Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rpRSK/q8qLQlmkNmday0fozcRTsLIlmXR3FMLu2gkRY=
Subject key identifier: BA:9C:BA:1B:4C:34:BA:CB:20:3D:F4:83:D3:C5:2D:F1:E3:C7:79:D2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0F06CB2EF94724CFDD0437DE76B4CCF9D58146F7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:04 +0000
ROA not before: Mon 26 Sep 2022 12:55:04 +0000
ROA not after: Mon 25 Sep 2023 13:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:2a7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:06:cb:2e:f9:47:24:cf:dd:04:37:de:76:b4:cc:f9:d5:81:46:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:04 2022 GMT
Not After : Sep 25 13:00:04 2023 GMT
Subject: CN=BA9CBA1B4C34BACB203DF483D3C52DF1E3C779D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:03:0c:2d:eb:07:b8:35:a2:c0:16:1c:a1:f3:
92:20:0c:8c:6f:23:1e:41:a3:f3:11:3f:a3:cf:59:
7d:ba:f3:4d:26:a5:7b:fe:1c:86:81:78:a4:b4:2a:
3b:37:79:54:eb:d7:0c:0d:02:ad:c1:f8:30:29:45:
de:e3:b1:14:48:c1:be:af:a8:7f:c7:ca:28:10:84:
a6:3f:a1:f9:79:61:22:82:7e:4d:ef:c3:e2:e0:72:
e8:3a:08:27:80:54:f5:44:2f:38:e3:a3:aa:6a:97:
a5:a2:dc:13:44:e9:f6:96:d4:60:6e:c0:94:2b:bc:
3a:41:6c:34:44:46:a9:72:c5:b6:7e:00:e6:d3:44:
63:8c:0e:b3:b6:d1:59:e4:e3:b4:12:4c:0a:a5:b1:
f3:b1:40:f1:7f:64:e6:e1:49:04:5e:82:85:c6:36:
60:94:ba:85:68:40:31:92:a8:f4:28:42:39:ee:c3:
0f:9e:65:bf:d0:a6:37:8f:a2:a3:d0:c1:e8:dd:d8:
e2:c2:00:b8:56:54:99:e9:c7:4f:20:57:d2:c0:64:
40:6f:f5:ac:b6:3a:1b:1b:00:41:7c:e7:33:70:8e:
a5:2e:a9:f7:79:c9:3d:45:60:4f:11:4c:a8:64:b3:
db:87:e8:42:53:2e:b3:60:70:44:81:06:f6:b0:5c:
1a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9C:BA:1B:4C:34:BA:CB:20:3D:F4:83:D3:C5:2D:F1:E3:C7:79:D2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2a7::/48
Signature Algorithm: sha256WithRSAEncryption
4d:96:49:37:6e:37:00:9b:78:00:55:90:03:1e:29:34:99:41:
9d:53:e6:e8:d3:72:d0:8c:d7:55:9f:8b:40:86:de:36:1f:60:
b1:6e:c3:c3:78:69:e4:21:24:6b:3d:c4:e1:0a:e8:01:de:a2:
76:87:f5:83:d8:95:89:f5:e2:4a:65:b0:50:55:b9:92:fa:e1:
16:56:25:46:ca:c6:30:ab:1f:6d:40:c9:c3:c7:f9:1c:c4:a7:
b0:d6:b2:63:85:ac:b3:5e:31:a9:cf:4a:e0:62:29:df:11:c5:
96:1c:ff:3d:49:ff:0e:8a:e5:20:e7:9a:7e:83:9b:cf:bb:52:
0e:d4:34:9b:2c:a5:81:c4:3b:5f:d8:0f:3c:23:4a:bb:55:50:
de:1f:a8:ad:06:b6:76:f0:0b:64:c6:a7:33:02:16:f9:6f:5f:
4d:86:18:cd:d8:a8:b5:05:30:de:bf:8f:98:8b:f6:4d:fe:65:
2d:d9:9a:a4:44:07:4e:1c:b2:5b:17:e8:3d:54:57:55:44:b5:
de:51:f6:87:fb:79:86:83:23:fe:03:66:12:82:6c:4c:02:5e:
22:06:09:32:87:26:c9:b1:6f:0d:94:e6:39:9f:c2:16:0b:bc:
83:e8:13:b2:b6:a8:81:2c:2c:17:be:1d:22:db:7d:45:df:8b:
f3:30:0a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org