Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: DkSLbqFzglFYVZxbWHtsD37yw+Uzn1kx0VWvfKbWxbU=
Subject key identifier: 24:95:53:25:A5:58:FA:05:34:3E:42:A5:D4:C9:DB:91:51:F9:C6:05
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6195F23BAB263622E3D86375593AD502CF7D6755
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:28 +0000
ROA not before: Mon 26 Sep 2022 10:55:28 +0000
ROA not after: Mon 25 Sep 2023 11:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:354::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:95:f2:3b:ab:26:36:22:e3:d8:63:75:59:3a:d5:02:cf:7d:67:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:28 2022 GMT
Not After : Sep 25 11:00:28 2023 GMT
Subject: CN=24955325A558FA05343E42A5D4C9DB9151F9C605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1d:3f:de:12:13:4a:52:d2:7d:72:b3:09:f8:
d0:cb:61:b2:b4:94:50:d5:4d:39:21:7d:51:bc:00:
31:34:67:6a:5e:10:48:00:91:b9:14:a2:31:1f:44:
d1:44:37:e1:9f:7f:73:a5:89:e3:9f:b2:c9:8f:2a:
67:22:c5:2e:92:e3:4f:50:34:71:89:ed:a1:04:4f:
ad:26:9b:1b:1c:6c:1b:e4:d7:77:67:4d:ea:08:81:
53:5a:1e:c0:e7:0a:ed:4b:e1:42:97:b0:e6:c2:d9:
12:aa:d8:57:5a:58:01:1d:7f:5c:5e:53:09:1e:7e:
61:9f:c9:30:8d:1b:47:c8:c3:53:0f:bb:eb:ef:ba:
75:28:90:d7:59:9c:1d:2b:e9:45:ff:06:8d:0b:53:
f6:dd:f2:94:99:f5:cf:6c:24:99:ea:a0:86:bc:2a:
65:5d:df:23:74:71:81:e7:04:a6:fb:be:75:16:2e:
99:9b:81:23:d5:54:42:58:91:f1:f4:27:41:94:f9:
e0:d8:22:ab:3f:c7:f3:30:82:9a:d9:b8:67:3b:f8:
0e:64:2f:20:16:b8:fd:52:b0:a5:32:11:74:39:b7:
d4:3f:52:17:dd:61:c2:11:3f:0c:bf:b1:06:f0:0b:
a3:92:29:89:c6:ee:5d:d9:1d:a9:7a:ee:77:f7:bd:
5d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:95:53:25:A5:58:FA:05:34:3E:42:A5:D4:C9:DB:91:51:F9:C6:05
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:354::/48
Signature Algorithm: sha256WithRSAEncryption
0c:1c:11:08:1d:e0:e3:fa:d7:e7:22:a2:2d:c1:3d:cc:40:3e:
27:40:ac:89:af:f6:0a:c2:8f:fd:9e:d5:57:2a:43:a9:f9:94:
82:30:6b:c4:a4:a7:ba:de:bd:13:cb:89:be:d9:51:77:67:50:
16:19:9c:79:49:53:8e:ef:df:3a:1c:ee:69:61:d2:60:a7:e3:
e1:e8:6a:b7:77:4f:ce:6b:ad:3b:98:ad:fa:c2:ca:b5:79:c1:
75:a9:b0:eb:68:2b:70:d8:ea:a3:d4:f0:8d:62:ee:00:0e:b3:
0b:58:77:58:9f:29:6c:c6:37:82:ff:16:b9:5d:46:47:c2:a3:
d8:88:76:de:52:99:0f:6e:46:a9:07:46:0a:66:77:b7:2f:3a:
88:5a:99:e6:78:79:d9:c9:74:25:26:18:7d:69:13:24:05:9d:
e0:ab:2a:ea:9e:b7:f3:2f:37:39:e5:4a:2e:da:0c:c8:18:c9:
c1:67:aa:49:7e:fa:af:2a:91:8f:93:00:5e:c5:74:02:5a:19:
ab:4d:a0:65:80:e1:4b:76:6a:e0:6f:29:f4:66:58:9b:a2:b2:
8c:9a:aa:eb:62:af:83:3e:9c:2c:99:cd:cd:30:8e:41:02:04:
2b:ef:83:aa:ee:51:0f:cc:a4:90:14:1b:98:87:c7:bc:41:eb:
8d:16:86:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org