Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RHTVnUmapwxFkrLNmuL+wWWqgAI9kRXlKUVmPF5nlOI=
Subject key identifier: 6F:C7:F3:DE:25:79:7D:2A:06:D4:75:C0:D6:86:EC:68:01:4D:0C:F4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3E8B7C08EC7C0CE853E33D10AC07BBDF04CC812F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:20 +0000
ROA not before: Mon 26 Sep 2022 09:55:20 +0000
ROA not after: Mon 25 Sep 2023 10:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:26f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:8b:7c:08:ec:7c:0c:e8:53:e3:3d:10:ac:07:bb:df:04:cc:81:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:20 2022 GMT
Not After : Sep 25 10:00:20 2023 GMT
Subject: CN=6FC7F3DE25797D2A06D475C0D686EC68014D0CF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f4:30:90:d6:95:e1:b6:38:2d:81:7e:df:1f:
d5:fa:88:7d:09:a3:07:fc:45:4c:15:a8:ae:a2:21:
1f:c0:d6:ef:18:46:0a:e2:c4:14:bf:ef:a6:bd:20:
a2:5c:c6:97:6b:24:5d:ee:24:ee:b9:0c:ab:ed:e7:
29:a3:37:40:e4:e6:0d:7b:df:27:b3:93:da:1d:37:
07:ce:02:93:20:3d:67:19:00:6f:9f:88:2f:8a:09:
c0:61:6b:d8:33:9c:46:46:18:77:db:82:69:80:69:
06:c8:f1:43:8c:b3:2a:36:ba:40:f9:3f:e3:6e:57:
52:62:7a:bc:f6:2f:64:30:1e:6f:43:f9:60:dd:1b:
30:4c:7e:8a:4d:81:60:24:40:37:3d:b2:f0:0a:95:
3b:03:64:d9:e6:0e:81:ec:2c:e2:8f:b8:3d:8c:27:
a6:69:66:8b:33:b5:7d:0d:48:f7:a2:b2:28:52:d3:
85:50:4b:11:a1:f1:9d:f9:67:3e:44:d1:a0:b9:d2:
fa:e8:7a:7b:87:6d:82:2a:9d:c4:6a:59:65:47:9c:
3e:78:01:63:8f:5b:2f:e5:25:67:6d:83:de:5a:79:
fa:12:42:37:38:96:cf:be:4b:9d:1b:5c:2d:d1:8c:
32:31:48:11:fa:8f:48:42:d4:0a:04:9d:ed:f7:3d:
f2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C7:F3:DE:25:79:7D:2A:06:D4:75:C0:D6:86:EC:68:01:4D:0C:F4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:26f::/48
Signature Algorithm: sha256WithRSAEncryption
8e:31:54:af:6b:97:1c:d5:8d:9c:74:21:ec:1e:6d:43:ec:97:
a6:a2:7a:5d:9b:1a:1e:11:65:f2:da:0b:d8:d7:3a:49:04:56:
f8:6c:32:8f:6e:55:6a:81:42:8a:a1:f9:82:e1:ce:3a:a1:5f:
94:a3:c9:f6:26:67:73:01:99:f4:27:c2:8e:88:37:1c:b2:fe:
14:01:ae:bd:8b:f8:56:9b:85:48:91:4f:6d:89:a4:df:91:f7:
6c:2a:c5:ec:ec:99:24:de:55:bb:c7:f6:8a:87:3a:ad:a0:dc:
1c:1f:03:cd:cd:9f:69:d7:2b:58:14:53:58:b5:b2:e4:9c:27:
21:16:2b:6d:2f:a1:2e:24:2c:87:0c:63:04:40:7f:6f:52:21:
95:4e:60:dc:fa:d8:2a:1f:01:d4:98:2c:07:1d:59:95:de:d3:
68:b7:30:63:60:ba:0b:1e:5a:40:87:f6:e1:ae:21:49:39:0e:
ab:5d:d3:6a:45:17:9c:62:f5:a7:91:89:41:fb:d1:62:20:d2:
8c:42:ec:8c:ff:7d:86:32:b4:91:f9:90:4d:5c:80:f9:9f:d3:
5d:f5:f4:8d:7a:75:fa:a7:c4:44:80:72:56:00:f9:7a:ef:45:
d6:c1:4a:c6:2a:76:f2:a0:df:a9:ab:84:50:81:2a:90:1c:33:
1f:10:c7:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org