Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: AQ6rRxu2xNrupl7bSx3WTLANqngK6DiQU2YxT9jsy/s=
Subject key identifier: 67:1B:49:33:1E:7B:C6:46:77:55:EC:9A:73:70:ED:25:CE:68:70:60
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6BFF72E0715C819A7E1D83364EDC91AAC98D65EF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:40 +0000
ROA not before: Mon 26 Sep 2022 10:55:40 +0000
ROA not after: Mon 25 Sep 2023 11:00:40 +0000
asID: 59282
IP address blocks: 2400:d680:3fa::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:ff:72:e0:71:5c:81:9a:7e:1d:83:36:4e:dc:91:aa:c9:8d:65:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:40 2022 GMT
Not After : Sep 25 11:00:40 2023 GMT
Subject: CN=671B49331E7BC6467755EC9A7370ED25CE687060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:61:ca:05:38:ff:0b:1f:c3:ef:13:35:49:86:
8f:f5:00:e6:9b:50:e4:0b:e4:a7:2d:f5:c6:ff:3b:
56:de:c9:f6:f3:92:59:3d:57:64:85:41:39:b0:36:
bc:b7:78:15:70:f5:1e:7e:ad:6e:0e:ce:a0:94:e0:
01:fc:ff:71:76:7e:49:5f:09:89:1a:3c:1a:64:05:
4f:24:48:88:e0:a0:67:2a:ac:3c:d9:64:bc:1a:f9:
01:cb:78:db:65:72:9f:27:81:e6:70:41:15:8e:5c:
2d:02:d4:63:18:86:0e:8a:2b:f1:85:2a:64:8b:52:
f0:c0:8e:b0:91:c3:9a:7c:6e:ce:77:bc:c2:f8:35:
05:d4:66:13:b0:8d:00:b7:2e:63:c0:e6:26:66:b6:
d4:1b:4e:33:3d:31:a7:ac:8c:bf:6a:73:b5:9a:8f:
4f:6d:dd:da:05:f1:78:b0:cf:f7:75:84:15:f4:b7:
e3:21:19:fd:29:d0:2d:0e:05:87:38:41:03:34:2c:
28:a1:d5:cb:cb:9c:1c:d1:06:1c:fe:70:e8:75:30:
b4:a7:a0:de:9a:35:cc:96:6f:e1:28:09:50:24:af:
ee:38:fd:53:f8:56:b8:9a:e5:95:b7:ba:ef:b2:ed:
71:b4:81:3e:36:0a:85:f1:44:11:38:ff:79:30:2d:
c3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1B:49:33:1E:7B:C6:46:77:55:EC:9A:73:70:ED:25:CE:68:70:60
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3fa::/48
Signature Algorithm: sha256WithRSAEncryption
76:cb:f0:7a:dc:30:e6:b1:2d:53:63:76:f2:0f:da:bb:ef:7b:
f1:62:08:29:74:9d:dd:c1:91:57:f9:da:49:e0:c7:dd:83:c2:
2a:f2:96:8e:e8:71:5b:be:9c:ec:c7:c6:1b:fd:ed:05:3b:5f:
22:51:6f:95:af:99:d8:05:c7:ab:e8:c0:1d:1b:e5:c7:88:f6:
9c:2e:27:a1:6a:13:7f:7a:56:ce:2e:c5:d3:a1:96:db:99:c0:
44:cd:ac:1f:94:46:62:37:93:17:c4:26:38:29:f0:85:41:80:
4f:32:a1:e7:50:59:f1:30:28:e2:25:c4:b7:5b:87:03:12:23:
0e:f9:c3:ee:70:53:18:0f:b7:cb:7b:44:06:07:eb:70:14:44:
38:34:97:aa:24:94:aa:3d:14:9f:20:24:bf:af:4c:68:ba:bc:
3c:bf:c9:d7:c8:19:7e:b9:1e:1d:04:5d:37:81:66:39:38:d7:
db:5c:10:eb:64:32:66:af:33:3a:4b:62:ee:8b:47:fe:82:2c:
3d:f6:44:62:46:23:b4:f7:0f:ff:17:33:9a:c8:e3:88:86:e3:
36:b2:18:9a:aa:f1:6a:0a:3e:97:67:85:ed:53:02:e1:5a:39:
79:52:8a:26:eb:6a:12:a7:6d:52:9e:6c:cc:52:54:43:2e:80:
5d:1f:a5:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org