Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3262343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 06Dn9/22SOeSd+0sdNx8ftenbFZoMCq+TdRCjNVMTOA=
Subject key identifier: E0:58:8C:96:B7:CA:90:B5:88:86:C5:0A:70:68:A9:21:28:7F:79:FE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 39C4DB8DB86AEE74F6849298BD9F3CEB39B32D91
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:11 +0000
ROA not before: Mon 26 Sep 2022 12:55:11 +0000
ROA not after: Mon 25 Sep 2023 13:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:2b4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:c4:db:8d:b8:6a:ee:74:f6:84:92:98:bd:9f:3c:eb:39:b3:2d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:11 2022 GMT
Not After : Sep 25 13:00:11 2023 GMT
Subject: CN=E0588C96B7CA90B58886C50A7068A921287F79FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:dd:fa:3f:81:cc:c8:28:35:12:d1:11:20:
db:04:ea:93:86:c1:8f:07:fd:8a:e1:58:b9:c1:90:
b1:b6:b1:22:39:e9:75:70:ef:95:fd:6b:7a:53:36:
12:2c:69:14:b2:6d:67:dc:fe:f8:c6:0e:70:c0:10:
61:8c:ba:9b:09:cc:a4:da:0c:19:d3:3f:56:c3:10:
ed:bf:c5:a0:e7:08:1c:d5:6d:42:4d:92:5c:13:07:
7b:7e:d4:5b:2c:7a:db:18:2c:b4:f6:2d:80:29:84:
ac:90:0b:21:d3:a7:f1:3d:81:9d:2d:60:8d:c7:45:
ad:96:45:00:64:73:fb:1b:89:0b:67:37:10:96:49:
67:ba:af:f8:6b:38:1d:de:c8:77:99:2a:d4:2b:53:
6d:27:65:13:94:6b:eb:8f:74:9f:65:5d:df:04:87:
58:26:ff:25:70:6e:7c:b7:9e:d0:c4:82:6e:28:44:
17:6f:18:53:82:f7:04:2d:da:f0:69:ed:25:fd:21:
b8:eb:9e:0b:b0:20:c8:08:41:34:06:4a:f7:a7:23:
07:74:62:ff:1c:34:75:1c:c2:8e:3f:1c:f5:0e:5e:
ab:f1:77:0d:8d:bd:cd:7b:a0:a9:e4:ea:42:0e:32:
cc:f6:4c:ee:d9:d4:8f:68:38:8c:fd:16:07:fc:64:
6a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:58:8C:96:B7:CA:90:B5:88:86:C5:0A:70:68:A9:21:28:7F:79:FE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2b4::/48
Signature Algorithm: sha256WithRSAEncryption
32:d3:17:b5:a4:4f:25:78:c7:60:c0:53:b9:3f:f0:27:b3:f9:
e3:93:76:9a:40:be:d9:67:a7:0a:80:87:47:17:a1:09:5b:a1:
89:d7:3d:5a:af:b1:ef:a3:ae:c7:8c:5a:18:1c:c8:dd:05:77:
6c:62:a8:30:e1:41:e5:58:7e:40:75:aa:31:0b:95:2f:89:32:
2e:66:87:25:c0:2e:de:e3:4d:26:86:bc:6b:31:42:6d:be:dc:
9c:f7:22:fb:00:f5:36:bc:a2:24:16:6c:c3:bd:8b:cb:d4:9a:
fb:78:db:a6:22:78:b9:8a:fd:0d:97:ec:9f:fa:e4:8e:53:45:
24:19:0c:52:25:81:ae:db:7e:91:aa:f6:fe:48:a0:e9:8f:bb:
1a:93:ff:21:a4:69:63:4a:ed:40:7b:14:8c:cd:91:2d:3b:3e:
87:de:6e:d2:53:a7:58:f3:67:e1:d7:a9:06:e2:65:fa:40:24:
95:9f:6a:06:09:84:4e:57:f0:1a:fe:bc:67:77:62:27:2e:a2:
47:b7:a4:42:0f:5f:1b:fc:3b:58:1b:4b:b5:13:a1:47:36:7e:
db:1f:aa:9c:0e:62:cd:52:bf:39:79:a1:b7:bd:dc:c6:89:05:
22:37:c6:f3:b6:5c:69:e2:60:4d:f8:40:05:6b:46:dd:9e:99:
59:e8:59:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org