Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GEOt3W5B3bxfD0BInsbGbLnaVvR5IM1sAPAMHzeHxbI=
Subject key identifier: 68:1D:59:25:12:2F:3D:B8:22:4C:1E:87:15:4C:32:BF:B5:81:11:D9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 06E96EC13813AB23C61F43C05D2BDD2D2F62D28C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:51 +0000
ROA not before: Mon 26 Sep 2022 07:56:51 +0000
ROA not after: Mon 25 Sep 2023 08:01:51 +0000
asID: 59282
IP address blocks: 2400:d680:4b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:e9:6e:c1:38:13:ab:23:c6:1f:43:c0:5d:2b:dd:2d:2f:62:d2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:51 2022 GMT
Not After : Sep 25 08:01:51 2023 GMT
Subject: CN=681D5925122F3DB8224C1E87154C32BFB58111D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8f:a3:0b:9f:9f:9c:01:4a:33:e1:68:b1:91:
c5:51:a7:9b:cc:0b:80:09:8f:da:79:c7:d8:19:7c:
ee:bc:da:bb:97:04:9e:03:ea:99:10:6e:75:92:1a:
77:33:c3:aa:87:b5:4c:ab:72:c7:06:78:80:7d:3c:
a9:f9:f5:ed:43:66:24:9c:e2:2a:50:d0:7c:a4:6a:
b9:3e:ed:f8:c3:4f:09:49:26:28:fd:62:84:88:be:
14:41:a8:33:59:b6:1a:cd:03:da:49:5c:bf:17:33:
ae:fc:bd:06:8a:bd:6f:68:c5:d6:a9:29:97:59:d2:
95:20:a2:e9:d3:87:8b:6d:e6:f7:00:bc:c6:15:14:
2e:b5:54:db:5b:69:76:65:d2:e3:1a:37:96:92:45:
76:e5:ee:31:bc:1d:98:5b:11:31:44:99:eb:a6:d6:
45:ac:77:d3:a1:d5:0f:75:92:18:d1:7c:f3:fe:2b:
a5:e8:d8:fa:76:f7:9f:5f:8b:1a:a8:8a:96:ee:4b:
7b:85:d7:b0:41:b2:06:cb:48:c0:a9:8f:d8:da:dc:
05:17:59:67:60:12:d4:92:77:4f:da:03:80:98:01:
42:f6:f0:bf:c6:ad:fd:6c:2b:22:77:64:22:82:6a:
2e:bd:67:68:ec:0c:a5:6b:af:41:6a:10:05:20:b1:
86:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1D:59:25:12:2F:3D:B8:22:4C:1E:87:15:4C:32:BF:B5:81:11:D9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:4b::/48
Signature Algorithm: sha256WithRSAEncryption
27:be:7c:26:2b:16:00:c4:ae:86:04:9e:2b:a3:3c:af:87:bf:
a9:16:7f:9d:79:bc:30:c0:77:92:3c:a4:fb:96:a2:08:73:0b:
f5:95:69:08:02:f0:d3:24:62:06:d4:cd:8d:38:0e:f8:2d:f2:
c4:82:af:02:5b:8b:82:51:72:b1:18:df:e0:dd:60:b6:e7:88:
d2:ce:26:c2:a7:eb:68:19:7f:d6:01:c0:12:44:85:bc:1a:6c:
07:2b:ad:22:cf:ee:72:89:f0:f8:77:75:2c:9a:dd:17:5a:2e:
81:32:02:0e:5e:56:5c:fb:d4:b8:33:bb:f6:52:e2:0e:e4:19:
2a:7f:64:10:c6:6b:8b:d3:5d:51:6c:98:99:88:92:69:7b:11:
1a:b7:ad:ef:8d:ac:11:c4:71:c3:82:f3:75:15:52:82:a4:7b:
61:6f:b1:d4:0b:dc:93:74:2e:9e:81:84:c0:d0:be:b8:96:c1:
a2:31:c2:6c:af:d4:8d:8b:ba:3a:09:df:bc:c4:8f:a4:c5:87:
15:b9:32:02:15:6d:79:72:38:e0:f6:91:3f:90:31:d9:3c:58:
12:30:64:3c:1d:d8:17:74:84:de:f7:5d:de:13:77:2e:6a:56:
76:9f:ec:e7:33:a5:16:61:c4:73:ed:ab:3c:44:b1:45:79:d5:
f7:f9:23:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org