Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TGHs1MbDbLfBvyBv3eXkjuLIyiTFjy/pw+gIKUcsZ3E=
Subject key identifier: A3:0D:31:97:1E:E7:97:0E:08:93:34:7F:71:8D:1F:FF:C8:FA:F9:75
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2C7C7B87F294C46DFB2F7C6908AC28BA10FC3E1B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:42 +0000
ROA not before: Mon 26 Sep 2022 10:55:42 +0000
ROA not after: Mon 25 Sep 2023 11:00:42 +0000
asID: 59282
IP address blocks: 2400:d680:3aa::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:7c:7b:87:f2:94:c4:6d:fb:2f:7c:69:08:ac:28:ba:10:fc:3e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:42 2022 GMT
Not After : Sep 25 11:00:42 2023 GMT
Subject: CN=A30D31971EE7970E0893347F718D1FFFC8FAF975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:3f:70:5e:5c:8c:6c:d2:66:a5:6d:7b:98:
b6:7c:dc:d4:8c:f3:3f:e0:44:d7:30:92:4c:d1:b0:
98:4d:2c:fa:98:02:80:f9:c1:e0:e6:93:18:e6:9c:
a2:81:20:d7:b7:0c:e2:9f:bc:d6:87:b2:fa:ee:01:
d4:c9:eb:af:3f:1e:9f:c8:1b:23:fb:bb:fe:d5:ce:
6e:0e:17:5e:99:ac:25:cf:03:26:b0:a4:ed:b3:ba:
64:45:1a:06:99:ea:d2:f7:cc:a6:68:e2:4d:6e:7d:
4a:48:2c:04:58:40:54:34:c6:21:a7:1a:05:06:72:
6a:00:54:a2:02:29:3c:e4:fd:5d:95:5f:16:78:5c:
32:6e:15:4c:9a:c0:f6:f4:25:b2:fb:7c:fc:d4:da:
a9:ea:73:13:1a:0e:d0:f8:61:a9:fe:94:32:d2:2b:
15:d2:12:93:40:b7:80:33:0b:b4:dd:6c:a1:9d:6a:
66:0c:a9:f8:9e:eb:04:b1:26:f0:7b:4a:c2:92:ef:
ee:80:4f:91:d9:c1:63:08:ab:a6:18:6c:7e:84:67:
50:49:f7:28:ea:d9:ea:5d:6d:8a:ad:2b:6c:2c:23:
6b:ce:5d:5f:47:1c:4b:e3:2e:25:c6:43:fd:67:04:
24:05:6c:44:c1:c5:d6:2f:4d:d7:70:26:4a:6a:e4:
6c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:0D:31:97:1E:E7:97:0E:08:93:34:7F:71:8D:1F:FF:C8:FA:F9:75
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3aa::/48
Signature Algorithm: sha256WithRSAEncryption
3f:b6:fc:11:5e:ee:59:a9:bf:1b:4c:e1:61:c9:f2:7b:c8:61:
27:68:cd:dd:b9:96:ea:4f:b0:10:a3:76:3a:c9:e6:ae:83:d7:
43:6f:a6:67:01:c2:f1:f4:e1:be:8c:9e:f2:4e:4f:f6:ad:68:
98:99:0b:0a:b8:69:a0:3b:48:11:9d:5b:e9:18:c4:5d:6d:d1:
24:13:fc:7b:7e:7d:bf:7b:3b:ba:98:62:bd:6c:fb:e3:02:ea:
bb:23:45:49:a3:7b:e5:ca:95:23:56:95:19:5a:ba:c3:23:41:
9b:94:5f:d0:6a:f3:25:cc:3e:b9:e8:9e:8e:de:25:ca:9e:d0:
2d:a9:46:30:4b:68:0d:54:aa:f2:a3:c1:aa:91:b5:43:49:f6:
68:1d:3b:5b:ae:ec:04:c2:1e:1f:b8:b1:a6:9e:b8:db:a1:5d:
23:7e:ab:fb:b9:d1:36:3b:ac:fa:13:77:87:7d:bd:79:aa:69:
25:1b:87:80:f1:d3:3d:73:43:d1:72:ac:51:b8:e9:16:36:13:
43:07:bc:f1:8b:00:f2:89:ef:69:ed:42:8d:14:6e:aa:4b:fa:
29:37:4c:0f:55:12:f6:35:9e:39:5e:fd:e5:06:7c:50:ee:28:
ca:9a:40:cc:81:b1:92:30:a8:c0:79:66:62:76:c1:de:2f:fa:
67:41:7e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org