Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Of1miXqIo/dYxUvn/qJLz3cDS+OWm4nPB88rra/Z4fQ=
Subject key identifier: 35:77:9B:03:01:B8:75:FC:48:6F:BE:59:F9:F4:C2:C9:6F:0D:9C:3F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 303EB1AB2E67336F5DD0FAD4D418941B1476B9B8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:09 +0000
ROA not before: Mon 26 Sep 2022 12:55:09 +0000
ROA not after: Mon 25 Sep 2023 13:00:09 +0000
asID: 59282
IP address blocks: 2400:d680:274::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:3e:b1:ab:2e:67:33:6f:5d:d0:fa:d4:d4:18:94:1b:14:76:b9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:09 2022 GMT
Not After : Sep 25 13:00:09 2023 GMT
Subject: CN=35779B0301B875FC486FBE59F9F4C2C96F0D9C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:94:ce:0c:a9:de:74:51:14:0c:81:f7:cc:f4:
42:60:dd:88:7b:cf:89:03:23:45:cd:9d:38:1d:62:
da:45:89:4c:c9:f2:47:67:e9:02:a7:7f:34:2d:3d:
c7:51:4f:71:e2:0f:d8:62:bf:00:42:51:82:b5:88:
72:4e:db:cf:13:c4:a5:de:d6:2d:a3:73:01:8e:46:
1d:3b:94:e4:f5:fb:1f:05:d5:9a:2a:24:4c:bc:d3:
6e:3f:41:ac:7e:0d:ed:5d:d5:92:4d:73:00:2c:bc:
29:18:56:fa:aa:d4:69:9c:5c:7b:48:a8:3c:9a:19:
db:f1:e1:64:bb:88:e5:24:b6:17:6c:c3:bf:9c:7e:
47:5f:7e:1c:40:7f:9c:4b:a3:51:6f:d5:57:a8:c5:
68:f7:8f:cb:a8:d5:d8:89:aa:80:a6:33:74:53:88:
0d:11:e4:76:c5:98:55:f3:ce:a7:2e:de:e5:7a:ae:
82:60:fc:71:68:fa:46:dd:74:c9:13:64:61:31:1c:
50:26:63:b0:61:4c:a4:f2:8b:4b:0a:fd:06:6b:1d:
64:a7:aa:8f:52:97:7d:7a:2d:a0:10:43:42:41:83:
2f:65:da:70:a3:e8:b2:bd:a6:4c:61:fc:35:83:56:
db:0a:c4:ea:45:ec:ba:5b:c3:47:65:bb:43:38:be:
d4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:77:9B:03:01:B8:75:FC:48:6F:BE:59:F9:F4:C2:C9:6F:0D:9C:3F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:274::/48
Signature Algorithm: sha256WithRSAEncryption
a6:d9:ea:a3:9a:34:d1:9b:37:d6:3d:76:eb:85:10:0a:fb:61:
0f:0f:6a:d4:54:09:8f:3f:57:2b:56:cc:55:ea:f8:21:31:8a:
c5:5f:6f:50:2f:28:e7:08:92:ed:f2:32:24:5a:df:69:e2:79:
ef:90:1d:a4:96:be:19:36:53:a9:41:dd:9a:d0:7d:fd:d8:7c:
12:77:47:a2:ff:a6:aa:f1:1e:6b:be:24:2a:bb:43:69:e9:b0:
51:a7:6a:8f:14:c3:32:73:10:1b:14:f0:fc:e0:23:18:81:9e:
58:d4:e8:b9:8e:20:ca:34:44:84:86:55:16:46:87:27:13:47:
34:dd:8e:f0:f8:fa:45:e1:d0:5c:b1:b8:78:d9:88:bd:30:2c:
4d:f6:98:52:0f:fc:85:b8:10:89:4d:b5:77:b6:a1:7c:cb:de:
af:6d:19:b4:40:24:c8:fc:70:f8:25:e9:5f:15:93:df:2b:ba:
2e:19:5a:73:de:a9:72:96:03:93:f5:bf:30:35:11:7a:60:3e:
ab:62:8a:51:2c:a7:d2:5f:56:f9:3f:62:59:5b:a8:91:2a:8e:
1b:37:46:92:88:0f:2c:eb:3d:9a:34:72:68:e4:24:35:dc:3c:
14:03:0e:08:ab:9e:c5:86:b7:2c:36:83:66:b1:0a:3c:ec:47:
39:6c:14:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org