Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: OnozPt3vjVceC4YZPerX3Pc+2Irf1WNvdaPoINUinGQ=
Subject key identifier: 30:B1:3C:6D:1B:E2:5F:2B:F2:56:EC:CC:3A:A1:63:21:BF:F6:56:E1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5AF9DBFF50B03AB0B92D2AD35DEAAF6000D46E3A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:41 +0000
ROA not before: Mon 26 Sep 2022 10:55:41 +0000
ROA not after: Mon 25 Sep 2023 11:00:41 +0000
asID: 59282
IP address blocks: 2400:d680:351::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:f9:db:ff:50:b0:3a:b0:b9:2d:2a:d3:5d:ea:af:60:00:d4:6e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:41 2022 GMT
Not After : Sep 25 11:00:41 2023 GMT
Subject: CN=30B13C6D1BE25F2BF256ECCC3AA16321BFF656E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:6f:d9:36:1a:f9:86:5b:f5:16:4b:18:ee:65:
2a:c2:79:45:9f:11:fe:50:9f:01:af:c0:4b:b0:dd:
5b:87:ac:9f:29:3b:0c:a7:24:80:fd:67:38:4d:53:
e7:a5:cb:46:78:11:45:08:cc:24:81:c4:5d:c1:53:
8e:52:04:a5:38:0e:4d:27:4c:89:10:11:4b:de:17:
44:20:0a:24:78:96:28:26:02:65:75:11:c5:e0:f3:
2e:52:00:5e:dd:3c:03:fc:fc:41:65:f5:41:49:78:
2f:68:b0:d8:6d:d9:92:ba:2e:18:cb:e7:1a:55:21:
a9:af:91:1e:1e:ac:21:dd:01:13:83:8c:fe:5a:c5:
6e:ea:86:9c:1b:a1:f5:61:d9:90:71:77:af:1f:68:
22:53:8a:bb:33:92:31:bf:8e:b4:95:1a:7b:d7:c3:
cb:dd:84:3e:67:dd:34:ec:42:f1:b9:53:0f:91:3b:
55:75:a1:57:2d:41:7a:42:55:ae:54:2d:c0:58:9d:
99:48:ef:25:f5:30:c8:1b:28:44:40:27:ee:93:6a:
9d:1d:39:ac:ce:3a:86:e4:aa:9b:de:b0:f3:0f:e0:
17:90:fa:1b:f5:3f:dc:0e:9d:a9:a2:7d:6e:0b:b0:
1d:48:e6:05:ab:02:7b:29:45:6f:85:62:45:da:9f:
27:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B1:3C:6D:1B:E2:5F:2B:F2:56:EC:CC:3A:A1:63:21:BF:F6:56:E1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:351::/48
Signature Algorithm: sha256WithRSAEncryption
01:7d:fd:f6:81:27:b3:e4:a8:a7:e2:69:69:76:92:c8:43:5f:
50:3f:3e:cb:cf:84:81:4b:c0:56:46:72:78:5b:85:ab:20:af:
d2:94:c2:32:c3:b8:ba:af:95:a7:95:1a:e5:1b:2c:38:bf:3c:
c7:5a:33:ee:74:25:3c:e1:1b:f9:4e:78:0b:c5:83:d6:0e:f1:
14:03:02:24:7a:f3:b9:e0:2b:ae:00:58:aa:61:ca:3c:ec:fd:
36:aa:37:73:f1:71:91:d9:d0:f9:3f:e2:f5:3f:5f:a0:34:0b:
34:69:37:49:6d:07:07:23:75:4f:98:0d:35:1f:92:bc:36:7e:
bd:2d:99:82:d2:e6:a3:95:35:c6:09:0b:99:da:58:0c:b4:8d:
a8:a0:60:f2:1e:f8:b6:54:2a:9d:6c:5f:c2:71:90:45:8f:8e:
e7:d9:2c:8b:3f:04:b5:4a:72:0d:df:7d:60:7e:10:d0:1d:c0:
c9:77:69:09:67:72:52:17:4f:49:3d:dd:eb:53:c3:55:41:f8:
90:75:1b:af:08:d0:8f:a8:77:71:aa:63:53:98:9f:2e:34:d4:
97:09:c7:94:32:d1:39:3f:77:1b:71:fe:50:4c:1a:c7:01:eb:
93:c9:b0:6a:6e:ee:82:03:c6:16:d6:c0:f5:2e:87:93:6c:a6:
a0:c1:76:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org