Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Usprm7+A5o0ecu/p10pUmELK8wwmY7Au01bVs786NLo=
Subject key identifier: 4F:46:86:EA:84:8E:8D:14:EC:F6:00:4B:07:06:7B:0C:90:BB:51:59
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0B6BE8474C5FDB52A60628F227A2032DDD3E0EA2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:44 +0000
ROA not before: Mon 26 Sep 2022 10:55:44 +0000
ROA not after: Mon 25 Sep 2023 11:00:44 +0000
asID: 59282
IP address blocks: 2400:d680:374::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:6b:e8:47:4c:5f:db:52:a6:06:28:f2:27:a2:03:2d:dd:3e:0e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:44 2022 GMT
Not After : Sep 25 11:00:44 2023 GMT
Subject: CN=4F4686EA848E8D14ECF6004B07067B0C90BB5159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b8:8b:8f:97:73:63:43:b2:1a:37:88:d5:bf:
fd:75:05:df:53:fa:47:6c:02:f8:fe:3e:67:c4:71:
dd:90:91:3f:b5:8a:af:72:f3:15:e0:74:d7:ca:28:
80:fc:a8:b7:4a:37:49:b2:c0:cc:db:a7:eb:24:08:
0c:4b:73:33:4e:88:10:a7:81:4b:c0:0d:14:09:60:
65:df:8f:e4:fa:99:0b:35:3b:f2:f4:19:39:1c:eb:
2c:00:a8:cf:af:37:2e:5b:21:3f:b3:5f:69:1d:0c:
53:f8:51:ad:fe:0d:b4:ae:b0:39:32:cf:f1:03:9b:
1d:bc:01:56:21:df:b4:c0:3a:3e:54:4c:73:78:c5:
c4:0f:a7:86:3a:ea:7d:a4:28:4d:c1:dc:cb:3a:95:
e9:de:17:57:73:6b:59:b2:1c:c1:df:12:c1:f0:33:
4b:2d:fb:3e:76:16:77:fe:96:30:39:a6:78:39:60:
b7:4e:7d:51:fe:41:47:0c:84:75:2a:84:3f:c9:80:
04:be:8d:a8:93:76:9e:86:c9:4a:9c:32:1c:67:bc:
c3:4b:5b:fc:02:f1:59:35:0a:55:f8:16:1b:47:6d:
45:34:56:7c:de:29:ce:75:77:0c:0f:5d:9a:a7:27:
7f:a6:e2:ab:98:96:60:0f:61:e1:ae:08:53:2d:d9:
9c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:46:86:EA:84:8E:8D:14:EC:F6:00:4B:07:06:7B:0C:90:BB:51:59
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:374::/48
Signature Algorithm: sha256WithRSAEncryption
b5:cd:da:bd:75:5b:d4:51:11:f9:44:8c:02:4b:60:5b:50:d0:
e6:e7:c7:7e:16:c1:2b:7c:3a:18:ad:73:eb:c0:03:c1:28:eb:
08:81:d5:71:28:13:c1:59:71:5e:c0:35:03:34:2e:b3:15:0e:
53:95:30:15:c1:07:d4:e3:5c:a2:33:3c:b5:0a:d5:7e:cb:1e:
5c:9e:8b:a0:da:c2:bf:d8:9b:b7:13:46:19:1d:c6:a8:4d:ae:
b3:2d:fd:a9:6b:53:08:ae:04:8d:0d:4e:29:64:c1:e8:cb:0d:
ec:98:1c:28:fc:f1:84:df:76:a0:b9:10:c5:98:4a:53:eb:3d:
2b:db:22:ac:76:8e:13:d8:d5:da:07:a9:5d:78:45:74:48:d6:
89:d0:19:24:0a:02:6e:37:29:ab:1f:69:ce:f8:96:4a:75:6b:
ce:61:0b:cb:a1:8e:5c:9a:5b:81:75:8b:4b:de:bf:5c:00:6f:
c0:09:61:7f:2f:1a:65:a8:6c:eb:fb:e3:8d:ad:08:d0:3f:67:
21:54:49:64:89:00:de:6c:84:93:e5:a0:e4:ab:34:ff:bf:44:
84:5a:85:26:8c:9b:fa:8c:94:80:82:ed:9d:f7:bc:f5:a1:a3:
e0:85:86:9b:70:58:56:d1:63:d9:83:a8:ff:73:b0:29:c1:21:
11:8f:dd:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org