Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dLLa+qbIvL7OYDHQXOV8yliKIoYilbhrKF7OY/1aWF4=
Subject key identifier: 12:AA:57:C3:0D:54:8A:6D:73:31:51:B1:28:2B:F6:60:5D:7F:D4:A2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 66B285001FD3CECE0A5ACA0AB171C8B684BADF5F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:18 +0000
ROA not before: Mon 26 Sep 2022 12:55:18 +0000
ROA not after: Mon 25 Sep 2023 13:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:2ea::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:b2:85:00:1f:d3:ce:ce:0a:5a:ca:0a:b1:71:c8:b6:84:ba:df:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:18 2022 GMT
Not After : Sep 25 13:00:18 2023 GMT
Subject: CN=12AA57C30D548A6D733151B1282BF6605D7FD4A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e6:83:85:52:48:93:b7:86:3a:09:e3:1e:c0:
6e:45:17:2d:69:db:4b:95:b3:16:b5:c0:20:19:fd:
bc:c6:64:e2:26:80:ee:54:0f:f2:49:48:8c:2f:02:
66:a7:ad:b5:7f:8d:28:f7:62:17:72:ec:7a:d9:ef:
34:69:25:ae:9e:a1:b7:9b:95:2d:36:58:29:b3:79:
c9:45:e5:a9:06:4f:56:f6:c4:cd:75:eb:e3:8b:8d:
ae:36:26:40:92:a7:e4:ac:6b:9e:30:a2:d2:8f:e3:
4f:73:f5:0c:16:b4:b8:cf:2d:d3:6c:03:cb:12:2c:
cb:d4:bf:d7:42:e5:f9:00:ec:12:c7:8d:30:2d:e9:
9c:79:0d:75:5f:c5:af:99:aa:25:20:cb:1b:46:7e:
16:f4:0b:64:ad:73:81:ab:be:fc:8e:44:dc:72:65:
15:6e:32:1d:86:c8:be:27:83:23:80:04:52:f3:3b:
f1:58:22:96:8c:4f:77:52:31:a3:61:b5:af:67:32:
60:89:55:0e:4f:ce:1e:87:46:a7:43:5d:c7:18:57:
f3:09:ca:5f:e4:ec:93:42:d6:e4:6b:10:63:21:e5:
f3:ec:96:32:61:8c:2d:74:df:b7:de:fe:0d:c1:bd:
af:73:9f:5b:3d:fa:c8:98:44:f7:b3:35:40:cd:d4:
fa:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AA:57:C3:0D:54:8A:6D:73:31:51:B1:28:2B:F6:60:5D:7F:D4:A2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2ea::/48
Signature Algorithm: sha256WithRSAEncryption
02:e9:62:21:c7:72:f0:6b:73:15:e4:32:45:98:ae:31:42:0f:
4c:47:ff:f0:66:0c:3d:73:18:dc:97:b4:72:32:8d:03:1b:61:
1b:3c:63:fc:91:5f:7e:38:66:c8:cd:82:01:bd:85:e0:6b:13:
f8:91:f1:24:e4:be:06:5b:b4:dc:c0:ba:41:a4:1e:0d:22:9d:
15:4c:ce:27:04:e0:b5:f3:31:c5:3c:42:52:2a:b2:fc:db:e4:
77:57:63:a4:00:05:50:5c:cd:87:8c:df:a6:cd:5c:b8:9b:77:
31:a6:88:56:fc:44:61:b6:be:80:19:6a:70:ee:44:d8:f2:32:
58:63:2a:66:df:04:1e:6e:ae:cf:72:1d:9d:ef:3b:ba:37:a9:
a5:5b:ef:24:c4:01:86:a4:e1:a5:61:b1:03:04:cb:58:ae:3e:
82:e1:b5:7c:1f:dc:f8:86:a4:41:32:57:18:36:ab:7c:1e:26:
20:27:66:b0:b1:45:c6:0f:7a:58:fb:b5:07:88:04:9a:72:b3:
e3:14:d5:01:05:29:b3:55:1c:9d:bf:86:db:02:70:29:e1:14:
9a:40:af:45:74:27:25:e4:b1:f9:53:a1:6e:0b:ba:7f:76:93:
6d:03:86:89:4a:ff:2d:19:0c:d5:9a:26:78:23:ae:c1:80:58:
77:0c:a6:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org