Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Xra8L9ylwmlq1S4G2h1eqrfcpJXX1Ew4aPz2Zm1f0V8=
Subject key identifier: 44:F8:54:FC:54:D4:1D:A8:11:79:63:DC:14:3C:E1:84:67:C4:08:29
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0AEE26F8B9C924387F9E6AA844824B5F58A9B373
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:25 +0000
ROA not before: Mon 26 Sep 2022 10:55:25 +0000
ROA not after: Mon 25 Sep 2023 11:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:3ec::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:ee:26:f8:b9:c9:24:38:7f:9e:6a:a8:44:82:4b:5f:58:a9:b3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:25 2022 GMT
Not After : Sep 25 11:00:25 2023 GMT
Subject: CN=44F854FC54D41DA8117963DC143CE18467C40829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b0:3a:b4:ef:bd:5c:36:07:09:5d:da:1a:ac:
eb:4c:8e:8d:0c:16:ab:73:52:fd:da:84:86:1a:57:
6a:09:71:b4:17:9e:ea:d6:b0:35:a1:dd:26:c3:35:
2b:51:9f:5d:d0:0e:54:f5:f2:fb:56:77:6f:ee:ed:
bc:a6:ac:ee:9b:9c:e4:cb:f4:fb:f4:13:3b:ce:8e:
bd:66:62:55:8b:c6:67:bd:fb:dc:21:60:ca:8b:56:
ee:1e:f1:a1:a5:75:e6:04:06:ec:29:c2:6e:fd:c7:
ba:17:18:c4:85:43:8b:2e:7d:d7:50:57:0b:96:af:
f0:52:61:1e:57:39:38:24:91:2d:71:6e:c5:a6:fc:
42:bd:47:d9:7d:f5:8e:78:81:ff:9d:a9:5b:67:a7:
87:9b:eb:39:69:d2:05:35:74:69:eb:2f:42:5d:13:
aa:ec:3b:c5:5e:fc:8d:4a:3b:95:79:ad:1e:9a:36:
8b:a3:0d:2b:cc:07:60:1b:59:7a:ed:12:73:db:74:
72:16:27:8a:86:ca:ee:fb:cf:21:8f:fe:5b:df:0a:
d4:f9:03:9f:e4:ab:1c:36:49:da:66:a9:22:c4:17:
1f:e6:fa:8f:e8:e5:7b:20:12:7f:87:2b:e5:b7:d8:
13:db:4d:b1:97:ea:b8:92:42:7f:51:8a:20:f4:b9:
ec:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F8:54:FC:54:D4:1D:A8:11:79:63:DC:14:3C:E1:84:67:C4:08:29
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ec::/48
Signature Algorithm: sha256WithRSAEncryption
a5:f9:7d:cd:6d:1f:08:fe:81:91:24:c2:09:2c:09:bf:8b:c0:
fa:5a:40:4b:7f:b9:50:c2:96:5a:b1:99:98:b2:54:bb:e5:15:
e3:6e:50:91:ff:3a:78:96:5e:69:32:fe:bc:31:af:60:18:e7:
94:fd:d6:ef:67:b0:90:d4:99:07:7f:af:05:cf:4d:a3:8f:ea:
27:2d:0f:b2:29:e6:de:76:0a:07:42:37:94:71:2d:34:9d:61:
a2:4b:02:26:9f:c5:19:5a:58:f0:8d:65:02:2f:a0:a5:ec:4b:
08:d9:00:d4:47:59:1f:b9:42:f9:a3:9b:f2:de:4b:5e:f4:75:
6c:25:59:ae:83:aa:e5:0e:57:fd:7f:1f:24:8a:0e:40:e5:70:
47:17:ec:1c:e3:23:eb:2c:3b:15:95:7b:30:a3:34:1e:21:81:
65:4b:75:26:4a:ba:1f:b8:44:17:d7:2f:90:8d:de:79:4b:87:
1a:1f:9d:5f:fa:39:6a:8c:59:43:46:18:cb:6b:b0:59:f4:7d:
d2:66:97:30:8f:37:7c:b7:11:2d:8b:4a:5b:79:e2:0b:32:8d:
ef:ca:cc:15:53:ce:bd:0c:05:f4:d6:28:bf:06:e4:1e:d8:29:
80:9c:a0:60:58:39:80:32:a0:2b:fb:16:e0:d5:ae:22:f8:1d:
09:39:03:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org