Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dDP1b3/oS+K2VJHsTKuOgUfIpiTejKiBaa2Ry0b7I7k=
Subject key identifier: 30:C6:D0:E3:CB:C6:BD:7A:74:AA:13:55:01:AF:9E:4A:E7:10:98:3F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1A20F0727953289AFDC46E31A04C74B0F5E16173
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:3ce::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:20:f0:72:79:53:28:9a:fd:c4:6e:31:a0:4c:74:b0:f5:e1:61:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=30C6D0E3CBC6BD7A74AA135501AF9E4AE710983F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:33:ee:64:a0:6b:1f:64:a2:9f:3d:68:23:6d:
91:34:72:f5:8e:44:6c:bd:19:3a:ba:62:8b:c7:13:
57:2d:1a:b9:b6:7e:39:7e:73:92:a5:ae:0e:47:fe:
eb:9c:87:ab:95:f8:6c:2f:7c:19:58:7f:e0:9b:ad:
c3:9b:af:3f:c2:1e:b0:fb:99:26:14:23:86:cd:7c:
8a:3f:68:c6:84:cb:79:ba:b4:a7:51:57:7d:62:00:
35:25:77:06:c1:53:2c:33:19:5b:c3:34:ff:60:54:
53:bc:91:3e:ea:52:f0:dd:d1:29:7b:53:8f:a6:11:
4b:aa:c3:7c:d8:0b:48:4a:b4:49:f8:33:e9:89:0f:
8c:01:e9:dd:09:5c:e7:1e:f1:04:bc:3f:36:dc:57:
3f:87:c7:dd:0a:7c:0d:3d:97:76:d8:5d:c5:58:e2:
b5:6c:a7:8c:66:17:52:20:a8:96:02:4c:53:f5:ee:
02:64:80:c4:f7:f0:59:37:18:ef:07:b8:17:bc:33:
53:4d:5f:da:ca:f3:0b:f0:7c:c8:20:4b:97:b5:27:
55:89:01:66:dd:1f:5a:86:2d:e7:8b:f3:c5:00:01:
1a:95:93:f9:5d:72:f9:39:74:93:97:b3:50:c9:72:
82:76:2d:72:f4:97:d7:78:ce:90:ea:96:7e:51:55:
bd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C6:D0:E3:CB:C6:BD:7A:74:AA:13:55:01:AF:9E:4A:E7:10:98:3F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ce::/48
Signature Algorithm: sha256WithRSAEncryption
52:53:02:74:4a:78:4e:71:cc:c9:14:e6:46:6c:32:db:75:6d:
11:3d:43:8b:40:52:5a:86:32:fe:c7:10:29:cb:97:f1:a1:78:
b6:3a:0b:b4:09:46:9a:be:9a:8b:58:61:f1:56:33:88:e4:2b:
be:66:89:3a:0f:d2:34:35:2f:7a:67:87:71:de:93:dd:1b:cc:
dc:83:52:0b:1a:75:a8:85:bb:f8:10:52:63:d4:e7:4b:51:89:
a7:e1:42:a8:a4:71:b7:13:11:ee:38:62:16:00:54:34:76:65:
49:b1:f9:80:a2:de:72:f0:df:ad:07:89:42:25:49:3f:1b:3b:
3f:b5:1a:30:c0:f4:c5:a4:0d:88:09:7c:b7:cc:b1:09:a2:d6:
b9:6d:5a:4b:ec:e4:5a:9c:02:d5:27:4e:a9:cb:43:51:72:94:
b2:65:af:43:fb:ce:a7:0e:f0:a5:f2:3f:ab:87:68:1b:79:70:
6f:48:57:ea:b2:19:c2:9e:29:24:82:f8:ac:ca:d6:31:48:06:
9a:c9:89:ef:cc:f7:fc:5d:6d:84:1d:ff:c5:25:2a:66:3c:aa:
49:17:61:e2:cf:ce:4a:63:3c:43:c3:ea:78:ce:dd:41:fe:c5:
32:20:e9:81:eb:a2:98:73:ab:72:3b:63:37:24:dc:f6:ad:ff:
5e:37:de:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org