Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: T77Upl2CSFtewIt530z0QdNy3eVgoj70vU8pR7hFdCs=
Subject key identifier: A2:0F:A4:FB:3C:69:AD:A0:6A:93:0B:3D:6F:93:AD:7E:46:9D:C7:BD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7F408D0BC7955C891DA8EA5CB5021E5EB3B37697
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:32 +0000
ROA not before: Mon 26 Sep 2022 10:55:32 +0000
ROA not after: Mon 25 Sep 2023 11:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:3dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:40:8d:0b:c7:95:5c:89:1d:a8:ea:5c:b5:02:1e:5e:b3:b3:76:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:32 2022 GMT
Not After : Sep 25 11:00:32 2023 GMT
Subject: CN=A20FA4FB3C69ADA06A930B3D6F93AD7E469DC7BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:07:02:3c:00:26:ad:64:d1:78:96:01:17:
bf:d5:02:ff:63:71:70:33:a1:7f:25:18:33:ef:2c:
57:2d:e9:d4:5c:f9:0a:13:08:92:f2:58:92:ea:9e:
9a:9d:32:ca:63:70:50:52:5e:2a:96:5b:36:e1:79:
4f:83:2a:8e:6c:9e:51:ca:ec:e2:eb:e5:f9:bb:70:
4d:82:81:dc:13:2a:46:3e:7e:5b:f3:53:0a:d6:b7:
1d:fb:6d:73:06:43:0c:54:ab:85:7d:ec:6e:cf:21:
d7:29:e2:24:19:2a:50:f3:95:0a:34:5a:1a:1e:98:
45:25:6d:4a:7c:68:0a:e2:b9:6c:ce:f7:60:2b:b6:
59:cd:4c:74:7b:b6:b9:14:8d:dc:9c:1e:2a:d1:09:
13:e8:5d:0b:e8:67:f6:7c:86:df:a0:5d:ca:b6:bf:
70:bd:ab:07:a1:a4:1c:dd:d8:8a:78:13:35:ed:9e:
19:b3:41:28:33:31:ac:df:dc:02:81:fe:97:18:32:
2f:c0:f5:73:5b:4b:49:3b:c0:88:6f:44:69:05:0d:
e3:b8:c1:86:4d:0e:b4:32:18:23:d9:3e:1e:f2:97:
f3:c6:95:a6:e4:39:c2:7f:f2:f5:12:f5:fe:ea:28:
ba:4e:72:31:da:34:79:49:39:19:12:37:ac:ce:85:
37:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0F:A4:FB:3C:69:AD:A0:6A:93:0B:3D:6F:93:AD:7E:46:9D:C7:BD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3dc::/48
Signature Algorithm: sha256WithRSAEncryption
64:99:00:9c:be:85:7f:5e:18:7c:7a:29:dc:2d:6d:07:48:bc:
71:8e:12:8b:6b:84:98:4e:32:12:a6:c7:f8:4a:15:01:7d:54:
7e:fb:31:63:1e:03:a0:35:e1:93:bf:6f:5f:10:f0:ca:3f:c5:
1e:c4:bb:8b:49:17:ff:fb:b6:4e:fe:79:77:cc:71:84:de:e4:
23:38:86:f1:bb:34:29:ae:6c:9c:d0:17:77:9b:a6:af:34:3a:
13:aa:ee:1e:cf:f4:8e:81:e8:fc:44:c5:ce:54:69:9c:a2:fe:
c1:f6:34:e0:f2:7c:50:08:08:bf:7b:6d:8f:99:f9:75:9f:ba:
76:3d:d0:89:7d:c0:44:25:fe:e6:48:84:02:2b:10:8f:ed:ac:
5b:28:ba:3d:2c:53:fe:62:05:33:78:e5:ed:16:b6:30:38:f6:
03:fe:0f:d0:3c:87:2a:2f:2d:dd:c2:9b:09:fa:76:9f:36:b7:
8e:b3:f3:aa:91:dc:77:2c:02:45:3a:4f:f3:9b:bc:4c:1f:bd:
60:a9:5e:fe:16:23:e5:cf:b3:39:2f:65:60:aa:02:62:65:fa:
a2:9f:b0:c4:8d:9e:1d:a9:a2:63:59:2b:2d:be:fd:a3:e5:58:
de:65:a3:3a:00:43:2b:22:84:10:0c:ab:c6:6a:70:f6:f0:02:
0f:08:06:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org