Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: uUuGwdeCU0J1W1eMMpQR6OGBvWwNf9o0Kd9gSD6clCg=
Subject key identifier: 69:07:51:AD:DF:2E:66:EB:FE:B7:36:E3:A0:F6:32:26:13:C1:33:C7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2D1EBE4335DF25C8FBB6A172C8EE651145F7CA94
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:01 +0000
ROA not before: Mon 26 Sep 2022 09:55:01 +0000
ROA not after: Mon 25 Sep 2023 10:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:323::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:1e:be:43:35:df:25:c8:fb:b6:a1:72:c8:ee:65:11:45:f7:ca:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:01 2022 GMT
Not After : Sep 25 10:00:01 2023 GMT
Subject: CN=690751ADDF2E66EBFEB736E3A0F6322613C133C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:dc:19:1f:1a:5f:b7:ef:2f:d3:a9:2d:a4:b9:
d0:79:4f:de:2c:0b:ef:be:35:25:61:cf:e1:d7:91:
e7:bb:28:4b:f9:00:95:8b:c0:91:a5:a1:09:ab:70:
9c:c3:44:f2:a7:56:a6:75:7f:ac:34:0c:d6:90:a8:
69:60:84:15:a6:f3:91:67:76:5f:2e:12:56:e9:b4:
0b:bc:57:a6:2a:2f:62:1f:62:2f:b0:21:f7:b8:c6:
3d:33:55:72:f9:f8:1c:f3:e5:15:25:13:6c:29:15:
e7:d4:b9:6c:ee:c2:51:80:b5:19:f8:8b:85:bf:0d:
cc:29:58:65:d0:d4:f0:a9:b4:c0:c6:a5:eb:c4:be:
c7:d8:88:c7:5a:94:90:a6:b6:08:30:7f:17:34:69:
14:51:b7:80:ff:e8:60:8b:bb:3c:59:0e:37:da:a2:
44:01:41:ea:9c:aa:70:46:8b:b5:14:03:79:f3:7f:
7a:88:19:ba:24:81:e5:5a:de:82:17:1f:25:3c:4e:
44:ac:2a:11:e3:35:0e:90:85:57:fd:c7:47:ed:1f:
36:0a:45:be:d2:f9:71:0f:ab:ce:44:69:d2:cb:02:
af:4e:cd:1d:2d:16:23:db:60:d6:9b:2e:16:d1:0d:
f8:06:58:76:71:de:9d:01:3c:b3:c0:81:92:5b:3f:
60:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:07:51:AD:DF:2E:66:EB:FE:B7:36:E3:A0:F6:32:26:13:C1:33:C7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:323::/48
Signature Algorithm: sha256WithRSAEncryption
cf:97:56:a8:df:57:3c:50:a2:24:04:76:04:8a:a7:f2:ab:63:
b5:40:c3:6e:ce:a3:5e:ea:ad:62:2b:6f:6c:de:6b:40:28:70:
3b:e4:5d:fb:e6:dc:6c:63:eb:f4:07:28:49:00:4f:05:b0:58:
97:77:b2:71:1a:0f:f2:7e:24:56:99:8f:13:95:12:f6:4d:a4:
ac:93:90:7b:21:fa:29:ae:0d:4a:fc:5c:09:a1:2c:98:3a:6c:
26:ac:8f:85:bb:38:7d:25:4e:85:fb:ae:d8:97:18:bc:33:2b:
a8:f0:b0:2a:94:b9:80:8d:6c:82:f7:bc:11:35:0d:84:09:f1:
06:03:22:a9:98:70:69:cc:29:92:74:aa:b2:b8:0d:3d:d8:37:
bd:35:b7:04:ad:81:5c:69:a5:ca:9e:d6:de:03:25:2a:b4:b3:
06:04:d0:16:0e:f7:9d:82:88:cd:56:33:fa:7f:a0:6c:9b:44:
a9:53:70:2e:4b:bf:df:c8:e1:6d:96:14:6b:3c:8a:4d:53:85:
e7:3b:01:f1:b1:7c:ae:b0:b1:86:ce:15:0f:7e:82:b6:33:1e:
87:41:5b:65:0c:af:52:d3:0c:ed:75:3d:a9:4b:60:ef:70:a4:
80:3e:88:27:33:54:7a:f7:7b:3a:7f:84:7f:1c:45:e3:de:9b:
c8:74:c5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org