Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zJyAoLOkIbC4qLm21h2+q85rLDApvadZVO2gCgR26rM=
Subject key identifier: 95:D2:2B:A3:73:B1:4B:26:6C:CC:21:0B:D4:3B:AA:63:16:86:A5:BA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6AAB6B7199851FC655606A30DD58C1E6E12AF08B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:31 +0000
ROA not before: Mon 26 Sep 2022 10:55:31 +0000
ROA not after: Mon 25 Sep 2023 11:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:3fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:ab:6b:71:99:85:1f:c6:55:60:6a:30:dd:58:c1:e6:e1:2a:f0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:31 2022 GMT
Not After : Sep 25 11:00:31 2023 GMT
Subject: CN=95D22BA373B14B266CCC210BD43BAA631686A5BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9b:03:fa:ff:8e:c6:1a:dc:61:03:9a:6f:43:
90:c6:e5:96:31:a8:e6:17:93:52:7d:29:a5:50:1e:
ff:df:f1:c2:b5:36:ea:4f:f4:2e:a2:e9:cb:44:2d:
f4:87:dc:d3:27:49:f0:81:f6:c7:a5:2b:2b:dd:a3:
84:dd:5d:6c:9f:5a:eb:cb:16:4b:48:6b:f2:45:09:
8e:13:03:64:0f:b1:4c:36:2d:d8:18:62:dc:30:7d:
63:5e:9f:3e:0e:ca:43:03:26:09:b4:f4:6f:d6:00:
98:23:19:b5:5a:b8:3f:67:45:2d:c4:44:92:9d:ba:
ac:e6:00:ca:b6:f4:b2:ce:76:d3:c7:c0:a1:99:ad:
c0:72:6c:62:2c:88:7e:2b:9d:2c:fb:4f:71:36:d5:
18:ac:bb:91:e2:6c:47:8f:21:f1:31:7c:20:21:fc:
0f:df:17:df:77:38:4d:34:66:10:3d:d3:f1:d9:96:
93:26:ed:93:bd:76:83:70:11:18:9b:38:74:02:5a:
1b:19:93:09:1a:5d:d1:46:be:76:1e:32:60:89:a5:
c4:fc:c8:fc:74:4f:47:e3:39:b0:09:78:37:ab:ab:
17:77:cf:45:10:57:d5:b1:d5:2c:4a:79:29:b8:88:
fc:36:bf:15:68:a2:21:2c:00:7f:14:e6:83:f0:e1:
a1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D2:2B:A3:73:B1:4B:26:6C:CC:21:0B:D4:3B:AA:63:16:86:A5:BA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3fc::/48
Signature Algorithm: sha256WithRSAEncryption
98:c0:34:33:c4:1c:69:b4:3d:5e:b0:c1:41:8a:2f:37:ac:81:
78:77:74:6e:fc:95:c6:5a:94:74:f8:26:14:81:25:8b:27:44:
f8:f0:bd:b9:c9:d8:b3:94:80:8a:89:bf:5c:d1:d3:6c:6d:bb:
9f:6d:2a:de:e3:1b:e9:d5:79:a6:f2:84:0f:b9:3d:e3:21:5a:
d8:b3:ce:51:71:78:97:68:29:8b:70:f7:47:de:f8:b8:1b:8e:
53:f7:38:65:ff:33:18:bb:70:16:06:c6:15:ba:94:7a:f0:06:
16:b8:bf:00:c6:4b:77:51:cd:a6:c9:33:ab:77:8f:20:a1:9c:
8e:13:40:14:be:46:e0:e8:d2:40:c3:85:e8:ed:4d:ca:3b:13:
ca:23:8b:c6:c4:ca:bd:14:6c:b5:c0:a7:50:0e:5c:7c:96:1c:
db:82:95:08:ff:b8:d7:29:dd:07:60:92:2d:28:55:bf:43:b4:
e8:d6:6d:80:f0:64:38:f4:18:86:c9:a7:42:45:41:9d:db:9e:
58:e3:28:e0:a0:54:e8:75:a1:d6:a2:f9:d6:92:c9:39:c2:1c:
7f:ce:b4:c0:ce:08:5b:cd:30:9a:49:4d:e4:ab:fb:52:aa:0e:
a0:0e:38:c2:42:70:b0:e7:1e:7b:24:b3:a6:8c:8c:44:eb:7a:
5b:fa:08:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org