Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZcqBXGx0q4QuZtrGxz7rQDD+jr0Y8bsl5wOgBjt8HIo=
Subject key identifier: 7B:45:DB:6F:DC:3B:4F:A9:85:D4:AF:0C:0E:5D:5C:36:18:91:1F:BE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4E0A3309DF9548E1E24A6A716104419566871159
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:10 +0000
ROA not before: Mon 26 Sep 2022 09:55:10 +0000
ROA not after: Mon 25 Sep 2023 10:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:306::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:0a:33:09:df:95:48:e1:e2:4a:6a:71:61:04:41:95:66:87:11:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:10 2022 GMT
Not After : Sep 25 10:00:10 2023 GMT
Subject: CN=7B45DB6FDC3B4FA985D4AF0C0E5D5C3618911FBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a5:3a:52:e8:fb:fb:a2:57:64:2d:60:8a:87:
7c:b3:d1:d2:85:34:0e:90:fa:19:a0:38:1f:31:8e:
8f:28:ac:16:41:e3:25:72:92:91:47:9e:0f:9c:a7:
a0:70:f3:d0:3f:9a:3f:97:43:e8:75:39:ff:59:5a:
9b:ce:f1:ce:a0:ec:e0:f5:3c:d0:c2:65:6d:6e:93:
65:a8:4b:5a:95:a7:cf:c9:21:cd:79:11:b4:fa:1c:
44:ca:19:70:a1:21:aa:7b:14:46:e3:16:04:b4:b9:
68:fd:ea:1f:af:8f:bc:69:51:54:1c:30:5e:2e:d9:
db:eb:b9:82:c7:a4:d9:62:e4:87:83:c8:d2:52:ae:
5b:ee:c5:0f:af:a2:52:de:28:04:1c:a7:08:99:a4:
1d:a5:c7:2d:dd:38:d1:3a:4d:2b:1f:34:2a:c2:23:
b5:3c:6f:b7:04:02:65:88:1b:82:9e:8b:4f:11:d7:
c0:ea:b0:98:f1:77:40:43:67:44:d3:bb:70:87:4d:
5f:39:88:27:af:af:21:12:84:31:ca:99:4d:97:63:
26:18:15:6d:3d:64:6d:ab:87:70:c7:eb:a8:93:3d:
03:cd:3d:09:b5:ab:46:79:c4:50:96:50:cb:8d:6e:
4c:ec:50:0e:8b:a6:64:d5:e6:24:26:83:d1:82:6e:
48:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:45:DB:6F:DC:3B:4F:A9:85:D4:AF:0C:0E:5D:5C:36:18:91:1F:BE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:306::/48
Signature Algorithm: sha256WithRSAEncryption
cb:8e:91:39:1d:68:b9:00:e4:23:fc:05:a3:bc:81:55:04:81:
50:87:16:c6:84:16:71:f9:0d:38:22:7f:c1:46:55:cf:55:82:
d8:7c:25:d2:3a:7a:a7:fa:5a:81:c7:78:1a:22:94:6c:f3:38:
76:90:1c:ba:f6:a9:de:c3:76:70:ec:99:3c:76:50:73:fe:d7:
80:97:a3:a2:35:07:fa:6f:ca:8c:f0:6d:85:01:a7:57:db:66:
c5:02:c5:76:f1:9e:89:a5:93:f8:2a:b1:0f:6b:33:c1:6d:61:
2c:5e:fc:90:6b:1b:11:e2:14:ca:2f:45:9d:0a:11:40:8a:5e:
16:98:0d:82:bc:69:11:45:67:8c:bd:51:36:24:69:fb:68:7f:
d8:a9:8f:ce:55:7b:5e:ef:c3:8a:42:ae:0f:df:df:90:9d:95:
9d:23:5c:f3:08:85:ac:b7:55:7c:37:f1:12:bc:86:a9:e9:5e:
de:a0:2c:21:30:86:a9:a4:49:e4:8e:f7:84:29:01:ac:d3:32:
2c:42:39:7f:d9:15:04:e5:41:ab:6a:d2:e2:15:64:e3:a5:5f:
d6:fd:d5:91:20:7f:d3:ab:15:d6:83:b5:73:cb:ee:9d:86:e5:
bf:d4:e7:77:42:65:9c:8c:45:02:63:8d:88:67:16:14:bf:e5:
4f:d2:27:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org