:42:
42:c6:d7:78:42:b1:05:b6:e7:54:b5:cd:41:bd:27:77:cf:73:
ce:b8:65:7b:c6:eb:f0:dd:2e:d4:f2:ae:1b:c4:2d:e2:f8:30:
b3:20:17:ff:e5:23:b8:53:8d:a9:a9:fd:73:4d:f8:16:6b:92:
c2:42:9e:b8:3e:0d:bf:d3:a0:2c:0b:37:4d:ad:4d:f6:05:1a:
a3:14:a7:73:d4:f7:ec:ed:f8:5b:14:bf:d9:f8:f3:b9:d9:46:
0d:00:67:4e:ed:99:57:82:76:15:1f:8e:74:43:83:65:f0:74:
8f:74:60:46:75:31:e5:da:82:f8:c4:ca:40:7c:77:b9:54:7a:
ad:3f:49:a7:9c:9d:c7:2a:b4:6b:99:1d:57:c0:87:6b:79:20:
e1:b3:ba:99:e9:13:71:91:58:5f:08:a1:03:d2:01:f2:aa:a2:
09:86:39:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org