Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Z/IE/hHN9GxCQiB04qc6hM1k/MPAlBDGyScZuA+Ke9E=
Subject key identifier: 03:DF:E7:20:D6:B9:B2:9F:60:4A:47:DC:D4:A1:15:0D:63:5E:4D:82
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 68BA68596533C71772617AD5BA9E5A37E9CAF4FC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:33 +0000
ROA not before: Mon 26 Sep 2022 10:55:33 +0000
ROA not after: Mon 25 Sep 2023 11:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:3dd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:ba:68:59:65:33:c7:17:72:61:7a:d5:ba:9e:5a:37:e9:ca:f4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:33 2022 GMT
Not After : Sep 25 11:00:33 2023 GMT
Subject: CN=03DFE720D6B9B29F604A47DCD4A1150D635E4D82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:11:8a:31:9a:ec:c1:dc:20:ba:7e:7b:f8:e9:
11:ff:d3:58:f3:da:15:e6:3d:41:b8:1d:c2:e8:68:
48:ba:91:fc:26:8d:68:7c:4d:84:ca:16:ef:45:df:
b7:60:5a:84:a6:ba:35:d2:90:b6:27:0d:46:bd:02:
41:55:d9:f4:b3:76:5a:05:4a:8a:0b:0a:08:22:09:
bc:69:ed:a0:27:ed:8e:a9:59:16:27:82:68:ed:c0:
ee:8b:f8:9f:68:ca:fc:d3:2c:2a:a9:f6:a4:4f:b5:
dc:31:55:1f:fe:c2:48:18:f0:f1:f4:47:12:ad:37:
23:78:23:df:c2:19:26:de:8d:d1:6a:c4:7f:b2:d4:
a1:60:85:e6:70:dd:71:07:75:1d:12:96:03:a3:ab:
60:85:57:9a:ea:a2:e5:f6:58:65:d6:01:da:ff:65:
3a:8f:ae:07:1f:29:eb:2e:21:99:80:f5:ee:56:2a:
fa:dc:8f:42:f1:24:27:7b:89:25:62:65:19:81:7c:
5b:3d:80:10:43:ce:f4:57:03:c3:cc:d5:b1:d9:4f:
f0:26:46:01:a3:4a:31:fc:53:ed:1d:0a:c5:78:24:
23:8b:5a:61:42:cf:58:dc:d4:d8:a6:e4:81:4d:75:
6e:1c:0e:94:a1:06:33:d5:fd:3f:da:c9:4d:45:3c:
5a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DF:E7:20:D6:B9:B2:9F:60:4A:47:DC:D4:A1:15:0D:63:5E:4D:82
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3dd::/48
Signature Algorithm: sha256WithRSAEncryption
88:93:cc:14:26:e6:4b:35:b2:cc:d8:1c:df:92:44:33:5a:7f:
4b:5f:16:d9:92:38:ea:58:5e:58:fd:7a:86:cd:1b:b7:02:ae:
fa:5c:92:c8:69:e0:ab:03:df:c5:58:c7:d5:ad:f6:80:68:80:
0c:fd:ff:df:de:59:c8:80:1f:cc:53:3e:7f:af:76:35:37:e7:
74:99:f1:9e:d4:43:ac:af:ea:52:ea:47:82:c9:dd:2e:33:02:
b5:94:8b:7c:ad:f1:db:59:d1:d0:15:4d:9a:02:71:1f:de:91:
42:a2:c1:58:02:60:41:aa:a0:84:fe:e1:8e:44:bc:1d:79:0b:
89:06:9f:eb:ac:fa:c9:ae:1f:cc:27:9e:64:e9:e4:fb:d6:d8:
79:13:08:3a:f5:fa:8b:ef:97:e8:5e:ac:35:93:c9:e2:3d:9f:
a5:cb:c3:69:3a:4b:a9:ee:80:d2:07:53:a7:05:72:80:83:5a:
14:78:3d:60:d5:43:ae:0a:57:65:6d:53:1c:bc:32:ca:df:2e:
63:c1:85:ec:72:ad:8a:16:b6:61:1a:51:71:9e:73:d3:fc:f7:
f7:ea:4b:ba:f1:ce:fe:eb:48:a1:5a:2f:93:d3:d2:1d:57:d7:
1d:8e:d1:20:83:17:44:5e:fe:27:18:a1:19:c5:5a:60:66:52:
e1:cc:2b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org