Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 61pCsqAjenPZAxypcxjMrlwFhubyGRMQn7bk3xKbPlY=
Subject key identifier: 95:1A:26:F8:C2:7D:D0:90:D8:A6:E2:7B:3A:B7:F1:C8:66:CB:4D:75
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0D82F8CE893DFFE85F34531BBE9C8B5D04BB4501
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:24 +0000
ROA not before: Mon 26 Sep 2022 10:55:24 +0000
ROA not after: Mon 25 Sep 2023 11:00:24 +0000
asID: 59282
IP address blocks: 2400:d680:3d9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:82:f8:ce:89:3d:ff:e8:5f:34:53:1b:be:9c:8b:5d:04:bb:45:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:24 2022 GMT
Not After : Sep 25 11:00:24 2023 GMT
Subject: CN=951A26F8C27DD090D8A6E27B3AB7F1C866CB4D75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cb:33:83:9d:6e:a2:3e:43:f8:46:3d:ce:84:
97:60:d0:7a:fd:75:ea:e1:a4:39:bd:ee:4b:ab:8a:
da:27:ed:33:76:8a:d6:bb:b6:07:d5:81:02:ba:87:
b0:31:02:c2:5e:d4:df:28:09:09:83:d4:40:f7:71:
e2:12:33:2f:36:28:28:65:00:10:c0:eb:b3:84:c6:
57:42:3e:42:66:96:e2:dc:26:ee:15:31:b3:a2:90:
e6:1d:13:d2:f9:42:a8:9e:c2:79:9a:da:ea:51:af:
e2:65:80:f6:98:fb:5e:97:93:5c:47:a7:bc:7c:a3:
86:42:6e:fb:19:82:b6:60:76:69:51:2d:15:3e:54:
7f:37:3d:f5:c0:23:8b:70:c7:23:20:dd:d2:a5:0f:
22:f9:e5:52:32:16:8c:c1:30:96:7b:58:b7:3f:87:
99:24:e6:5f:c9:8b:b5:72:18:10:de:03:03:8a:ba:
de:a9:0e:21:ff:ad:4a:a3:f0:d1:21:22:5e:71:67:
26:3a:7a:f6:e5:6f:e4:46:4b:9c:3c:01:02:8e:a8:
24:49:56:39:e7:ae:25:bd:1c:ce:e4:20:f8:9d:7e:
d5:54:f2:d2:f1:2e:0f:30:26:49:25:da:79:6c:f8:
3c:c9:36:fc:9b:7a:5f:7a:6e:36:f7:df:11:fa:42:
81:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1A:26:F8:C2:7D:D0:90:D8:A6:E2:7B:3A:B7:F1:C8:66:CB:4D:75
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d9::/48
Signature Algorithm: sha256WithRSAEncryption
a5:4b:63:02:d3:41:91:bb:1d:ec:6d:fe:3e:8c:76:c3:fa:26:
18:61:33:f5:c1:47:4e:b6:0d:7d:df:8d:80:ed:6e:b4:6b:f1:
e0:7d:61:6b:04:46:84:4d:a8:b1:e5:fc:1e:b3:09:cf:de:50:
78:4f:bc:53:99:c4:f9:1d:f6:e1:fa:da:73:e2:33:10:23:61:
d3:45:c6:aa:c4:72:cb:78:64:0d:2b:e0:79:5b:1b:a6:b6:2f:
31:73:2c:ad:7a:8b:49:75:af:b4:81:c2:5e:fa:66:05:c1:15:
c6:29:1e:c7:db:72:59:c9:2b:04:f8:ba:e0:9b:bc:01:14:17:
af:23:31:df:1a:5b:d2:af:75:76:5a:99:7c:4d:3e:81:90:7e:
d4:c1:05:fd:5a:b7:b3:2d:85:eb:56:93:06:2e:09:e8:58:6a:
6b:ba:59:04:42:83:65:f6:54:ae:08:ef:26:d3:b6:9f:3d:81:
6c:84:bc:dd:fc:36:e7:29:6f:81:9d:30:b4:ad:05:21:18:03:
0a:3e:5d:f2:8f:c3:9a:81:e6:02:d6:32:f6:fc:02:5f:f4:d6:
a8:09:5f:66:d0:32:f5:86:8a:02:f0:e5:69:ae:24:5f:1e:d3:
28:39:93:6f:5f:1e:29:13:1f:55:13:e7:75:3e:d4:ca:77:46:
56:3a:cb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org