Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aJELAYLJ4qiTYzzQM1FYojp3lcZWCzQMBEq55VskBII=
Subject key identifier: 4B:73:6D:1B:20:D2:C8:9C:FA:13:00:8B:DA:53:05:4F:A2:75:A5:47
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2289BF5B699F8B573639D5B8C7AA79AB17C3EB8B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:18 +0000
ROA not before: Mon 26 Sep 2022 09:55:18 +0000
ROA not after: Mon 25 Sep 2023 10:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:32d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:89:bf:5b:69:9f:8b:57:36:39:d5:b8:c7:aa:79:ab:17:c3:eb:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:18 2022 GMT
Not After : Sep 25 10:00:18 2023 GMT
Subject: CN=4B736D1B20D2C89CFA13008BDA53054FA275A547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:df:ed:b2:80:c7:86:20:f9:37:23:2d:08:a9:
eb:21:49:84:fa:cd:95:05:47:21:4e:36:72:2a:96:
d7:98:be:e1:74:f6:47:2f:f6:91:30:3e:fd:2c:13:
a4:74:22:5d:a4:50:5e:4b:8e:dd:50:6f:ce:98:30:
7a:b0:88:c1:f0:68:10:23:ab:98:81:65:36:8a:3d:
7b:7b:f5:6f:d9:b1:96:97:88:ce:07:34:7b:a8:8b:
f8:be:e4:fe:6e:7e:fb:a0:43:e4:2e:eb:c9:50:da:
f2:72:0a:a2:c7:eb:5e:6a:e2:60:21:80:fd:f9:cf:
18:6d:b1:40:9b:51:a2:7f:09:2e:29:47:22:93:2f:
18:19:16:46:e3:a7:d2:b1:e7:a1:e2:88:78:b3:28:
ac:0c:3e:9a:4b:e3:6d:fa:75:22:aa:16:48:ff:ad:
f5:73:d8:e6:d0:a8:2d:bc:24:19:f1:d2:f5:b3:b0:
1b:72:b7:10:9a:e9:93:42:c2:2f:f6:e1:f8:91:fd:
87:ec:41:a4:85:23:36:15:0e:a5:69:26:f2:e4:b6:
3c:0a:5a:99:5d:e2:49:0e:12:32:56:06:b7:de:8b:
d4:4e:7c:90:ea:71:81:1e:74:48:25:ad:ab:7e:48:
d8:0e:ac:eb:4a:72:bd:d1:d9:f4:44:99:b2:5f:73:
15:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:73:6D:1B:20:D2:C8:9C:FA:13:00:8B:DA:53:05:4F:A2:75:A5:47
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:32d::/48
Signature Algorithm: sha256WithRSAEncryption
82:04:c7:72:74:b7:76:3a:3c:29:c6:3d:a1:1b:b2:51:9c:35:
42:79:de:92:14:52:df:d4:fb:8b:7a:90:85:e4:47:fb:df:c7:
9c:dd:8b:50:6f:e7:ec:50:56:c8:a8:8c:4b:aa:d4:87:57:cf:
64:5c:ad:1a:0f:b2:83:ce:1b:94:44:5a:04:3b:73:21:de:60:
48:0d:52:f5:f9:6a:e9:c1:2e:65:20:db:b8:e7:74:74:ad:76:
d5:07:ba:1f:1c:15:13:7c:41:81:04:ba:de:d1:c8:e8:10:2b:
78:8e:9c:5a:5a:11:67:80:a5:62:86:97:43:8e:59:d8:a6:89:
99:9a:ea:84:ad:a1:37:12:c5:6e:c9:36:19:1a:db:71:bb:fb:
4d:1d:b2:40:26:59:60:3d:fa:f9:15:1e:19:0a:34:ed:c7:c1:
35:d6:04:8e:8d:ec:fc:6e:f6:4a:18:7a:09:a9:a7:51:f9:ba:
c0:d2:30:42:76:22:4e:96:79:43:18:52:a5:5d:65:80:33:6a:
4f:45:e1:c7:f6:c0:51:e4:d8:51:ec:a2:e0:b3:be:29:97:57:
94:b1:28:f9:3e:4f:ff:5d:24:a8:29:bd:61:52:41:3e:7e:f3:
14:2e:26:73:8a:13:01:d1:f5:70:be:07:56:bb:97:c4:b8:b5:
d1:0a:f4:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org