Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: C7ckhsc6o5yHvd0T4hADh8aVuHKPLWTrmUX8JEk/8H8=
Subject key identifier: 1C:E6:C2:BE:F7:4B:11:2F:5F:E5:85:EF:FC:0C:0B:E3:92:2C:B4:1E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1B1EE0BFA80C50AB6176E52538F289C188A6EFAC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:15 +0000
ROA not before: Mon 26 Sep 2022 09:55:15 +0000
ROA not after: Mon 25 Sep 2023 10:00:15 +0000
asID: 59282
IP address blocks: 2400:d680:312::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:1e:e0:bf:a8:0c:50:ab:61:76:e5:25:38:f2:89:c1:88:a6:ef:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:15 2022 GMT
Not After : Sep 25 10:00:15 2023 GMT
Subject: CN=1CE6C2BEF74B112F5FE585EFFC0C0BE3922CB41E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0b:75:51:fc:91:2a:8f:a3:78:e9:f9:75:d6:
2c:a8:fc:38:10:ed:c3:aa:92:35:e7:ba:90:f7:45:
cd:ec:5a:6f:3e:ae:56:c5:e5:9d:64:8b:62:8c:5d:
5f:af:56:ff:06:ea:fe:81:b0:65:23:ee:4b:e1:53:
bd:3c:ca:a9:90:2d:82:8e:f7:26:56:a0:5b:18:0c:
61:1e:4b:66:38:12:a2:ed:49:7a:d3:35:46:80:3c:
ea:58:f9:0c:fc:fe:86:5c:e2:fa:6e:93:1b:a4:3f:
bf:b6:b0:dd:b9:52:50:53:64:0e:c0:91:27:73:d6:
a7:5c:83:51:3a:e3:a9:73:2e:49:aa:ef:51:71:9e:
d2:dc:d7:19:fe:09:5e:92:18:12:f8:cf:30:26:08:
f1:dd:78:9d:e4:0b:26:f5:86:8a:86:8e:81:86:28:
00:bf:2c:fa:18:91:91:5a:7a:38:fa:d8:ce:cb:82:
29:77:d4:cc:96:d5:ec:a7:fa:9d:9a:2f:63:bf:92:
5c:97:eb:b1:b7:0d:f8:9f:2c:11:ac:d2:a6:53:96:
a7:76:35:68:37:98:e0:e8:bc:be:6f:cf:91:67:42:
8b:d4:03:9d:25:fb:69:22:d9:62:3c:97:3d:1d:32:
3b:75:9c:42:fb:8b:59:e7:bb:09:4b:86:6a:d3:3e:
4c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E6:C2:BE:F7:4B:11:2F:5F:E5:85:EF:FC:0C:0B:E3:92:2C:B4:1E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:312::/48
Signature Algorithm: sha256WithRSAEncryption
5e:d1:35:d4:ef:f0:d4:54:91:4d:74:c2:50:e7:8d:6f:63:16:
1e:05:89:b8:a5:83:62:92:11:45:57:fc:39:7f:a8:17:55:5d:
1d:8e:23:27:10:87:9a:d7:3c:1f:19:32:5f:38:63:53:a2:bf:
a9:e0:54:20:e6:4b:f2:80:10:fb:55:ea:78:80:8a:3b:f1:dc:
57:33:4b:2d:6c:82:93:35:4e:f5:42:71:2a:6e:e4:bd:40:20:
41:2d:47:5f:41:2a:d3:5b:c9:51:7f:db:0f:f6:d9:94:9d:b0:
dc:91:d3:c7:ad:f2:6b:cd:75:36:f0:d1:13:ab:06:89:f2:a2:
74:26:be:25:a5:45:f3:d7:e9:26:b4:02:0d:13:ad:fb:54:93:
17:dc:84:ce:08:c8:07:dc:ed:d3:ba:95:e7:4b:20:b7:6d:d9:
b7:07:ee:f7:33:43:2f:3d:c8:03:a0:74:79:b7:52:8e:e3:40:
53:93:f1:e8:b7:50:b3:1c:61:9e:25:28:ca:35:9d:1b:57:19:
8f:f5:08:c6:52:c7:75:8f:c9:8b:f4:c6:54:5e:9a:bf:0b:05:
c4:3c:ea:72:97:83:bc:5d:06:dd:0d:31:e6:fb:97:7d:19:a5:
89:a3:c7:d8:df:8c:59:c9:3a:20:99:72:01:77:3e:0f:bb:94:
b3:59:23:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org