Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3262323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UqqHVpbxX+65gh3PyCcGOuIuwIrYiddJQRFc5FUbFV4=
Subject key identifier: 79:C0:92:E0:59:74:E8:E3:36:82:B4:CD:06:4A:06:D9:79:6E:3F:FC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4C664A687F2759207F0F8F30F0EA5571F8CBAC31
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:02 +0000
ROA not before: Mon 26 Sep 2022 12:55:02 +0000
ROA not after: Mon 25 Sep 2023 13:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:2b2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:66:4a:68:7f:27:59:20:7f:0f:8f:30:f0:ea:55:71:f8:cb:ac:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:02 2022 GMT
Not After : Sep 25 13:00:02 2023 GMT
Subject: CN=79C092E05974E8E33682B4CD064A06D9796E3FFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6f:eb:6c:87:28:b6:c2:35:d8:7a:9b:b6:02:
aa:f2:3e:a8:d3:76:78:37:48:f3:cd:46:e6:9f:4c:
7f:c1:73:a7:55:5c:1d:6a:ca:14:df:d6:d6:64:b3:
27:78:9d:73:83:28:cb:d5:93:b5:5b:70:19:66:2c:
19:f9:f9:27:5e:5d:df:a7:1b:52:1f:6c:21:98:10:
45:d5:f0:fe:8f:5e:c4:0b:0d:59:3b:70:72:81:97:
5d:ad:69:8b:04:77:1b:87:35:68:6a:06:53:9b:81:
d8:a7:36:91:72:70:5d:68:19:05:7b:26:c8:11:0b:
38:8d:bf:66:3b:95:64:25:d8:be:ca:2e:1a:38:33:
56:d9:3a:aa:a9:dc:8b:23:61:90:db:59:ef:86:b3:
a8:43:6e:7f:b6:32:8f:65:ce:26:55:82:0c:51:ac:
3c:d1:a1:92:f1:4b:65:19:85:af:51:94:ef:07:95:
cf:f7:11:a0:54:bf:36:af:b3:6a:2f:f6:06:c4:68:
7f:58:d1:59:71:0b:18:c8:b8:a6:76:e4:01:2d:f8:
45:b8:8f:ea:43:e5:42:ee:f6:ee:ff:c0:02:08:1b:
e3:2b:20:5c:e1:08:e8:25:bf:8b:29:1f:05:9b:34:
1e:e9:d8:49:c6:48:c1:69:2e:b0:07:f8:c2:59:22:
37:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C0:92:E0:59:74:E8:E3:36:82:B4:CD:06:4A:06:D9:79:6E:3F:FC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2b2::/48
Signature Algorithm: sha256WithRSAEncryption
82:97:8d:b3:9f:09:9e:41:58:05:7f:db:1f:48:be:b8:57:c4:
41:bc:93:17:e6:34:9c:91:c8:6d:89:ba:83:e2:1d:fb:6a:3c:
5b:af:51:01:7b:de:fc:de:97:fd:26:c1:b9:e1:65:be:af:05:
1f:ec:f9:1b:fc:c3:97:1b:5c:6d:33:80:e3:ea:5b:26:97:38:
7a:44:a6:34:91:96:dd:4b:ab:0f:66:59:ff:90:fb:65:56:67:
10:8e:8e:5a:41:51:67:af:e5:8d:24:70:0d:f3:b3:7d:f2:b3:
96:b7:e3:b0:21:3c:31:2d:45:dc:f2:20:f9:ee:0a:1e:7e:4b:
9c:5e:88:68:96:be:d1:0c:1e:07:ac:c4:f3:f3:0d:ca:d2:55:
6d:a0:6e:c8:32:5a:bc:c4:7d:be:48:28:98:56:d4:f2:6b:1b:
a7:bc:d2:2a:b9:04:9a:bc:a8:b4:b6:db:fe:14:8e:03:98:2f:
56:8a:12:a1:de:52:55:8f:c3:dd:66:ef:34:eb:39:ed:08:d7:
98:43:a2:00:8d:01:3e:9b:3f:d0:d5:89:98:41:4d:aa:61:9e:
ce:c0:a7:53:e0:41:5b:8d:b1:b6:80:dd:88:7f:2d:79:81:5a:
72:ab:d7:16:e6:3a:58:0f:71:6a:0c:b0:65:5d:f9:30:56:75:
74:67:f3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org