Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: h/GXzvIQgN7rK8aFjUvfNZO4Yl5bMhjJpxc6iqWp/iQ=
Subject key identifier: AC:C5:91:A0:9A:81:19:D4:0B:2E:2E:A3:14:BA:0A:83:1D:6A:87:A2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6FC60F7465339A95745EB04B8AF661AF3E7CE615
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:29 +0000
ROA not before: Mon 26 Sep 2022 09:55:29 +0000
ROA not after: Mon 25 Sep 2023 10:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:327::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:c6:0f:74:65:33:9a:95:74:5e:b0:4b:8a:f6:61:af:3e:7c:e6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:29 2022 GMT
Not After : Sep 25 10:00:29 2023 GMT
Subject: CN=ACC591A09A8119D40B2E2EA314BA0A831D6A87A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:ab:50:93:50:da:eb:87:ac:a8:c9:f2:e8:
04:71:7c:6c:68:99:cd:4e:59:a9:83:e0:cf:d0:b0:
ef:38:72:d0:8b:66:ba:da:f5:2a:c0:3b:b4:34:42:
dc:9e:17:e9:5c:c0:7d:8f:af:e4:49:31:df:60:5c:
86:34:cc:61:fc:e9:d3:85:60:ba:ec:94:6c:0f:df:
b5:24:7b:86:a9:67:c5:dd:75:2a:3e:ac:fe:f0:7c:
24:67:53:42:57:1d:cd:4f:17:24:ec:7c:f0:21:a8:
fb:ee:a3:c2:de:b7:91:97:04:50:e7:a0:8e:d6:68:
ce:22:d9:55:17:d1:c0:6a:a9:13:b7:73:a1:5d:e1:
d6:65:b9:0f:96:af:cd:fd:39:63:37:b9:91:f7:5c:
91:97:9d:05:7c:23:3c:4c:db:97:18:16:0c:eb:11:
4b:b4:ba:4d:ad:89:78:a8:e1:58:c8:30:01:60:b4:
86:b9:9f:0e:b2:ad:d7:90:8e:33:9a:b7:a2:90:dc:
d2:6b:f8:ad:50:3a:fb:77:78:5c:df:b5:23:d6:4e:
89:c7:41:bd:26:5b:5b:d1:89:50:f3:28:ed:49:5f:
dd:3d:53:7f:85:fb:f1:1c:94:a4:39:cb:bb:f0:1b:
76:fd:ca:7a:3e:52:f1:d8:21:cf:90:11:71:4b:ba:
07:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C5:91:A0:9A:81:19:D4:0B:2E:2E:A3:14:BA:0A:83:1D:6A:87:A2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:327::/48
Signature Algorithm: sha256WithRSAEncryption
36:a0:b3:ae:d8:9f:63:d5:98:64:22:e6:f2:02:98:df:eb:67:
95:87:79:c7:23:0a:f0:16:e2:33:78:14:f9:fb:c8:9b:2d:6c:
56:dc:22:05:26:f2:30:f1:19:a8:f8:3c:d2:a2:f5:e1:c0:81:
98:4b:74:ea:07:dc:68:96:4e:f0:a1:92:98:a5:49:61:af:fe:
97:78:00:fb:15:07:75:8c:dd:91:4d:83:44:0e:dc:c1:49:97:
20:c8:d2:4e:a1:25:ef:a2:72:58:41:ae:5d:b2:bc:ca:0f:7a:
2d:38:fc:5d:e0:8a:71:69:85:c4:5b:f5:52:bd:9a:8f:dc:4d:
e6:b9:e8:96:56:5d:8d:f5:cc:9f:16:df:8e:1b:c3:c5:05:de:
42:1e:a5:ca:9e:62:7e:45:82:e0:d9:cf:e9:f5:2b:68:c0:49:
26:dc:c3:ad:c4:7c:01:c6:90:d7:40:80:26:9e:cb:67:b1:34:
69:54:88:a5:9f:55:14:f9:83:ed:44:71:b4:4d:2f:14:a2:c3:
e6:90:f9:6d:61:66:09:df:39:ca:2d:c1:6b:d8:e2:80:37:f7:
f4:f9:2c:89:8b:02:24:9f:2b:5e:d2:59:f6:99:94:86:01:e8:
55:78:4c:96:c5:57:59:7f:83:78:9e:cf:a1:ed:94:8e:66:36:
a1:15:9a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org