Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 50nA0uS3mSwRk9rH5YiNZ+3O/2zP/roJkpUrRi4IULg=
Subject key identifier: 00:FC:5A:AD:7A:08:82:A3:DA:00:DC:A4:28:54:D1:32:C6:D5:47:34
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7E958EA4592664AA3B9EF787843B6A1D7B726471
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:15 +0000
ROA not before: Mon 26 Sep 2022 12:55:15 +0000
ROA not after: Mon 25 Sep 2023 13:00:15 +0000
asID: 59282
IP address blocks: 2400:d680:2ef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:95:8e:a4:59:26:64:aa:3b:9e:f7:87:84:3b:6a:1d:7b:72:64:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:15 2022 GMT
Not After : Sep 25 13:00:15 2023 GMT
Subject: CN=00FC5AAD7A0882A3DA00DCA42854D132C6D54734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cb:96:ee:91:e3:d6:b0:99:10:55:85:c7:86:
04:29:6e:69:38:ba:5c:39:56:5a:90:a0:b1:c4:81:
04:16:34:b2:70:c0:dc:cc:cc:2d:89:d5:82:4b:dc:
d0:2a:26:c9:58:70:f2:f3:d6:b2:01:a0:35:b8:ef:
a6:6f:b7:59:c5:6e:90:ec:81:11:cf:61:24:fc:6d:
ec:8e:98:67:92:49:f3:ff:66:d3:d2:92:73:38:c6:
3e:a5:66:d6:f7:db:7e:6f:33:7f:aa:2e:a3:93:24:
53:27:f1:af:54:49:5e:12:de:3a:d6:9b:06:1a:f2:
70:70:c2:48:c6:d7:ad:8d:05:3c:a7:5c:d6:97:c0:
25:a2:2a:0a:0a:e2:64:48:a1:f0:ed:fd:23:cf:ad:
3e:0f:3b:19:06:ec:9c:4c:7d:d6:c0:a2:09:d5:ea:
ab:15:20:df:7a:1a:87:d3:19:a4:fc:25:55:54:10:
5c:83:e0:55:e2:6c:ec:d9:fa:7e:88:45:a9:3b:2a:
00:33:a8:b4:4e:68:e1:2f:0c:3e:de:d6:61:a9:e6:
33:3a:d4:fc:0a:b2:fb:d2:0a:75:d9:70:df:bd:2e:
8f:01:19:09:f5:ef:f3:33:69:0c:40:c2:aa:8d:54:
a1:0d:bd:24:67:d4:6b:71:dd:ba:63:a8:2a:8a:27:
7f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FC:5A:AD:7A:08:82:A3:DA:00:DC:A4:28:54:D1:32:C6:D5:47:34
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2ef::/48
Signature Algorithm: sha256WithRSAEncryption
a1:96:d0:3f:8e:9c:bb:40:9e:72:9d:4e:6f:d4:ea:9b:94:ba:
2c:ad:5d:11:d2:76:59:81:e8:19:81:1c:af:23:1c:6e:5b:50:
f7:ca:62:fd:bb:7c:6c:44:4f:ac:4c:fd:4a:f8:60:c7:e0:03:
74:29:a1:3f:4b:36:e5:6c:ac:01:63:20:07:5c:eb:a7:d5:2a:
d5:7d:77:07:ad:26:6c:5b:bd:2a:47:47:37:be:b7:7f:a0:4e:
40:67:e5:81:1e:c9:6f:0b:d7:f7:99:e7:90:71:80:56:63:60:
9f:c9:34:e3:a6:9b:c0:3e:70:e6:ac:8d:7b:04:c0:68:5e:75:
ef:19:48:c0:c0:d9:74:62:06:20:12:44:27:c9:f2:b7:f8:f7:
b4:d7:94:8e:7a:ee:a7:62:68:c3:5d:b5:d4:72:bc:b5:c9:3a:
b6:25:1f:8e:55:f1:dd:3a:da:ef:e8:b4:c3:1c:96:0f:4a:c8:
b6:3a:af:f8:eb:1c:78:f9:2e:38:67:49:a6:0c:e1:c8:05:bc:
1c:e6:b9:0a:f0:21:b0:2e:18:e2:d3:67:11:3a:40:bd:75:14:
7b:27:a9:c4:40:04:90:4c:d3:53:52:26:9d:fd:ab:57:96:20:
30:c7:d4:58:26:39:2c:24:6d:36:5b:cc:dc:18:01:a7:70:cd:
eb:7f:d3:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org