Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JvW1nj9OiGjBrdvUbmP7G+bNpHQeAAN6RZdVBPe0Zkw=
Subject key identifier: 01:95:96:48:C1:16:A6:78:1E:71:3B:43:97:29:07:FC:76:18:4B:34
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 37043DE5D80D9F4E0DA93D4E8FEFB84BAC044F14
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:12 +0000
ROA not before: Mon 26 Sep 2022 12:55:12 +0000
ROA not after: Mon 25 Sep 2023 13:00:12 +0000
asID: 59282
IP address blocks: 2400:d680:27e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:04:3d:e5:d8:0d:9f:4e:0d:a9:3d:4e:8f:ef:b8:4b:ac:04:4f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:12 2022 GMT
Not After : Sep 25 13:00:12 2023 GMT
Subject: CN=01959648C116A6781E713B43972907FC76184B34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c0:26:e1:20:60:cc:a7:24:66:85:99:40:8a:
2f:f9:5a:51:be:8d:45:4d:90:79:bb:69:35:a0:bf:
30:1d:b1:c7:5d:c6:69:91:53:be:60:00:82:39:bd:
24:7d:b0:6d:b6:0b:ee:8d:73:b5:d2:fe:7f:8f:6f:
66:a1:bc:f3:f8:21:08:69:38:da:9a:48:a9:94:58:
70:f9:13:9a:a2:96:5c:ef:b5:04:87:bb:04:ad:f0:
ab:e0:98:84:50:f9:27:a9:f8:fb:46:32:61:f5:88:
d4:8c:73:74:cf:a6:5c:77:bc:34:6d:95:9e:e1:25:
49:e6:11:e2:9e:dc:c2:4b:be:03:41:0f:0c:78:a2:
3b:de:0c:9c:fa:b4:93:31:e9:ce:f2:fa:62:9f:b4:
8d:07:8d:50:4d:f1:47:31:ab:c6:2c:26:49:79:63:
ec:ce:3b:cc:3a:fb:71:e5:4e:2d:1d:cc:a6:9c:41:
fd:1c:99:0b:a0:1d:b7:ba:28:2a:ec:ff:0c:65:00:
c9:e5:13:d5:e7:61:57:b4:f3:3f:82:fa:18:18:79:
4b:54:8b:12:f2:d4:7b:03:a7:42:a8:07:77:c6:1a:
81:be:02:cc:0b:19:92:06:a8:74:c6:5c:6b:c1:28:
76:e1:58:1f:4d:54:68:bf:7e:71:2a:34:d4:dc:aa:
5f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:95:96:48:C1:16:A6:78:1E:71:3B:43:97:29:07:FC:76:18:4B:34
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:27e::/48
Signature Algorithm: sha256WithRSAEncryption
66:c5:fc:db:7b:3d:a1:1a:ee:ad:0a:20:a9:d3:4f:61:7d:db:
3d:49:e0:60:ae:57:3c:14:48:88:aa:af:e3:fe:bf:d7:6e:6e:
f0:f4:5b:76:65:d6:9c:bc:a7:4f:a9:e9:29:59:7e:f1:13:09:
ee:95:b4:91:20:ed:f4:88:25:7f:ad:49:ff:91:bc:4f:f7:b9:
86:17:32:c3:e6:cf:6e:84:7c:5e:75:73:c5:ed:6e:6b:06:30:
9c:a7:1b:a0:8e:97:db:c5:19:e2:de:a6:4e:00:71:93:aa:e0:
46:54:f4:5f:43:de:9c:55:28:92:61:cb:9b:d4:b1:17:80:91:
02:a7:90:6c:e1:5d:d9:b7:df:05:c4:b6:b9:09:6a:62:be:ee:
62:6b:1d:4c:d6:a4:9b:a5:b0:05:b5:61:57:f4:4c:24:65:63:
82:05:4c:8e:59:ef:dc:11:73:be:4b:0e:a7:0d:2d:58:18:2f:
0f:7e:b3:96:f3:54:a2:58:8f:08:b1:5d:af:a1:29:4e:a1:e7:
fb:e4:a7:f3:82:24:6e:ca:0a:2d:3a:53:4c:2f:15:90:ad:d6:
8b:42:fa:63:40:d9:16:1f:15:a5:2f:27:a6:c1:6d:8e:8a:dd:
45:5c:e7:10:96:a2:92:72:a3:7b:33:75:0f:b1:cc:94:8e:d6:
e9:c3:53:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org