Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1KPF57PoAqtbvn3XQcFykEgpMCpL18wYn4EM+7v3dZQ=
Subject key identifier: E8:39:46:D2:D9:80:87:C1:57:10:87:1E:64:FD:F7:26:16:C4:76:28
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2EF01E0DE18A2F7AB3EE0653FE25EA17EDB7B401
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:18 +0000
ROA not before: Mon 26 Sep 2022 12:55:18 +0000
ROA not after: Mon 25 Sep 2023 13:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:2e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:f0:1e:0d:e1:8a:2f:7a:b3:ee:06:53:fe:25:ea:17:ed:b7:b4:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:18 2022 GMT
Not After : Sep 25 13:00:18 2023 GMT
Subject: CN=E83946D2D98087C15710871E64FDF72616C47628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:4b:21:22:2d:fd:cc:3b:4d:9f:5b:23:d6:
35:e7:ca:d6:0f:e1:85:7b:d6:33:6b:68:d6:88:80:
e6:ce:56:5f:19:08:71:c6:4d:50:c9:9a:aa:56:cd:
59:ac:f2:14:18:f2:40:07:35:d9:9a:5e:1e:bd:30:
cb:80:5a:58:52:8c:91:67:3d:bd:bb:1b:a9:5b:09:
4d:3b:72:c1:86:4b:dd:2c:43:d6:f8:00:51:1d:22:
87:ea:5e:46:e8:ef:59:21:ab:21:1b:f1:8c:98:e9:
af:0f:02:76:36:0e:f9:5c:a6:a5:ad:77:2f:5e:30:
4a:30:99:6a:46:e6:c1:45:b5:d9:bc:79:5f:bc:5d:
55:a9:95:15:70:46:57:1e:8d:1c:57:40:30:c4:47:
7e:88:fa:c0:9d:95:55:14:c2:02:28:7e:27:0a:8a:
26:26:2d:00:1d:55:87:05:2b:35:e0:b6:1e:5e:d8:
e2:43:8d:82:9a:e2:42:ca:b9:cd:20:a5:0b:5a:bd:
e9:01:54:88:ae:26:1c:6d:ff:d2:44:91:1e:45:f0:
0c:25:36:c1:9f:70:ae:77:88:08:3a:20:e1:31:d0:
62:ee:03:bc:37:4f:1f:44:05:5e:da:3d:8b:f7:e5:
87:70:fc:b4:c1:2d:68:26:b9:1f:5b:12:b6:c8:81:
06:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:39:46:D2:D9:80:87:C1:57:10:87:1E:64:FD:F7:26:16:C4:76:28
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e0::/48
Signature Algorithm: sha256WithRSAEncryption
07:16:b2:39:11:a2:72:bb:a5:2a:2a:9c:9d:ef:8e:42:a8:b4:
c6:dc:47:12:0b:be:c0:04:56:21:7a:cf:c4:14:2a:c7:1a:62:
ff:5e:2a:d4:7b:ff:6b:9f:00:92:25:cb:fe:01:06:99:54:9f:
29:2a:bd:d9:d4:50:47:9f:d0:ad:c8:c6:7f:fe:89:17:38:7c:
34:90:0e:e0:e1:1d:9f:d9:1e:e0:b0:f8:96:fe:8c:d9:67:7f:
5a:6e:79:f3:14:5e:26:2f:ef:54:ec:c0:58:e0:f6:86:68:da:
4c:4f:1a:41:13:49:79:40:4f:82:fc:92:82:05:50:97:ea:88:
d1:d2:25:e8:a6:89:d6:1f:71:6f:29:ca:df:2a:3a:af:42:56:
ac:a8:bb:2e:a3:50:7f:d0:32:ca:6d:37:d9:cf:35:98:d4:7a:
86:0b:01:27:30:ee:ef:7c:a2:7f:65:4b:a1:6d:84:b2:7c:de:
28:b6:01:50:c1:d0:68:84:80:3c:50:53:2f:a4:e8:99:a0:ff:
0a:8c:c3:06:70:0f:e8:30:ba:82:da:aa:43:4e:26:22:97:78:
45:e4:20:e7:82:7d:e3:26:61:5b:6d:c8:8b:df:38:0f:87:93:
09:67:84:8c:6d:22:5f:56:f6:98:59:e5:a8:bd:04:ca:a1:a5:
06:7e:2f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org