Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: IiGIEUAseZ60aM9jpdHip2BGy7bDik54ty3VOT0qqVc=
Subject key identifier: 20:34:62:BC:C8:01:5E:A1:5F:3E:90:2D:36:95:FA:5C:E8:88:9D:4F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3D4F8CBE51C024D7C5CCDFBC24BC2EBC73DF5870
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:14 +0000
ROA not before: Mon 26 Sep 2022 09:55:14 +0000
ROA not after: Mon 25 Sep 2023 10:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:324::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:4f:8c:be:51:c0:24:d7:c5:cc:df:bc:24:bc:2e:bc:73:df:58:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:14 2022 GMT
Not After : Sep 25 10:00:14 2023 GMT
Subject: CN=203462BCC8015EA15F3E902D3695FA5CE8889D4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a7:8d:ca:a8:6f:23:4e:0a:32:d9:ce:5c:b3:
44:cc:b3:af:32:98:df:35:32:d3:04:21:ea:b8:0b:
6c:36:6a:02:65:bc:1e:d4:c6:64:97:b5:00:fd:16:
da:68:c2:8b:2b:0e:88:1e:f7:84:40:ad:e0:f1:b6:
12:ca:0b:5a:d8:e7:a6:dd:27:e0:e1:1c:6e:b9:97:
5f:c5:02:87:4a:f1:a5:c3:d7:fc:78:a4:f3:c5:21:
ab:35:71:23:c0:fb:ac:42:8d:c3:23:a1:a3:7f:64:
f2:b0:9d:66:23:11:8e:1f:f0:ea:66:8d:c8:8a:76:
07:86:87:ed:1b:cf:cb:f8:28:d8:28:7d:9e:f6:5a:
03:72:9e:be:91:ae:d0:68:0a:f4:2a:83:46:c3:6a:
d3:2b:7a:4f:b0:37:a2:a9:9c:4b:1c:86:c9:77:53:
51:50:da:38:ce:01:22:7d:8a:e7:8c:7e:a8:3e:30:
27:4a:88:55:05:53:74:af:ec:f6:a4:04:c7:fd:40:
a5:e1:1e:9a:c7:6c:cf:a2:7d:0d:2a:b4:2d:66:bd:
8c:63:77:61:7e:b5:b5:90:54:e3:aa:f7:4b:f0:d6:
b8:31:44:9f:48:66:bf:8f:3b:3c:0f:98:cc:11:6c:
7d:3a:a5:96:26:b7:d4:a6:22:5f:06:a7:57:93:a8:
b8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:34:62:BC:C8:01:5E:A1:5F:3E:90:2D:36:95:FA:5C:E8:88:9D:4F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:324::/48
Signature Algorithm: sha256WithRSAEncryption
91:68:2a:26:c2:fb:c8:d7:b5:4f:31:96:9e:18:c7:9e:b6:37:
5f:b4:a8:78:70:1d:f2:7e:ad:99:d7:cc:00:1b:e8:a6:15:0c:
56:e1:48:15:5c:07:0d:97:a4:bb:71:c2:19:76:e6:28:4e:08:
40:fc:d5:63:1c:9e:45:e2:d6:59:4a:72:e5:14:d6:dc:1e:18:
8d:53:89:2a:92:89:64:bf:ba:69:99:fc:9e:0d:45:71:6c:f8:
b4:04:4a:da:0c:6d:a0:52:ac:d6:d2:67:57:21:1f:fe:f8:3d:
dd:44:6a:41:ee:23:c9:d2:ea:c1:d7:3a:a9:be:a5:29:4d:3d:
69:ee:0f:45:06:86:25:38:27:98:a4:57:74:8b:48:72:62:08:
5d:0a:1b:5a:41:cd:ee:a0:f1:4f:ba:67:12:92:f0:8d:34:3d:
4d:48:14:a0:46:6c:08:9f:bb:66:06:01:18:98:64:90:77:05:
77:9a:35:07:84:c7:9e:c7:d6:02:2a:fb:4c:12:a0:86:b3:f0:
19:a4:7a:e9:4d:50:00:ef:89:40:b7:99:3f:4a:56:fe:1f:ea:
e0:bc:1e:37:26:7a:86:f1:69:7e:01:b5:3f:6c:f3:60:96:0d:
60:91:40:c1:8b:7d:c8:cf:f7:fd:79:fb:36:47:cb:15:f7:f6:
75:82:53:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org