Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 0a41nIMVlfBpPzet3JAf7xGMPN3jsv9xA34l418V4LE=
Subject key identifier: FA:05:30:71:44:4B:CE:B6:A2:90:5C:ED:B1:64:61:21:54:CF:64:84
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0FDF6401B1D4CBF56692355055236162C0FEFE44
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:16 +0000
ROA not before: Mon 26 Sep 2022 12:55:16 +0000
ROA not after: Mon 25 Sep 2023 13:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:288::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:df:64:01:b1:d4:cb:f5:66:92:35:50:55:23:61:62:c0:fe:fe:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:16 2022 GMT
Not After : Sep 25 13:00:16 2023 GMT
Subject: CN=FA053071444BCEB6A2905CEDB164612154CF6484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:3d:de:93:28:a4:d4:65:c7:a5:42:1e:10:
16:55:da:1f:a0:f1:4d:e6:2b:cb:d2:b2:49:00:55:
33:ba:ec:0e:f6:56:bd:45:c5:b5:bf:da:e0:60:35:
e1:76:b9:7a:d8:13:39:87:85:9b:98:e2:fb:97:e9:
69:f0:e2:5c:1a:6a:d5:66:4e:4e:49:63:4a:94:46:
72:a1:55:a0:95:6a:25:74:2c:52:5d:ab:e9:f3:e2:
43:1e:94:9b:85:f8:48:c8:e8:85:fa:ab:b2:b5:4d:
10:5d:42:86:21:09:46:be:89:7a:69:db:17:05:99:
3a:85:33:77:f3:b2:70:4f:93:8a:85:9e:e5:b4:be:
c2:23:bf:ef:76:8f:b9:47:01:19:9e:8e:bb:28:96:
c1:68:e9:38:ba:87:5f:73:7a:65:12:a7:9b:74:39:
1c:45:36:dc:25:2e:92:3a:fa:ef:a3:f9:8c:97:b7:
9e:57:50:ce:a2:6e:07:19:c8:a8:fa:f1:ad:55:b8:
ee:dc:3b:f7:c9:0a:6f:ce:83:bc:01:fa:77:8c:16:
d1:da:c0:77:8f:8a:1c:3e:d5:2b:aa:6b:9c:d7:68:
3b:4b:1c:f6:a1:7c:8e:ae:68:11:63:63:3b:b5:40:
97:db:28:72:72:0d:12:cc:7b:0a:d9:e7:03:eb:ad:
fe:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:05:30:71:44:4B:CE:B6:A2:90:5C:ED:B1:64:61:21:54:CF:64:84
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:288::/48
Signature Algorithm: sha256WithRSAEncryption
98:c8:bf:5f:02:89:41:c8:bb:8d:0b:63:3d:8e:72:7c:15:6c:
0b:bb:d1:c1:c8:92:8a:f2:4a:66:5c:83:79:cd:ce:d9:fe:aa:
c0:14:56:08:a2:77:e7:26:3e:70:9f:82:ad:a8:12:55:6a:ff:
c3:8b:c4:47:a5:a2:10:53:02:0f:80:df:93:5d:11:2f:61:5e:
77:1a:8d:e7:3e:49:93:7b:ce:2f:63:bc:f0:04:d8:7c:d2:df:
a7:db:b5:ad:81:73:b8:4b:32:92:88:41:9e:31:61:1c:2d:94:
1d:e7:7a:2c:c8:90:21:7d:b6:b5:e5:a1:cb:e3:a3:81:8c:12:
44:0a:38:36:8a:e0:de:5d:29:bb:9e:19:c1:62:09:16:d1:40:
89:77:24:92:a0:c4:07:17:e9:58:1f:af:e0:97:df:34:6a:76:
cb:9e:de:89:8f:fb:e9:d6:2b:36:9b:1f:65:a6:fe:d5:c0:bf:
fd:63:32:ad:56:19:59:44:42:a3:79:ed:3e:50:e7:5a:85:20:
09:4d:55:2c:54:1c:f4:c5:c7:55:9f:d3:06:22:37:92:fb:57:
83:67:1d:0d:49:42:86:2b:02:d2:21:53:9f:b4:ac:a6:49:b4:
17:8c:cc:ae:e6:3b:b6:da:cf:6a:f5:b2:c1:d1:4f:ec:56:39:
f5:07:f2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org