Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: /xz4zSMWdJ0/2sx9q0ze33YMDAoMX+rlk7YXOrIAu7M=
Subject key identifier: DF:25:0D:28:00:63:B6:58:8E:ED:C7:53:2F:25:2B:0A:B6:12:93:24
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 05C4C4D8A87EC813905FFAD8E7BFFA27D827BF86
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:15 +0000
ROA not before: Mon 26 Sep 2022 12:55:15 +0000
ROA not after: Mon 25 Sep 2023 13:00:15 +0000
asID: 59282
IP address blocks: 2400:d680:2f7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:c4:c4:d8:a8:7e:c8:13:90:5f:fa:d8:e7:bf:fa:27:d8:27:bf:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:15 2022 GMT
Not After : Sep 25 13:00:15 2023 GMT
Subject: CN=DF250D280063B6588EEDC7532F252B0AB6129324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:27:0b:80:1e:af:12:0d:f6:ff:dc:b3:f0:28:
7c:86:82:eb:b2:05:de:af:ba:df:1b:63:5b:29:a9:
e0:6a:48:e6:44:33:6b:a7:9b:25:3a:c5:ca:f9:d4:
f3:dc:63:02:12:97:eb:45:2d:81:0c:60:b8:8b:47:
a0:00:f0:f5:e8:f0:41:61:fe:f6:be:1e:7f:f9:d0:
20:97:ea:cf:0b:75:92:64:bf:06:08:2b:5b:35:74:
99:69:48:fe:1a:fe:61:56:42:cd:da:7d:20:8b:13:
7e:1d:18:b8:8f:8d:36:2c:ed:4d:4a:a3:6c:2a:0f:
dc:19:bd:bc:76:4d:5e:55:e6:44:9b:68:10:e8:6f:
45:01:d7:b7:59:00:60:e0:0d:27:15:9a:96:9b:12:
c5:9e:3a:fe:32:d0:ae:8c:3c:a7:83:0d:81:bd:1b:
01:2c:95:60:b9:99:1f:c6:61:cb:43:a3:a8:af:93:
8a:ed:1e:fd:c8:04:7f:ce:4a:a5:b9:aa:15:9d:ef:
5b:00:f8:ed:fa:ce:ab:e6:53:a2:bd:14:7e:74:2a:
24:7a:63:d9:d3:1b:a0:90:29:25:5a:74:61:98:7a:
4f:91:63:dc:55:ea:61:7f:40:3e:2e:68:9b:50:cf:
2d:b4:27:27:7c:bc:24:c6:7c:e2:d5:10:5c:a4:7b:
88:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:25:0D:28:00:63:B6:58:8E:ED:C7:53:2F:25:2B:0A:B6:12:93:24
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2f7::/48
Signature Algorithm: sha256WithRSAEncryption
46:b4:d2:b9:93:5f:e5:42:84:9c:41:9f:21:d9:a1:d2:f0:8a:
0f:85:1a:74:2e:aa:3a:dd:81:a7:86:0f:84:30:7e:1c:2a:f5:
e7:73:93:41:61:b2:14:11:78:f5:be:7c:5f:47:48:18:f2:1b:
d3:e0:4e:8d:d7:8f:b1:26:2a:78:de:06:65:4c:e5:49:2d:75:
4b:b0:b8:39:3a:09:41:93:b9:09:24:f1:56:4e:16:a2:38:97:
7c:6b:8a:22:7c:a4:d0:86:29:1c:0f:69:57:f4:25:71:cb:76:
2f:ed:7f:31:02:d4:31:91:1f:6c:f7:aa:c3:60:1e:6c:d5:41:
0b:5c:89:bb:51:aa:e8:fe:37:6d:dc:d2:4c:24:42:34:a7:42:
ff:8b:e0:45:e8:d9:53:bf:89:55:9f:1f:7f:d2:53:cb:65:1a:
8f:0d:76:a2:41:ca:df:bd:a4:f6:e5:b4:17:20:f1:42:02:11:
21:75:a8:2f:32:37:ba:95:0c:5c:ff:e1:64:bf:5f:27:53:13:
f4:ac:82:9b:25:59:ca:62:c0:ff:d2:39:c0:d7:5b:c2:09:d4:
c2:50:96:4e:10:d8:ee:e9:4b:ba:09:b1:65:86:b2:39:10:b2:
16:1f:53:db:b7:9b:5a:96:82:e6:33:ea:73:97:9b:8b:18:bb:
f3:99:87:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org