Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: lUdK7+KqFyjMtao/oL9I4XMORFEAy5I5RX+h2ImEgs8=
Subject key identifier: 84:A3:4C:C7:CD:8A:38:54:20:33:67:2E:0F:09:81:55:EF:D3:01:B7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 594295A265BA0CBEFD2F30C59A7CAD0B33353604
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:06 +0000
ROA not before: Mon 26 Sep 2022 12:55:06 +0000
ROA not after: Mon 25 Sep 2023 13:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:2c4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:42:95:a2:65:ba:0c:be:fd:2f:30:c5:9a:7c:ad:0b:33:35:36:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:06 2022 GMT
Not After : Sep 25 13:00:06 2023 GMT
Subject: CN=84A34CC7CD8A38542033672E0F098155EFD301B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c2:fb:a8:58:b9:fd:c8:d0:d7:27:35:e3:b1:
e0:f4:84:27:7b:ac:67:ca:34:4a:b0:e0:e5:c5:01:
f6:cc:ca:8e:96:39:4d:49:25:5f:8f:b9:d2:db:56:
bf:58:fd:a0:97:69:c8:3d:ed:9d:40:73:8c:7f:7e:
e1:e7:c7:22:4c:96:83:79:ac:4e:68:d3:e5:9c:5a:
10:ca:14:82:9a:fc:87:d8:80:93:97:35:9c:d0:56:
59:e9:09:85:6a:23:79:53:84:bd:6b:58:d6:d1:a6:
52:56:6d:81:77:97:4f:65:14:8f:b3:0b:70:38:cf:
da:42:76:9f:d5:3c:8d:f9:d8:26:f6:97:bf:3b:67:
4c:84:7a:5d:56:c1:73:b8:43:d3:45:ec:78:d9:c1:
81:59:0a:90:97:a5:89:5c:68:cc:81:6e:a8:1e:a0:
cc:75:b9:86:ae:e1:bb:d0:96:2d:69:54:ea:42:8c:
cb:84:3a:f7:3a:3b:d7:16:93:c0:21:cb:b2:ad:dd:
16:55:15:ad:52:81:e0:12:a5:67:63:f8:7c:bf:a5:
b5:f5:40:c9:8d:12:78:b3:02:4d:07:b8:1f:77:61:
e3:0c:dc:77:2e:4c:19:03:c2:f9:8d:23:ca:ee:14:
16:f0:b3:ff:9a:73:b5:7b:31:e9:9d:77:78:14:e0:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A3:4C:C7:CD:8A:38:54:20:33:67:2E:0F:09:81:55:EF:D3:01:B7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c4::/48
Signature Algorithm: sha256WithRSAEncryption
83:18:58:f4:f4:56:af:c7:d5:70:6e:d1:cd:80:68:b7:8c:b3:
2c:f4:cd:0d:f5:5e:fe:ba:eb:e8:ae:8a:f0:f4:c7:62:f7:53:
8c:f2:bf:23:fe:9f:b2:80:ce:37:27:f3:ae:06:42:fd:81:af:
b8:c3:a2:cb:a1:54:e7:4f:e6:d0:ed:82:6e:a2:9f:2d:ea:eb:
27:2d:d7:9e:be:ba:4d:6a:2c:9c:7d:3c:8e:26:d7:08:fb:d5:
17:bc:0e:2c:e1:87:57:bc:c0:76:57:69:e0:67:d4:a0:fe:7d:
da:cd:de:37:a5:ba:41:69:b2:45:f7:6c:4d:6f:72:b9:a0:c8:
eb:29:a0:ac:d9:41:00:96:76:49:cc:03:d4:1e:3d:0d:ff:6c:
94:f2:5d:03:ac:81:eb:d6:18:de:32:57:22:97:75:31:87:58:
0a:2f:13:93:c3:4e:83:2f:38:06:82:99:d9:68:24:21:a5:e8:
5c:99:56:fa:b2:25:d1:d4:c2:02:b9:12:31:c2:21:8f:f0:8f:
82:2a:ff:e3:2b:c8:b1:93:93:0a:96:93:e1:4f:bf:ba:07:f7:
b3:11:a0:98:e2:b8:56:bb:00:b9:b2:f2:e8:5e:c2:fe:62:ed:
68:e4:ad:3b:21:9e:dc:7b:96:7a:65:bf:ed:88:47:e1:7a:e3:
11:77:d2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org