Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2nC7kOCK+qYJabnGilrdXZ503z8GNQmtIuOrvdJ7Tqc=
Subject key identifier: CB:C7:7D:7D:48:D1:F7:C3:AB:76:DD:DB:F9:7E:07:42:E4:FB:3A:C0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6160DA88A745B4A490869229A075E26B4CEB3261
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:33 +0000
ROA not before: Mon 26 Sep 2022 10:55:33 +0000
ROA not after: Mon 25 Sep 2023 11:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:381::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:60:da:88:a7:45:b4:a4:90:86:92:29:a0:75:e2:6b:4c:eb:32:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:33 2022 GMT
Not After : Sep 25 11:00:33 2023 GMT
Subject: CN=CBC77D7D48D1F7C3AB76DDDBF97E0742E4FB3AC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3e:30:7c:ac:33:9b:1c:a6:d1:9f:61:e0:b3:
4c:13:c7:ff:c8:4b:bd:95:eb:ba:3b:04:fb:9c:a0:
f0:65:24:a4:5c:b4:5e:4b:a9:31:25:82:db:b3:f3:
fe:3a:69:ea:02:a9:51:60:2d:e6:7c:68:da:a1:09:
33:e2:57:18:1e:7e:b3:bd:ec:36:90:8c:9a:c9:b6:
b7:fb:16:ac:8f:50:50:7f:a9:a0:c7:43:a5:35:8c:
ed:9e:47:f5:44:bb:85:7d:e9:23:e0:8e:a5:16:84:
d5:99:00:80:0d:c8:0d:75:90:86:50:09:1f:ec:51:
ff:6b:61:6e:89:e9:27:c9:c5:94:27:a7:50:f0:97:
ee:b8:fc:96:06:c9:5b:74:12:ac:19:a8:29:85:b0:
09:e4:72:2b:50:88:86:ef:ed:fb:3c:68:ac:58:16:
1a:c2:f4:97:d7:86:37:91:c5:cf:f9:96:94:cf:04:
32:72:b0:8a:29:c6:80:ba:8f:c0:d0:7c:d1:b9:78:
94:4e:63:e6:92:ce:8a:4c:ca:f1:2f:1f:5b:6d:f0:
56:3c:f9:5b:37:ee:a7:a8:86:9c:e9:d0:0f:5d:be:
4f:d1:24:02:95:df:85:ac:3e:13:2e:22:49:3f:ad:
b5:7e:37:05:70:98:6c:f8:9b:e7:9a:7f:c1:dc:de:
37:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C7:7D:7D:48:D1:F7:C3:AB:76:DD:DB:F9:7E:07:42:E4:FB:3A:C0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:381::/48
Signature Algorithm: sha256WithRSAEncryption
c1:71:e7:ea:c8:b3:cd:29:45:bd:66:01:81:ae:72:30:36:1e:
37:4e:3d:46:99:1c:89:37:0d:5f:67:b9:7b:1f:56:3b:bf:56:
7e:09:a7:39:07:92:2e:a5:e8:c6:4b:a8:ab:14:8e:81:2d:35:
cb:4b:77:8c:36:10:db:ea:48:9e:9e:f7:0c:90:15:59:eb:19:
46:b5:84:43:6b:fd:d5:2a:fa:3e:5d:ef:df:d6:1a:bc:91:14:
57:a6:85:4b:19:23:e6:84:5c:b8:93:f0:4f:15:15:d5:6d:d0:
b9:10:c1:1d:06:f8:70:3b:91:12:1a:9d:b2:66:b0:e7:26:b9:
92:c5:07:d9:89:03:7e:c1:99:14:d8:3d:87:8c:b2:cc:6b:5a:
68:75:28:f4:37:fa:b7:f5:5c:8b:87:67:4e:1c:d4:ef:1c:0d:
80:70:57:9c:93:5a:81:22:80:fb:be:fc:d9:87:46:0c:fd:4b:
bb:17:ff:9c:e2:ff:bb:85:3a:61:64:39:af:e3:a7:ee:34:d6:
7f:1c:d1:98:ef:15:63:4f:36:4e:cc:39:64:28:9b:dd:fc:c0:
6f:0f:36:47:5c:49:95:6a:39:0f:ba:86:d9:72:b6:e4:14:40:
a1:4e:df:8f:71:d6:67:1c:85:16:06:41:2b:d4:65:71:51:2a:
6c:ce:23:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org