Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZcAoifVb6NslaHWhA3s/cRxRfbNPA+you5htXzJaQsM=
Subject key identifier: 6D:6C:3F:1A:A8:71:AD:12:2B:69:FF:FF:FC:B5:1F:36:96:B3:2F:D0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4BE000821AE801527DF91DD9843BD4747E99C7C6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:20 +0000
ROA not before: Mon 26 Sep 2022 12:55:20 +0000
ROA not after: Mon 25 Sep 2023 13:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:2de::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:e0:00:82:1a:e8:01:52:7d:f9:1d:d9:84:3b:d4:74:7e:99:c7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:20 2022 GMT
Not After : Sep 25 13:00:20 2023 GMT
Subject: CN=6D6C3F1AA871AD122B69FFFFFCB51F3696B32FD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6e:64:8f:c0:2c:19:6e:d0:3b:af:ae:85:e0:
5d:82:55:cc:6e:3e:64:4f:ee:cf:77:be:08:44:a1:
e1:98:ec:5b:db:41:88:83:c3:b4:17:06:b8:84:94:
2f:27:c4:6c:76:5d:b5:a2:64:7f:5a:71:82:a7:c8:
25:8f:db:a5:a1:c8:d7:44:d8:b1:c2:35:ce:a3:8f:
92:bf:50:65:43:c0:4e:d9:c3:37:60:84:f0:8c:0f:
f6:9c:7f:4c:84:3d:1b:36:f3:65:a1:93:c0:e8:2e:
62:95:0e:75:86:a2:b5:27:fb:46:d6:5b:49:1b:99:
0e:4c:2e:a5:3e:ba:fa:52:e9:c1:47:ae:25:ed:73:
2d:78:91:05:c2:3f:8f:23:2d:65:46:73:ea:04:80:
ee:32:7d:81:89:9d:50:fb:06:03:23:ef:b1:fc:d2:
1f:ce:c4:2e:3b:de:33:27:b1:31:18:74:21:ae:c4:
6a:f4:50:b5:9d:23:b4:36:18:4b:d7:98:b5:4c:1d:
66:9d:2d:18:22:af:9b:b5:74:86:ad:df:e5:0b:d7:
3a:29:a0:7e:da:94:07:4b:bc:4a:62:16:bc:4d:6b:
e4:67:34:50:70:05:2e:03:dc:49:02:51:bf:d3:ca:
e3:58:7e:3c:d3:6b:75:54:43:d9:64:40:ef:84:30:
f6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6C:3F:1A:A8:71:AD:12:2B:69:FF:FF:FC:B5:1F:36:96:B3:2F:D0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2de::/48
Signature Algorithm: sha256WithRSAEncryption
c3:c3:99:ae:d2:86:6d:fc:93:c1:1b:a3:64:73:14:7d:00:8e:
ce:f8:3f:63:43:22:22:d7:b9:71:bc:c1:48:0a:1a:86:af:eb:
4d:80:4d:62:43:d8:24:c4:55:67:1e:0f:ae:37:30:e3:c9:ec:
cb:24:08:8e:d4:df:2a:f6:95:7a:cc:3f:73:1a:bd:26:78:bb:
4c:36:9b:4c:21:84:3e:b7:91:2f:fa:43:c6:be:0b:30:24:fb:
4f:2d:d0:72:e3:7a:83:f8:e7:57:ce:6b:3d:1d:7b:15:5d:84:
60:26:fb:a1:04:7b:5a:4e:03:de:9f:bc:8b:0a:5d:81:66:26:
2b:7e:d7:54:58:79:71:06:76:ca:50:77:f3:e0:c5:09:5d:7d:
82:5e:70:46:81:d5:d7:af:19:54:44:ad:5e:9d:65:55:32:c0:
ec:7f:b3:99:cd:34:12:61:58:30:44:98:0a:5b:ac:c3:4d:e0:
a3:9f:19:fb:f0:fe:16:13:e9:d3:94:df:26:dd:e0:c2:92:2a:
7f:dd:8d:af:33:79:82:37:a8:8f:5d:65:ec:59:dd:c7:2c:dc:
ba:47:fd:7b:ba:83:fd:9a:e0:24:10:16:f9:11:84:a2:0d:13:
cb:6d:6f:c1:61:03:3d:02:f8:44:87:aa:87:f0:97:ca:8e:65:
b6:7d:ca:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org