Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: itaAAHnrCinsGw6FErt0cp4aX6NUVNw0RiMw9ckj5fw=
Subject key identifier: 1E:BC:A8:B9:23:C6:7C:DD:FE:BA:CC:F9:A3:86:C2:60:BC:EA:74:D6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1783D78F0A4708EC6052B8F780CB73732D5B79A1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:11 +0000
ROA not before: Mon 26 Sep 2022 12:55:11 +0000
ROA not after: Mon 25 Sep 2023 13:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:2e5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:83:d7:8f:0a:47:08:ec:60:52:b8:f7:80:cb:73:73:2d:5b:79:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:11 2022 GMT
Not After : Sep 25 13:00:11 2023 GMT
Subject: CN=1EBCA8B923C67CDDFEBACCF9A386C260BCEA74D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ff:8d:35:6d:70:e3:6f:56:4a:cf:a1:02:94:
aa:41:7a:d4:4e:ba:14:36:ac:a2:81:78:2b:14:1a:
68:c2:f5:b5:28:d7:8a:70:ff:ed:96:0c:6f:a5:f7:
fe:1a:ce:59:4a:2d:d6:b8:dc:2e:76:a6:6e:90:93:
f5:c4:5e:d7:45:78:4a:f8:b9:01:1f:74:69:b8:6b:
90:96:8e:65:1e:77:c8:8a:7a:9d:cc:6a:b4:47:92:
be:61:dd:8b:92:bd:9f:e0:78:bf:a9:cd:dc:c6:2f:
37:e5:5a:09:fe:c2:0e:68:88:cb:c3:87:ed:f8:59:
ca:95:57:5b:43:c2:64:4f:74:bd:af:6c:2b:76:15:
02:10:b5:d2:69:77:36:93:f3:e6:c1:95:d7:a5:1c:
7e:16:3f:01:71:f3:37:cd:2a:fb:b8:6e:46:38:10:
d9:36:a2:54:d1:2f:2c:b2:d1:7a:68:52:53:12:20:
1c:89:46:6b:4e:1c:4c:a4:e6:cb:79:00:86:bd:6c:
d3:9b:e2:7f:4d:e8:5f:1f:ad:82:ec:e2:b3:06:27:
00:9c:ae:f2:c8:8b:b8:7c:63:97:ed:9b:9a:6f:ac:
d4:f0:2e:bb:66:7b:79:24:c6:58:03:bb:69:f8:68:
19:0f:ad:6f:d9:51:f5:0b:af:65:60:d1:a1:be:fc:
70:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BC:A8:B9:23:C6:7C:DD:FE:BA:CC:F9:A3:86:C2:60:BC:EA:74:D6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e5::/48
Signature Algorithm: sha256WithRSAEncryption
6a:03:70:90:22:cc:0f:29:64:8b:37:71:2f:7c:7c:f5:6a:c0:
a8:eb:24:a5:9e:4c:26:84:5c:6d:ee:7d:dc:65:f6:c9:a1:fe:
69:62:45:6d:7a:dd:71:94:66:54:83:6c:12:ce:a7:90:d7:82:
e7:95:56:db:eb:4d:a6:82:d1:51:71:2c:ed:15:f6:a4:99:02:
58:2d:31:c0:59:30:29:8a:60:1d:b9:f1:b4:5f:47:ac:d2:b8:
0b:b5:01:21:35:c3:7a:b5:cb:15:55:77:c3:da:4b:bc:4a:6f:
8d:14:45:88:e3:01:70:de:eb:83:39:c3:d2:f1:b1:93:87:38:
2e:1c:c8:7e:73:80:37:51:86:2a:64:2d:86:54:61:dc:c7:ed:
42:9e:4f:97:41:01:a0:40:ce:b9:de:9e:33:e1:a6:4c:68:94:
32:ce:b1:d4:0a:4f:a5:77:6b:19:30:b3:7d:a6:e9:45:33:44:
f0:56:3f:a8:18:10:b0:b1:67:55:cb:51:de:f3:ff:80:85:ee:
61:91:f0:db:da:a1:ae:06:67:83:10:7e:45:fe:9f:c0:e5:df:
c3:ee:89:d1:db:b1:9a:9b:82:da:84:cb:79:a5:55:f1:57:48:
da:ba:6b:24:6d:18:8a:d1:fb:83:2b:6f:93:57:b7:36:dd:be:
e1:72:ed:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org