Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: pcLIT/7qepLmnyNqCPry+T4o76fCfokvnSOEayxIO+o=
Subject key identifier: D1:10:51:2A:E6:2B:EF:A6:44:22:B5:98:06:1A:20:5E:42:8D:F6:2D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6AEC1F43E5936DD4FA4BD4F1B669401CCF5CCC46
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:36 +0000
ROA not before: Mon 26 Sep 2022 10:55:36 +0000
ROA not after: Mon 25 Sep 2023 11:00:36 +0000
asID: 59282
IP address blocks: 2400:d680:3df::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:ec:1f:43:e5:93:6d:d4:fa:4b:d4:f1:b6:69:40:1c:cf:5c:cc:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:36 2022 GMT
Not After : Sep 25 11:00:36 2023 GMT
Subject: CN=D110512AE62BEFA64422B598061A205E428DF62D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b6:54:7b:6a:7d:bf:d2:c4:7d:94:1b:98:02:
f7:34:28:80:d9:55:da:fd:1a:73:8e:90:49:f6:79:
bf:b9:60:41:fe:07:36:90:88:41:9d:e0:55:9d:01:
f2:d6:f5:73:77:d0:6c:b3:af:df:9c:02:e3:23:70:
ec:86:2f:ad:b1:d2:a2:2e:d4:81:2c:6d:76:ef:0a:
3c:ea:a6:93:d5:da:a3:d5:cc:43:cc:0b:d1:db:7d:
98:4d:1a:8a:d3:d7:e0:7e:88:65:e7:cc:c3:60:53:
99:76:38:b2:19:95:9c:a6:9c:85:68:7e:a7:d1:a2:
cb:0b:95:cb:58:9b:df:95:89:9e:0b:e6:5e:6b:40:
19:cc:96:aa:94:ef:86:9e:f3:5f:71:6c:6f:df:ad:
8b:74:37:3d:e7:c4:86:97:e6:a0:86:0e:54:bd:6a:
df:42:1f:cf:e1:60:8b:0b:e9:40:36:88:76:76:b7:
80:f5:2e:96:a7:01:b2:94:57:7e:3e:f6:2d:dd:f6:
e2:e8:34:ab:d3:95:e7:ba:0d:52:61:3a:b1:a0:5e:
ff:ab:29:54:b3:c2:eb:94:8a:f1:75:c0:f8:9c:6f:
ac:63:1a:61:aa:7e:89:38:3a:75:76:2e:b7:a9:72:
b2:a5:e5:08:85:37:a7:75:a2:57:2c:5b:bf:79:bb:
cd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:10:51:2A:E6:2B:EF:A6:44:22:B5:98:06:1A:20:5E:42:8D:F6:2D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3df::/48
Signature Algorithm: sha256WithRSAEncryption
8c:e9:f4:21:ec:9d:ff:54:2c:70:eb:7b:72:75:a2:e1:fc:1d:
1e:68:1c:f6:60:20:8e:c5:ac:b3:e0:f2:b2:3c:9a:7d:81:c6:
6a:81:71:d7:95:d1:d6:b9:04:1c:c6:f2:41:16:bb:8b:52:a3:
90:e4:02:89:e9:b9:9b:20:15:70:d3:6a:89:9b:3d:51:d9:5c:
54:87:3b:e3:7f:09:5c:87:28:a7:77:97:c5:bb:85:e2:13:1d:
6d:6a:8e:e5:f7:03:32:05:a5:2e:81:b7:7f:25:6c:aa:1f:3c:
3c:55:b7:03:30:bb:f3:7e:d5:78:05:ad:b0:e5:33:52:d4:7e:
7a:de:6a:0d:2f:32:89:74:5d:31:a5:90:fe:49:6f:0d:d1:41:
56:06:b3:18:3e:e6:48:15:78:9e:f8:e9:00:9e:da:da:9c:96:
a6:2a:08:d0:28:8f:97:7a:59:c6:10:a0:f6:43:96:fb:8d:46:
86:52:cd:c1:2b:05:23:aa:db:72:ac:6c:2e:29:57:e2:d8:90:
ec:77:f1:a6:16:fa:9e:71:c5:eb:f7:0c:56:c0:7a:e0:41:62:
71:d8:71:e0:49:50:28:83:35:c3:62:de:59:fc:22:fd:83:b4:
b5:a5:fe:ec:e3:35:01:2f:8b:f4:ba:d5:8e:77:d8:cb:74:b3:
b9:36:e4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org