Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: x1NoTbDf/0lqrGyDRrh158C9Eo6MHP3WIHaXivGay9c=
Subject key identifier: 60:0B:E5:37:59:E1:96:8C:84:80:C5:25:C2:E1:04:82:0E:C9:1D:41
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 75D6037CC07CFD29112B5BD8BEFFBD6C37149C6C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:13 +0000
ROA not before: Mon 26 Sep 2022 12:55:13 +0000
ROA not after: Mon 25 Sep 2023 13:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:2e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:d6:03:7c:c0:7c:fd:29:11:2b:5b:d8:be:ff:bd:6c:37:14:9c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:13 2022 GMT
Not After : Sep 25 13:00:13 2023 GMT
Subject: CN=600BE53759E1968C8480C525C2E104820EC91D41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7d:5b:6f:21:03:89:f2:35:61:8e:15:7a:d0:
36:a1:8d:f6:55:78:1e:24:4b:b4:be:ab:de:77:b4:
67:ef:a6:70:0c:a9:6b:ac:24:a2:bf:e9:ed:73:56:
3d:d1:12:4c:c5:42:20:95:db:df:90:3d:0b:0c:94:
8c:07:44:24:01:c1:42:24:a9:eb:9e:59:99:84:c8:
47:fc:2a:ea:53:19:10:26:8c:87:09:35:59:43:e8:
6d:47:9a:9b:9b:1f:93:65:00:79:39:c1:37:af:cd:
c3:6f:11:52:f9:f5:31:cc:a0:33:15:a2:40:43:d6:
af:d5:04:42:d5:f2:b0:c6:ab:e7:bf:3d:b1:88:02:
33:ff:23:b1:6f:10:ed:7d:71:ef:49:d3:b4:ff:06:
ec:13:25:f2:bf:22:28:ef:a6:4a:b3:40:df:04:05:
64:e5:dc:71:8e:92:12:a3:2a:51:88:f8:72:de:1d:
3d:0f:4d:86:40:eb:b1:a4:7f:36:6a:7d:71:a5:d2:
02:bf:0e:66:db:72:1d:be:df:48:fb:8b:8f:a0:d4:
a3:39:7c:b7:96:5c:90:18:c7:94:79:21:bc:e5:0b:
25:b5:f9:ca:08:1e:b4:8d:ac:56:aa:0e:27:4b:cb:
66:85:96:75:11:82:28:1a:58:4a:13:29:c0:4b:a2:
10:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0B:E5:37:59:E1:96:8C:84:80:C5:25:C2:E1:04:82:0E:C9:1D:41
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e4::/48
Signature Algorithm: sha256WithRSAEncryption
84:b9:61:de:ed:ae:a8:95:1b:6f:d2:3f:4b:2b:14:02:ef:64:
d0:45:f0:1e:5c:f3:54:98:d3:96:af:5b:47:de:3e:66:04:5a:
82:42:e6:38:4f:95:46:cb:02:c7:cd:56:f9:95:82:31:9f:3d:
14:64:57:99:4a:bb:46:5c:30:04:be:34:0d:49:94:08:bb:b8:
a8:bb:4e:4b:c8:0f:f2:ec:64:00:51:a2:de:47:32:14:0e:af:
7d:fd:2a:ad:39:0a:59:f3:5e:a8:d3:2c:b8:90:7b:5f:d3:e1:
7e:4c:61:8f:08:9b:77:e2:df:4e:d7:49:48:ad:8e:bb:c6:83:
44:e6:b5:cd:22:59:12:67:71:dd:cb:11:93:4e:1e:7f:67:79:
09:03:98:0e:1b:0f:08:16:e5:90:5d:20:bf:b3:34:54:65:4f:
08:14:79:5b:cd:66:ff:26:34:40:77:82:97:f0:31:f1:35:87:
f7:a5:8e:57:63:d9:fa:23:0b:35:ea:fa:ad:68:91:62:48:6a:
44:dd:fc:fe:01:02:ac:74:7f:58:bc:39:7e:1f:57:b2:ae:c0:
63:28:32:04:d8:79:b0:8b:b7:b4:ea:7d:89:09:bc:fe:87:55:
aa:52:a2:47:65:f8:fa:9e:fd:0d:88:a3:86:74:68:02:0a:b5:
02:af:cd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org