Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: I297ShC3qWmKSf7LMZnhN2Whf5gWBVrcYpdD/pMna1g=
Subject key identifier: CD:82:38:EF:29:E8:61:25:D6:95:BD:9A:B7:93:18:38:BF:8B:C4:CA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 71CE5616FC4576B0C0BB2B1906FBD3B5220F2636
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:12 +0000
ROA not before: Mon 26 Sep 2022 09:55:12 +0000
ROA not after: Mon 25 Sep 2023 10:00:12 +0000
asID: 59282
IP address blocks: 2400:d680:267::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:ce:56:16:fc:45:76:b0:c0:bb:2b:19:06:fb:d3:b5:22:0f:26:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:12 2022 GMT
Not After : Sep 25 10:00:12 2023 GMT
Subject: CN=CD8238EF29E86125D695BD9AB7931838BF8BC4CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5f:c1:02:1a:19:18:5e:ac:67:57:ef:bf:91:
6a:83:1a:11:bf:b0:09:4f:af:dc:37:33:fb:af:19:
83:53:95:61:7b:2a:cf:e1:18:7b:22:17:1a:23:e6:
4d:41:ea:62:f9:80:27:dd:24:de:55:6c:23:d9:34:
2c:6a:e5:89:72:e5:43:b8:f9:91:5b:ac:3c:ab:f6:
21:19:45:55:7c:cc:64:aa:b0:3a:16:7f:4a:b0:3c:
ad:27:0b:ff:eb:34:02:60:e7:d2:d8:66:b1:e6:ff:
be:46:d9:e8:45:8e:09:be:2b:d7:8f:ac:09:a9:86:
71:54:19:ff:d6:61:01:0b:3e:0d:e8:b4:f6:da:66:
3a:91:f4:b5:69:99:97:70:a1:a1:34:53:52:50:ee:
75:2f:0f:7e:68:3d:7d:1f:b5:23:3f:35:f7:32:48:
46:b2:e4:6b:4a:fc:a3:8b:97:47:01:dd:e9:b3:ab:
b0:73:fe:c4:ed:32:31:7c:be:fe:93:c3:dd:73:87:
a4:2d:fd:8c:33:7f:91:44:43:29:c9:5b:c4:f6:df:
4f:19:ee:f9:20:88:ae:50:d1:8e:9b:04:7b:c3:9f:
98:19:04:4f:3b:06:c2:be:db:30:4d:b6:b3:a3:53:
0e:89:98:19:e3:47:a2:f8:a5:7e:b8:08:44:7a:ba:
fe:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:82:38:EF:29:E8:61:25:D6:95:BD:9A:B7:93:18:38:BF:8B:C4:CA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:267::/48
Signature Algorithm: sha256WithRSAEncryption
09:50:91:18:30:ce:06:11:1e:89:6b:e7:3b:47:a3:f7:84:eb:
4b:d4:69:dd:b5:48:c6:c2:77:3a:02:fd:ad:3b:bb:bf:59:ef:
d2:eb:46:60:4c:2a:e3:a5:2d:11:a4:5f:48:2e:d0:8c:3d:5c:
ab:65:11:00:e6:f3:7e:a1:8d:06:a2:08:53:2e:d4:e2:5d:5e:
55:d3:c3:7e:01:21:72:df:d8:c5:b8:77:de:50:16:f3:77:49:
f8:ed:c3:9c:08:59:2b:43:8d:69:4d:19:7a:32:1c:d2:5b:b5:
cd:9e:b8:27:1a:e2:96:4a:9c:b7:0c:bc:18:00:35:22:78:1a:
ad:cf:fc:6c:d5:3d:46:62:93:fe:1e:51:eb:4d:d4:8a:e1:0e:
e9:af:16:39:a1:37:1d:af:1e:07:92:c2:c0:88:3e:3c:4b:97:
7d:c4:a2:d2:20:dd:f6:a5:07:0e:e6:9e:8d:df:45:13:5e:3e:
cc:20:57:e0:83:1e:8b:9c:21:59:88:fd:fc:4b:3f:4f:00:28:
d1:76:8b:4e:f3:72:5e:2d:f0:49:60:07:70:15:c4:48:4f:40:
35:3f:f5:2d:d3:d0:bb:5e:a3:7d:27:fb:6f:18:c2:17:cb:98:
b2:08:b7:80:67:dd:43:6a:b9:b8:d4:a5:13:9a:90:82:b5:37:
b5:aa:fe:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org