Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: M/cd+BCP9llod2NrB0gp3F3JuEg1pkuXOu66y2mcWzA=
Subject key identifier: 92:B5:F6:28:90:4A:33:0E:F4:59:19:C5:C3:BC:CE:20:C5:B9:5E:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1647CBB2729897150608CD8CCFA4BFA6391FA016
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:311::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:47:cb:b2:72:98:97:15:06:08:cd:8c:cf:a4:bf:a6:39:1f:a0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=92B5F628904A330EF45919C5C3BCCE20C5B95EDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1f:10:5b:92:56:49:a8:d0:48:7b:43:03:e9:
74:9c:80:03:40:e1:1c:f9:68:1d:1d:71:a2:30:b8:
47:2c:8f:e7:c1:5a:68:da:75:f8:8d:ed:a5:44:84:
0a:d7:cb:49:c3:50:bb:cc:c3:fe:2c:4b:b9:be:fc:
51:08:1e:4d:65:02:4e:2c:5e:c4:17:41:4a:55:c2:
b7:1b:ff:22:0b:a6:af:68:9a:02:38:e0:0d:83:8b:
be:c8:9d:3d:44:45:3c:ae:ca:e6:6b:ee:c1:77:f5:
f2:96:17:c3:c4:07:6f:2e:ba:20:13:83:79:e0:dd:
01:5c:fd:0f:73:b3:dc:2b:27:53:db:af:c1:2d:6d:
41:55:74:1d:a0:6c:8e:ab:3c:78:40:4d:a7:bb:c0:
8a:0f:15:4d:bd:c7:1a:f2:ae:35:d3:f0:1d:b5:61:
3e:85:c4:dc:78:0c:a7:4d:17:bc:0f:35:f1:17:31:
77:40:61:9a:b0:c2:59:15:43:66:8a:29:9d:df:5d:
13:37:53:54:dd:3e:30:c0:a4:23:db:51:26:95:ee:
bc:d3:d4:8a:e8:b8:a8:81:64:0f:0c:24:3b:2b:d4:
f8:cd:72:4e:fd:65:9e:88:3d:3d:15:5e:0a:1e:dd:
f6:22:e9:23:f2:b5:f2:8f:54:60:a8:7a:de:7b:db:
1a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B5:F6:28:90:4A:33:0E:F4:59:19:C5:C3:BC:CE:20:C5:B9:5E:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:311::/48
Signature Algorithm: sha256WithRSAEncryption
0e:33:0d:45:f1:cc:aa:92:1c:e9:56:58:b4:23:61:4c:ec:c7:
c0:7b:3d:2f:90:d9:f4:81:d5:40:69:9e:8f:db:9f:94:80:d4:
9f:c2:7e:cb:64:e6:da:24:ca:b2:96:d1:3a:42:5b:52:f9:8e:
ef:79:58:eb:3e:9a:d1:a2:60:ca:67:09:40:d6:48:af:9d:a2:
8a:d0:4f:61:86:6d:0f:c6:60:1b:a0:36:f8:fd:d1:30:76:4b:
e2:d1:4a:9e:99:43:8c:44:40:7d:37:c7:0f:cc:a6:f9:32:2c:
26:b7:85:39:9a:05:ce:49:d9:21:13:0f:71:e3:a5:fe:f1:59:
6c:92:a9:85:60:f3:da:41:fe:26:98:35:93:d0:72:89:a3:42:
79:cf:91:ac:23:3b:b9:6c:dc:7d:ea:d4:02:e2:7b:16:31:d9:
c8:06:f8:1c:e7:fb:b4:c1:f6:33:26:bb:fc:5f:7c:16:97:57:
8b:ed:ea:5a:4b:93:85:fe:3c:5a:53:e2:89:d2:97:e7:c5:0b:
ef:19:cf:04:5f:23:0a:27:e5:3c:81:e4:fa:65:ee:d9:5c:d0:
5e:f0:e4:55:31:1d:d2:f7:f6:1a:ba:9a:c5:e0:6f:70:79:20:
fc:3e:ad:73:20:34:88:dc:ac:b7:48:5d:b5:9a:12:01:dc:b3:
31:78:b0:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org