Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: xsfptGanwTSx8qTPZaXzjhA4S96miPBkIdualsTbBys=
Subject key identifier: AC:8F:A3:5E:06:23:93:DF:B0:50:44:89:60:07:15:BA:6D:06:90:86
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 327D4296CA221FBF232BD37C0E22B37062DA7A6A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:16 +0000
ROA not before: Mon 26 Sep 2022 12:55:16 +0000
ROA not after: Mon 25 Sep 2023 13:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:7d:42:96:ca:22:1f:bf:23:2b:d3:7c:0e:22:b3:70:62:da:7a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:16 2022 GMT
Not After : Sep 25 13:00:16 2023 GMT
Subject: CN=AC8FA35E062393DFB0504489600715BA6D069086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4b:ad:40:1f:7b:ac:27:f7:43:c2:10:0d:b2:
8f:dd:72:76:63:dc:11:e1:0f:55:23:c6:c6:ca:35:
1f:33:73:bb:95:8d:8d:39:b1:1d:92:36:1e:9e:1f:
f6:b9:3a:05:68:a5:df:53:62:f3:19:61:b5:06:34:
50:9f:5f:5f:11:d7:99:e3:ca:4c:4d:58:d5:5d:a2:
2d:d4:6c:75:00:c5:1d:00:5f:a8:a7:65:16:62:b8:
f8:6f:bf:1c:17:99:c1:e7:d2:1f:70:26:6f:a5:d0:
64:fd:c1:c1:e4:1e:1d:00:ed:8f:32:7e:27:88:f6:
bf:15:d3:0b:68:69:11:71:d0:d4:14:16:24:ba:e3:
70:c4:0c:92:e3:bd:45:e5:9c:fe:18:b0:00:90:ac:
33:b6:17:a9:ae:bd:0a:43:51:74:a4:28:88:7f:32:
25:c3:0f:79:c4:56:96:72:64:42:3d:c3:a9:95:31:
3a:07:c7:28:e9:38:1d:37:8c:85:66:1c:35:3d:a3:
76:60:87:20:9e:1a:84:ee:2c:80:73:dd:aa:62:b2:
14:8e:ee:69:f0:83:98:25:e6:37:74:7c:ce:33:99:
7e:77:f2:3d:84:74:e8:76:eb:eb:15:0e:d8:c0:15:
45:36:7c:c5:a2:38:a2:e5:1f:a1:c9:c2:b3:e6:91:
ee:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8F:A3:5E:06:23:93:DF:B0:50:44:89:60:07:15:BA:6D:06:90:86
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
a1:1d:b4:a2:f2:81:5a:8c:e9:cf:5e:05:43:1d:8d:41:47:90:
6a:71:d5:72:a2:ca:68:59:bd:1a:a3:f2:53:a3:85:b1:59:02:
d0:f6:c8:dc:20:22:f2:29:61:4c:b6:1b:76:77:94:09:34:c1:
ff:13:41:5c:ac:b2:b1:62:82:ae:f9:15:3a:7e:61:68:10:ce:
06:22:85:d1:c0:4c:e1:6a:d3:6a:fb:cc:84:b7:a7:41:b3:44:
a1:94:89:a8:2b:ec:82:de:85:23:57:c5:5b:b9:da:01:e3:59:
0d:d4:6f:ac:6b:f1:16:78:8e:f5:49:4e:60:1b:30:d8:94:81:
66:b2:cf:a5:79:ab:df:15:90:21:79:e6:28:de:1c:fc:cb:79:
2f:ab:70:a7:6e:21:f1:b6:45:56:cf:e0:29:d1:98:b6:ad:74:
43:46:49:5c:e0:c5:1a:e7:19:bd:86:29:76:66:8c:75:5b:93:
0d:2e:cf:59:2b:3e:e6:0c:e5:8c:2e:44:e6:9c:9c:80:18:18:
58:d9:8c:12:31:ea:f5:64:e5:30:90:ce:59:f7:c2:b7:2e:e8:
b0:08:07:35:38:02:09:39:a1:d8:43:79:7d:d3:54:e5:9b:04:
73:fd:90:6b:6f:22:c9:3c:6a:cd:d1:3e:b3:e1:3f:d8:d8:c9:
0a:ba:a8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org