Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LYmIIecGc1FqChvQnxWBY4Z5i6xHASnvk6jiEcSAd4U=
Subject key identifier: D6:E5:A4:E9:02:EA:A8:F0:77:2E:6F:A6:64:36:6C:DA:8F:D7:68:51
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2934245BE44B059DB7931A722B365C9AE34C171A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:00 +0000
ROA not before: Mon 26 Sep 2022 12:55:00 +0000
ROA not after: Mon 25 Sep 2023 13:00:00 +0000
asID: 59282
IP address blocks: 2400:d680:2f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:34:24:5b:e4:4b:05:9d:b7:93:1a:72:2b:36:5c:9a:e3:4c:17:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:00 2022 GMT
Not After : Sep 25 13:00:00 2023 GMT
Subject: CN=D6E5A4E902EAA8F0772E6FA664366CDA8FD76851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7d:6d:15:07:95:91:c1:fa:7f:fa:eb:eb:47:
7d:f8:8b:e3:a0:82:b1:2a:09:c0:7b:41:23:b7:98:
74:b2:2c:18:f4:bd:01:83:fd:77:78:04:c9:fb:8e:
fa:08:67:f4:75:07:16:1a:85:a6:39:68:44:c0:ee:
53:19:f7:a4:7f:d8:ca:3e:cd:1a:e5:a8:c3:96:1d:
9e:e3:dd:dd:5d:20:9c:16:22:13:7b:72:8f:ad:5c:
4b:5e:6c:76:0d:64:e1:56:1e:d8:a9:8f:0c:c7:03:
f2:75:06:31:01:f0:dc:c3:d1:95:fe:0a:22:31:ee:
a9:9f:70:d9:4b:7a:f7:8d:a5:fc:99:ca:fd:ac:37:
44:5f:33:bc:63:67:37:70:cc:e5:c0:59:ec:a5:99:
bf:53:ae:50:9a:4f:81:7a:b8:01:7f:34:de:26:0b:
c0:52:db:71:f4:5a:3f:0b:82:27:5e:45:5e:35:93:
57:f3:c1:b4:17:35:30:6e:82:b9:98:1b:15:46:44:
a3:62:2a:85:91:cc:bb:75:a3:76:f7:e8:e2:66:83:
9a:b1:ba:7e:86:5a:06:f1:04:6b:56:e4:8d:d5:69:
22:73:92:f9:3d:e8:29:e7:89:e3:bc:cc:3e:47:50:
e2:8b:d4:40:dc:c3:f4:86:d6:0a:d6:a7:82:91:c4:
55:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E5:A4:E9:02:EA:A8:F0:77:2E:6F:A6:64:36:6C:DA:8F:D7:68:51
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2f8::/48
Signature Algorithm: sha256WithRSAEncryption
af:94:ff:9c:80:0b:6b:8e:91:a1:36:73:a9:2f:47:69:2c:e9:
77:58:38:5c:61:62:be:f9:91:97:22:34:42:9e:ef:75:12:91:
92:65:41:8a:af:bd:e1:a4:63:b1:59:f7:58:e4:16:61:2e:32:
1a:b0:d8:20:c7:8d:46:ec:f5:f3:a9:fc:13:e6:68:75:b7:1c:
69:80:fc:4c:77:1c:58:5a:5c:f7:f8:cc:b0:7d:70:25:11:35:
b9:cd:94:a0:96:5e:0e:0e:b1:e2:98:4e:17:d0:91:ca:e7:6c:
45:6c:99:2d:cc:30:7d:fb:d4:c6:60:e5:6b:39:fd:22:8d:aa:
bf:29:8b:fd:00:05:05:f8:57:9a:fc:3d:01:cb:53:7f:95:73:
90:40:ce:fa:11:3d:40:5a:7d:33:56:51:dd:37:35:39:bd:e9:
10:07:95:41:fe:64:66:b8:9f:27:ec:61:24:67:0b:89:4b:eb:
35:fd:23:12:c9:6d:5d:fa:b9:0f:7c:fe:7b:e1:78:20:ab:b7:
c9:91:c5:95:79:9e:15:93:26:bc:dd:92:a8:32:ad:91:6c:49:
dc:60:7e:14:0f:36:92:eb:02:89:c1:ef:53:2b:6b:b2:31:79:
a7:e8:21:71:2c:da:fd:ad:e3:db:84:e4:4b:67:d2:12:67:9b:
f7:1c:20:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org