Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: diNGpCvy9hao6C4M3nfKTKTuJC7PPSzCMSePehwFSqA=
Subject key identifier: C9:66:EB:0E:12:18:FA:11:97:FD:85:DE:D7:C8:5F:69:F6:12:B9:DA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 52C115AD4DCEAFDAC8D31BE9E5099A26FB9FCFB6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:42 +0000
ROA not before: Mon 26 Sep 2022 10:55:42 +0000
ROA not after: Mon 25 Sep 2023 11:00:42 +0000
asID: 59282
IP address blocks: 2400:d680:3f4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:c1:15:ad:4d:ce:af:da:c8:d3:1b:e9:e5:09:9a:26:fb:9f:cf:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:42 2022 GMT
Not After : Sep 25 11:00:42 2023 GMT
Subject: CN=C966EB0E1218FA1197FD85DED7C85F69F612B9DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5c:2c:68:ce:92:fd:f3:db:81:69:01:d6:a0:
5d:8d:07:61:f5:70:29:04:83:ac:ba:f9:33:47:7d:
0d:be:40:7f:e3:9e:69:6b:4d:0f:0e:07:c7:b6:93:
46:b1:f3:f9:63:48:69:52:24:54:df:d9:fd:79:62:
ea:22:cd:7c:2b:b6:a5:16:87:27:45:5c:57:17:63:
c6:e4:3a:8c:ac:c0:98:d5:ac:c1:de:a1:32:32:3f:
26:10:89:0e:7c:a8:aa:36:a9:fb:46:90:34:d8:ab:
5c:df:d3:e4:7c:17:60:80:02:fe:6d:20:29:e9:c4:
8c:66:b2:8a:68:e8:6c:74:29:67:2e:51:67:7a:c5:
18:58:89:cd:d6:6d:59:eb:af:49:42:41:c6:ab:ce:
41:9a:ae:8f:0a:23:43:fb:1e:73:d7:3c:8d:79:73:
d5:b6:9e:3b:5a:04:00:a3:f8:f8:e2:0d:1b:2d:ff:
e9:4f:80:ed:f2:9c:f7:82:3e:d3:98:49:18:97:ed:
c2:52:d7:ba:a1:19:18:66:a5:ab:b1:d9:3e:b8:6e:
74:ae:0b:d9:84:75:05:74:cc:8f:e5:ec:69:82:23:
19:23:d2:01:ae:ed:d0:5c:b9:62:89:3e:38:b7:ad:
dd:ce:a9:5b:62:fe:11:c8:5b:59:16:5e:cc:94:71:
62:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:66:EB:0E:12:18:FA:11:97:FD:85:DE:D7:C8:5F:69:F6:12:B9:DA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f4::/48
Signature Algorithm: sha256WithRSAEncryption
76:dc:c7:71:24:70:0f:ab:ba:72:7d:b7:57:9c:f6:74:1c:cf:
27:a7:40:2e:d2:2d:ca:55:e4:89:35:56:c5:17:76:21:73:8d:
43:46:12:6a:e2:0e:ee:29:b0:83:a9:0d:ae:c6:99:f4:45:4f:
11:a9:5a:9d:71:21:11:ec:5f:5d:46:fe:91:97:f6:fe:31:50:
c9:e6:05:2d:b8:a1:d0:94:df:15:54:10:21:6a:7c:d0:7d:17:
b4:2a:36:1d:bf:72:91:62:d5:5c:d6:d8:29:f4:9a:0b:e3:b1:
f7:73:db:8c:6f:a8:e3:19:6d:94:bb:21:31:eb:5a:32:5b:54:
d9:f1:52:d4:05:a4:dc:be:7c:a9:1a:0c:03:66:d3:30:5a:51:
f7:3e:59:ea:d6:f4:c7:a8:2a:7c:09:e5:34:4d:d2:d4:d7:6f:
51:e5:d2:d0:52:30:dd:68:1b:26:0e:92:c1:2c:5c:26:68:ee:
70:a9:d6:f3:cf:8c:89:50:f4:6d:fe:d0:1a:65:24:b6:c7:a1:
eb:65:06:43:ce:e7:e4:d5:0d:a6:a4:42:67:db:77:fa:32:4c:
5d:40:a2:0e:8c:3d:b9:9a:7d:5b:09:30:e3:19:76:b1:7f:32:
ab:41:75:78:5f:3a:17:4b:14:d4:65:64:03:68:c7:c4:eb:eb:
28:c9:0f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org