Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8Gq3scV7v9O5eVjPFsoJQ/Towy4UAui6x8oZbbhLQZk=
Subject key identifier: C6:23:0E:E0:6B:66:14:74:4E:03:2C:82:80:68:C2:45:CF:C8:E7:3A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 40A702E2BC7D9801AB16CB0A74095B5D2FE4164A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:32 +0000
ROA not before: Mon 26 Sep 2022 10:55:32 +0000
ROA not after: Mon 25 Sep 2023 11:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:3f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:a7:02:e2:bc:7d:98:01:ab:16:cb:0a:74:09:5b:5d:2f:e4:16:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:32 2022 GMT
Not After : Sep 25 11:00:32 2023 GMT
Subject: CN=C6230EE06B6614744E032C828068C245CFC8E73A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5f:40:d7:a7:e4:ed:47:da:bc:34:79:dd:6c:
94:82:0d:0b:fb:5d:64:16:b9:dc:59:d3:ab:5f:46:
b5:a2:03:b9:2e:52:7a:36:f4:35:c4:d1:be:27:fd:
f4:c0:24:a4:b3:05:47:b8:77:c6:48:4d:54:3c:aa:
cb:3e:59:7c:8e:03:23:77:45:a3:7d:8e:d8:ba:09:
0c:96:7f:2d:0f:4c:7a:62:4e:69:75:93:0e:2b:1d:
16:13:ab:90:09:b6:2c:57:65:ff:d4:b7:0e:f3:46:
20:34:e5:8b:39:59:7f:20:e0:70:d1:60:4e:1c:07:
61:44:c9:d8:ed:8a:2f:88:70:51:ea:15:b5:b0:46:
b3:15:b3:33:0f:f3:1d:8a:85:d3:b2:f4:b0:29:4f:
13:46:2c:20:c5:e7:fa:d0:d1:ad:c1:30:68:7f:89:
d4:00:7b:db:04:74:34:9f:b9:34:d3:db:c3:0a:ef:
b7:31:b1:29:0d:05:3b:07:6c:f7:4a:9e:06:e7:f5:
75:7e:33:41:12:bd:1f:bf:2c:9b:42:2e:5f:35:bc:
b3:a9:cb:8f:01:95:fb:8f:3a:bf:cb:35:e1:17:04:
0b:c4:ae:98:a1:5a:67:2b:ec:33:9b:47:8b:48:c1:
21:19:e0:70:82:b7:2b:4c:a4:e7:4e:49:4a:c1:db:
3d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:23:0E:E0:6B:66:14:74:4E:03:2C:82:80:68:C2:45:CF:C8:E7:3A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f0::/48
Signature Algorithm: sha256WithRSAEncryption
91:17:7e:ac:c7:67:d4:7f:2d:5c:52:b8:c3:f4:bc:66:b6:dc:
13:05:76:c0:1a:15:35:d4:bd:77:48:57:61:40:8e:f6:23:ea:
9a:ad:ff:da:e9:5b:fe:5d:87:07:50:e4:85:ee:9a:69:74:07:
3f:08:7b:47:d4:e3:f2:30:11:c5:b4:1d:70:da:5f:d3:8d:67:
c6:60:98:af:a6:27:19:b6:be:c8:31:04:3e:d6:e4:b2:d6:d3:
58:f0:57:3f:68:26:68:c6:e1:b0:2f:14:65:9d:9a:8e:5e:72:
de:bf:56:7d:55:13:89:b7:3a:2c:72:54:30:f5:b2:b1:73:96:
3d:c2:42:61:93:66:c6:77:b1:33:fd:bf:d2:cb:07:d7:20:2a:
d5:7e:db:6c:33:ad:76:aa:c6:4b:04:7d:b0:56:47:67:21:b6:
4e:7d:1e:c0:c6:3f:a6:92:08:43:31:7d:68:63:03:3d:62:52:
ac:bb:d8:dc:b9:7f:60:ef:7d:aa:0c:e3:c8:65:9c:85:53:fe:
00:01:9a:62:08:1b:33:d2:7b:43:15:e3:61:46:a8:00:b2:3f:
6e:5b:e1:a2:75:ed:c0:68:55:c3:67:67:e5:c7:29:80:f4:5e:
5d:ba:b7:ba:c7:b4:08:1a:fb:dd:7c:ae:3f:01:f2:d6:2c:a2:
5a:18:40:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org