Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: QzbyNZecgLYgbpWvNlsiVc9HXxRCU6Mwm+GXD8K1kw8=
Subject key identifier: 8D:FC:CD:08:4B:96:67:F4:DF:1B:C0:40:C7:28:85:F0:CD:C8:C6:F9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0B4917F172B83710C5DA91141E838BEC389FA253
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:23 +0000
ROA not before: Mon 26 Sep 2022 10:55:23 +0000
ROA not after: Mon 25 Sep 2023 11:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:342::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:49:17:f1:72:b8:37:10:c5:da:91:14:1e:83:8b:ec:38:9f:a2:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:23 2022 GMT
Not After : Sep 25 11:00:23 2023 GMT
Subject: CN=8DFCCD084B9667F4DF1BC040C72885F0CDC8C6F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2d:e5:e2:33:39:5a:7c:44:fd:76:28:54:2b:
fe:5d:59:5d:42:dc:c3:ec:20:00:45:b9:b3:34:8b:
87:47:d5:b4:e4:45:b5:6e:17:2e:01:63:a7:b4:f0:
aa:c2:b8:07:8a:61:b7:63:a5:b4:18:e3:9e:23:4e:
f0:63:e9:db:b3:a9:50:4b:27:d4:73:36:49:82:6e:
34:fa:79:60:b3:ed:24:85:eb:13:0f:49:47:62:b6:
a6:c7:c5:12:2b:79:20:f7:dd:da:56:55:67:91:b2:
2f:ac:24:b8:5f:38:d3:1e:b7:2f:4e:8f:1c:6a:83:
80:b9:b9:3d:79:96:f2:1d:f3:86:7b:10:cc:c0:4e:
2b:30:f7:ac:90:21:f7:e8:5e:a5:1d:54:25:67:20:
6d:70:1e:aa:63:17:7f:c4:c2:e1:ca:17:ec:b5:f3:
9e:e6:69:a6:dc:e1:8b:66:f5:77:b2:6b:9d:37:93:
ce:36:6d:bb:8d:14:5b:f0:2d:a4:f1:14:ea:83:6d:
b6:38:9e:e8:a9:da:62:20:c8:f0:00:56:b1:d8:fb:
b3:d9:98:ee:db:78:d1:b7:13:2a:5e:20:2a:3b:f3:
cc:6a:5f:2d:f9:80:d0:87:ad:be:71:22:d6:4e:c0:
e8:36:a5:96:80:41:d0:a7:32:12:a1:43:e0:20:3b:
74:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FC:CD:08:4B:96:67:F4:DF:1B:C0:40:C7:28:85:F0:CD:C8:C6:F9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:342::/48
Signature Algorithm: sha256WithRSAEncryption
8d:e9:ac:6c:3f:6a:8e:3c:c9:fe:2d:12:a9:e5:09:a6:aa:ca:
2b:d5:1a:03:74:04:ab:d2:ca:ad:47:18:8c:31:d2:1d:95:9a:
5a:36:39:1e:61:39:1d:0a:5f:3b:3e:ec:bc:36:ca:52:ca:d1:
a9:d7:71:bb:84:97:a2:0d:d3:d8:3b:4e:2c:50:35:a1:46:df:
8c:71:2f:70:c9:47:a6:5d:f6:2b:33:98:f6:f5:86:8d:e0:56:
dd:30:a2:97:63:b5:78:db:7e:c5:f7:f0:62:cc:a3:45:4c:1e:
4d:de:04:63:af:b4:09:80:ad:6c:04:de:35:38:2d:ef:51:23:
4d:88:0e:c4:b1:51:b4:02:48:4c:bf:a0:2d:64:27:b1:ac:31:
9c:06:64:04:2c:69:f8:a7:35:57:f2:74:0e:36:cd:58:b9:5c:
54:ea:6e:7a:28:f5:cf:aa:03:c2:9d:cd:5c:26:a2:60:ff:12:
2b:62:d0:d7:fa:53:5c:93:3d:05:b3:43:82:48:08:d8:2a:7b:
a1:b6:04:bf:0c:f6:43:b9:7e:f8:02:8f:0b:34:0e:00:a9:5e:
81:c0:e6:ee:fa:21:04:13:b5:05:96:e9:5f:55:45:5a:c8:93:
30:9d:f7:9e:5c:9b:12:e1:5e:0c:67:f7:f4:94:f1:76:23:df:
28:9a:e9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org