Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: PUGDsYSCxFFL/FF5pbclf8ZPf2fzZz5efeu2UCiEdAs=
Subject key identifier: 2E:10:9A:E6:DB:94:35:EE:D6:8D:FB:38:0F:43:7C:0D:19:D5:B5:6C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 557617712575B75A856D233FD47D7A6B8BA3E410
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:27 +0000
ROA not before: Mon 26 Sep 2022 09:55:27 +0000
ROA not after: Mon 25 Sep 2023 10:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:320::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:76:17:71:25:75:b7:5a:85:6d:23:3f:d4:7d:7a:6b:8b:a3:e4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:27 2022 GMT
Not After : Sep 25 10:00:27 2023 GMT
Subject: CN=2E109AE6DB9435EED68DFB380F437C0D19D5B56C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4b:92:15:91:a5:fb:d5:b9:9a:6f:22:38:2a:
0d:29:96:81:ef:86:37:f0:8a:9e:2f:b2:e0:e4:51:
ad:ca:29:ab:78:ef:bd:7f:4e:d0:7f:a2:51:54:34:
72:8c:e9:e0:73:ff:f0:ad:38:97:f1:6f:b9:d6:69:
5d:6c:0c:61:5b:f9:42:fd:f4:dc:8d:57:1b:7a:62:
a1:71:f9:27:a3:db:46:ec:48:a8:ea:f2:60:40:5d:
25:51:1d:f7:5e:76:a6:32:1b:1f:ad:7a:85:1d:7e:
98:b8:35:55:6a:30:7f:5a:5d:1b:21:35:45:8f:18:
27:18:29:08:a5:11:33:a4:b0:3d:05:ad:de:dc:05:
16:a0:b0:34:bc:8f:de:ef:ab:8d:03:96:32:24:dd:
ea:ab:1a:d2:de:94:35:3f:04:4f:46:9c:1a:26:72:
b0:06:8c:2e:71:eb:31:35:0d:8e:81:48:12:84:de:
f7:66:ee:b9:1e:ad:50:00:f5:0f:20:b3:1c:1d:b9:
a1:18:39:34:3b:3b:d8:d9:5c:3d:4f:fb:58:06:d8:
aa:57:93:58:cd:64:a6:ef:c8:e2:7a:0d:49:79:da:
0f:9d:b6:1b:18:88:17:ae:04:50:ea:f2:45:82:11:
e1:e9:8e:35:48:dd:44:89:d4:f8:07:5c:b6:86:89:
77:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:10:9A:E6:DB:94:35:EE:D6:8D:FB:38:0F:43:7C:0D:19:D5:B5:6C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:320::/48
Signature Algorithm: sha256WithRSAEncryption
08:4c:cd:d6:2c:4a:64:a2:28:67:25:98:82:3b:e7:b3:4d:93:
4c:20:cc:19:db:2a:b8:73:52:72:a3:3f:e0:7b:52:85:03:43:
b8:93:a0:95:e0:9c:28:15:6f:88:ad:58:ed:bb:e0:d6:52:31:
8f:80:81:be:3c:9e:48:cb:95:24:1f:e7:73:1f:d3:91:28:43:
72:c4:51:ae:70:5c:cf:da:84:da:b2:64:3d:3f:a2:6d:7d:37:
84:48:db:07:68:ac:61:d6:05:16:d3:b8:b3:48:fb:bd:a3:bd:
78:b2:04:85:0c:21:21:f3:69:38:da:96:0d:d8:b7:47:50:45:
c8:7a:b7:c9:35:4d:53:c5:80:33:5a:32:fc:bc:9e:72:c2:8c:
94:a1:be:ac:08:fc:4a:a3:0c:38:a3:5d:e2:52:f1:40:01:a2:
33:3b:e6:ce:c3:97:ef:21:8e:49:61:41:d1:00:90:1b:65:32:
da:8b:1b:88:8f:78:67:ce:9a:df:a5:21:8f:18:8c:88:98:57:
f0:45:e1:e1:0e:29:42:21:f8:fd:0c:7b:b2:91:ea:2d:36:e1:
8b:7d:bb:03:18:ce:b0:b6:ba:a5:80:1d:de:6b:5a:83:1b:46:
e0:fd:70:27:6e:8e:bd:60:c0:38:c4:61:e2:44:47:b2:30:d4:
f3:98:a9:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org