Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rsLU/grJpBKKn/7RF8q1FtR234lVUblK+FWk5h9M/Ko=
Subject key identifier: CA:A1:27:CC:DA:F7:7D:67:CB:2C:CA:2A:22:55:F7:C7:F9:C1:F9:3C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 19AC86E1DA4776536AA4EF602060654A6BBD799C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:34 +0000
ROA not before: Mon 26 Sep 2022 10:55:34 +0000
ROA not after: Mon 25 Sep 2023 11:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:392::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:ac:86:e1:da:47:76:53:6a:a4:ef:60:20:60:65:4a:6b:bd:79:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:34 2022 GMT
Not After : Sep 25 11:00:34 2023 GMT
Subject: CN=CAA127CCDAF77D67CB2CCA2A2255F7C7F9C1F93C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ea:fa:3c:21:36:05:0e:21:21:f7:26:10:11:
fc:19:80:bd:fa:68:d6:1a:1a:a1:ee:6a:c5:03:f7:
2d:4c:4a:4a:33:26:a7:49:b5:5f:8d:5c:35:84:d0:
f6:25:80:0b:ac:05:19:66:b9:c9:66:85:ca:46:ab:
9b:00:57:93:ea:01:96:c6:03:85:79:2a:41:3f:be:
76:24:cb:11:54:f9:b7:cb:c2:cd:cc:b8:a6:cf:ab:
25:22:69:d0:ae:ad:5e:c6:1a:a0:c3:48:51:33:ef:
f6:27:01:74:5b:88:97:85:a9:cc:d1:46:32:3a:1e:
72:55:04:56:08:f4:7f:fb:8d:58:1f:8f:59:ba:9f:
b8:b2:12:92:8a:b5:53:f0:08:d4:fa:db:9e:8b:fa:
15:ba:9f:b2:2d:a8:ef:86:27:99:c6:c4:0e:20:7a:
75:93:f5:8a:70:79:6b:a2:a8:c1:80:50:e4:6f:8b:
ad:76:12:37:75:30:8e:5a:6c:32:c0:e7:65:6d:51:
d3:ee:4b:22:90:29:a3:61:b8:e6:af:6a:02:d9:a0:
06:f8:a8:f7:4e:a6:e7:e5:07:ee:9b:43:ec:73:40:
c0:c7:08:0e:19:1a:94:9b:e2:e6:2a:54:6c:48:4a:
b6:76:97:41:1b:ed:f5:21:09:9d:1c:67:e2:73:d7:
01:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A1:27:CC:DA:F7:7D:67:CB:2C:CA:2A:22:55:F7:C7:F9:C1:F9:3C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:392::/48
Signature Algorithm: sha256WithRSAEncryption
62:26:6f:0c:0d:4b:06:7c:3f:4e:d3:9b:7f:47:06:c3:d6:95:
f5:1d:51:32:07:4d:a9:4a:54:36:b5:27:65:e9:d1:cc:f5:f3:
e1:f3:87:08:28:65:58:f9:0b:2d:d3:c5:3b:d7:5c:f4:11:8f:
56:ad:29:2c:e4:be:4e:22:c4:8a:d1:09:44:3a:35:15:35:f2:
cd:7c:0c:cc:40:80:87:ec:d9:f9:94:03:cd:71:83:46:93:31:
78:48:dd:5e:41:9b:e3:53:5e:cf:8b:df:9e:39:cb:35:f7:0f:
9a:ef:83:6c:71:fd:dd:9a:c8:1b:ff:22:f6:7a:80:bd:5f:7e:
8a:fb:f9:fb:c0:49:cf:d3:44:dc:42:b7:96:4e:82:4d:8e:cc:
0d:3c:84:39:42:d0:e8:fa:f9:98:77:c7:cf:83:fa:4b:4e:ec:
43:e0:34:21:a5:42:91:97:77:c3:a9:aa:33:b7:03:2b:1a:f9:
84:7f:8c:35:c4:73:fc:ff:3e:6e:77:26:cf:f5:a4:26:ff:26:
96:a8:95:72:41:e4:0d:7f:54:65:bf:d2:29:4f:8e:48:03:0c:
68:e6:91:4b:0a:0b:26:53:f7:49:48:19:c6:af:d1:07:3e:1f:
1f:81:ca:cb:79:1a:49:c8:aa:60:51:5b:8a:23:39:80:f7:84:
0f:73:5b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org