Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 76S/DvJkPtotvfl5iRQuGGsoH7bZhdY3u3a+nkOwFKo=
Subject key identifier: 4B:6E:75:B7:B0:40:7F:C1:93:51:E2:6A:65:1E:C2:B0:81:7A:C4:A8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7CFF0F7BDBF53A7218A842053B4C54565EA2FF96
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:30 +0000
ROA not before: Mon 26 Sep 2022 09:55:30 +0000
ROA not after: Mon 25 Sep 2023 10:00:30 +0000
asID: 59282
IP address blocks: 2400:d680:26b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:ff:0f:7b:db:f5:3a:72:18:a8:42:05:3b:4c:54:56:5e:a2:ff:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:30 2022 GMT
Not After : Sep 25 10:00:30 2023 GMT
Subject: CN=4B6E75B7B0407FC19351E26A651EC2B0817AC4A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:82:9d:0d:78:1e:c9:cf:e5:6c:f6:9d:bb:
7d:ca:04:28:a8:1e:25:dc:d8:0a:ca:ef:3f:a9:b5:
f1:20:94:cd:b0:0b:54:bf:90:33:cd:93:61:82:98:
42:cc:92:0c:e0:16:0e:29:60:d0:a9:ab:e5:ff:1b:
c0:3e:4b:e8:d8:d0:82:f9:d5:d3:c0:f7:2b:a3:d4:
bc:53:07:64:6a:b0:5a:ff:66:14:62:1b:f5:93:d6:
4f:ce:ba:7f:8d:74:ac:5b:c3:f7:4f:1d:40:56:73:
e9:fa:d9:f1:10:7e:d3:fe:a1:04:84:19:a1:1c:30:
b3:cd:a0:fd:97:92:61:16:35:44:50:cd:a1:dc:72:
49:e6:e2:2a:d5:17:60:29:00:5d:de:2b:db:fe:27:
7b:4b:90:99:bf:fc:ca:19:33:ce:7c:da:0e:0e:e6:
eb:94:cb:c1:1e:42:e3:f4:b4:e7:11:44:3e:fe:27:
99:d2:0c:8d:55:fa:dd:66:9d:18:aa:c6:0c:17:c6:
bf:2f:86:ba:ee:4e:e2:f9:d9:f9:ab:4d:de:42:e2:
aa:75:ab:62:80:07:5d:62:ca:6e:5b:6e:6e:1c:8f:
43:90:23:39:d6:5b:c0:69:89:c9:4a:6d:db:60:86:
04:a9:50:b0:e7:e4:25:22:2e:29:89:4a:a4:80:45:
af:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6E:75:B7:B0:40:7F:C1:93:51:E2:6A:65:1E:C2:B0:81:7A:C4:A8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:26b::/48
Signature Algorithm: sha256WithRSAEncryption
b2:46:dc:3f:4f:e8:7a:be:2b:44:2b:b2:d9:1a:38:d4:53:ab:
77:05:47:29:f4:f0:dd:09:a1:8b:98:e1:0a:b6:1d:8b:71:38:
72:52:4d:f0:51:02:68:8d:01:25:11:cd:60:5b:9a:b2:92:39:
9c:5e:72:e4:39:e6:e5:95:63:4c:a5:a0:ca:72:20:b4:99:66:
7d:90:5d:93:0f:52:5c:22:17:e6:2e:20:d3:3a:0a:42:82:03:
2d:0b:83:be:f8:fb:95:11:2b:35:52:a9:81:13:ab:2f:d5:54:
e5:1e:10:1f:fb:72:1f:55:0c:12:65:8c:47:15:f9:ad:5e:e9:
4f:98:59:79:5c:c1:e9:e9:70:9e:00:34:a4:90:d5:f9:5c:21:
98:2c:da:e4:1b:c1:ea:37:a4:08:e5:a3:01:77:ae:84:5b:b1:
b3:b0:8f:cc:46:89:3a:81:e6:cf:b9:0c:18:24:20:f1:64:e3:
f5:48:98:0a:8d:fa:17:8e:21:9b:24:65:75:a7:3c:10:28:50:
51:b2:71:b1:c6:36:24:ca:da:25:00:66:e3:86:05:93:0c:0d:
bb:c6:c9:cd:a9:6b:ce:fd:4b:44:78:20:79:2c:35:e3:27:fd:
f6:3c:d6:e4:7d:0c:3e:16:37:5f:6c:cc:29:c0:47:3e:91:d3:
88:ea:96:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org