Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hFDn7EFB7tOphddsisWbtZBLVmhR9L75XHEKLqY+YK8=
Subject key identifier: A6:6B:B2:AD:61:32:CF:81:3E:88:61:F3:CC:89:07:B6:5E:B9:15:70
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 52F444752B32EACFAB33AAA76F9244C0EE9E39D2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:50 +0000
ROA not before: Mon 26 Sep 2022 10:55:50 +0000
ROA not after: Mon 25 Sep 2023 11:00:50 +0000
asID: 59282
IP address blocks: 2400:d680:3d2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:f4:44:75:2b:32:ea:cf:ab:33:aa:a7:6f:92:44:c0:ee:9e:39:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:50 2022 GMT
Not After : Sep 25 11:00:50 2023 GMT
Subject: CN=A66BB2AD6132CF813E8861F3CC8907B65EB91570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7d:be:d0:66:fb:f6:8b:84:42:fc:83:e1:03:
cf:ba:2e:d6:86:eb:18:08:14:f1:58:06:eb:6f:99:
98:c3:4b:e3:e6:33:32:b2:22:08:02:3f:2e:0e:ef:
28:14:32:e5:17:47:d5:b3:27:c8:60:f7:51:e7:67:
a9:a7:5a:1f:1a:54:e7:2c:b6:06:8f:4c:3a:1a:79:
23:9e:fd:3b:a6:46:dc:e1:26:d2:bf:af:24:51:b8:
0b:1c:ff:0d:0e:ff:81:32:56:f8:08:8d:88:9a:26:
b7:eb:f9:f2:cc:89:a1:2d:c0:f9:49:30:f7:71:96:
01:af:cf:71:52:13:ea:41:41:84:1e:75:64:26:d0:
26:13:a0:7f:fa:54:d3:99:a5:46:fb:5b:f4:36:bf:
03:cf:02:22:ad:43:aa:80:55:dd:1b:4e:f7:8b:83:
0a:e2:3f:f1:d0:07:3f:c7:8a:12:b0:88:0d:ad:7f:
bf:7b:cf:68:44:1e:f4:78:e8:cb:6b:13:78:f6:35:
37:ea:86:07:a4:92:ad:95:4c:f4:cc:29:c8:44:a9:
a3:c4:8e:b4:91:8f:9e:73:6b:0b:66:59:1a:3d:11:
d7:0f:bc:2d:8a:a4:5e:fa:8b:23:a6:f6:f5:b7:93:
0d:30:41:20:b2:9e:b1:bb:3c:3a:d2:ae:e0:34:af:
78:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6B:B2:AD:61:32:CF:81:3E:88:61:F3:CC:89:07:B6:5E:B9:15:70
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d2::/48
Signature Algorithm: sha256WithRSAEncryption
4c:e8:38:16:bc:c7:e8:1e:66:6f:73:87:b2:44:ee:92:77:d3:
2b:46:e3:d2:72:7c:e8:62:38:b4:27:c8:7d:c7:fb:0e:61:3c:
41:91:c3:d5:67:7e:bd:f0:70:8a:f8:65:e6:fd:8b:d2:47:e4:
3d:8b:0a:84:3a:7c:77:66:17:48:2d:76:f1:55:5f:92:5e:ee:
00:cb:47:fd:82:a6:91:12:45:92:f8:73:9c:48:be:79:65:8b:
3a:75:af:24:52:d0:e3:8a:4a:fc:cf:40:ae:58:24:11:3f:31:
2e:ad:70:43:08:bb:86:9a:12:9c:fe:1f:a3:e5:8f:4e:e6:b5:
49:84:85:5a:5f:02:6b:32:82:e4:45:e0:fa:67:df:66:a0:f9:
51:a2:8f:a7:83:16:a5:ce:4b:40:a3:31:6f:74:08:1f:57:88:
8b:b1:af:e3:18:06:6a:12:e8:b6:a8:b7:e0:17:eb:62:ab:ae:
d1:c6:28:96:01:73:50:d6:01:e7:f2:25:7e:b8:39:e0:aa:9f:
3c:8b:d4:8d:f5:74:15:36:12:21:c0:79:7a:4c:94:3c:cb:e1:
c1:17:e6:ad:5b:ea:f1:d8:a7:26:a7:69:ef:cd:58:5a:0a:1d:
e8:51:80:d3:d2:b3:10:d7:d0:75:79:c4:75:d4:3d:8a:80:32:
77:66:07:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org