Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: /LCY1CcnP9ePWaPkZqi8/cxIXSEPQbdduz3qAE/IaAk=
Subject key identifier: DC:B1:DD:AB:94:F3:8B:A6:15:08:FC:81:7B:F7:31:0D:EB:6A:FE:FE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 316DBED999E81B1E0DCBFF7A176EED4085BF215B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:54 +0000
ROA not before: Mon 26 Sep 2022 07:56:54 +0000
ROA not after: Mon 25 Sep 2023 08:01:54 +0000
asID: 59282
IP address blocks: 2400:d680:6e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:6d:be:d9:99:e8:1b:1e:0d:cb:ff:7a:17:6e:ed:40:85:bf:21:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:54 2022 GMT
Not After : Sep 25 08:01:54 2023 GMT
Subject: CN=DCB1DDAB94F38BA61508FC817BF7310DEB6AFEFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:95:82:7b:44:6b:62:0a:5f:a7:56:28:be:67:
eb:8d:c7:fd:23:88:7f:38:22:6a:57:eb:c7:39:26:
f2:ba:b3:fc:c2:4e:bb:6d:ea:c4:c2:fa:56:55:fa:
56:8a:7e:f2:39:04:05:a4:d2:fd:f6:cb:8e:77:50:
ee:61:1e:ca:d2:2f:a8:f0:3a:8f:e9:e2:af:d8:fd:
95:f8:91:57:ac:1b:78:c9:01:7e:15:49:e3:60:51:
0a:94:48:e1:76:b1:54:f5:77:c0:f8:df:9e:6d:9c:
95:98:5c:da:03:bb:b3:68:c2:7b:90:12:2c:aa:08:
1f:d4:ce:e7:65:90:b0:80:8f:ef:9f:53:b3:f5:ea:
ce:26:0c:f5:59:63:27:66:df:3a:93:63:88:b5:2f:
f5:70:1f:f7:4a:47:cc:9c:9a:31:68:60:4b:c6:bf:
e3:de:e4:2d:ad:42:b7:d3:bb:59:7e:c4:9b:da:fd:
d1:b3:d8:ad:4b:d7:d6:09:86:c4:d4:00:43:f2:00:
01:a0:5d:7f:0f:56:99:fa:b0:b6:b0:44:9b:c3:30:
f1:7e:0d:9b:10:0b:68:60:46:ba:6b:25:10:a1:65:
95:d3:31:86:f0:35:de:f0:2d:e4:fd:09:aa:d6:b6:
69:ca:85:ce:fe:e4:60:26:b2:0f:d6:84:46:63:fa:
28:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B1:DD:AB:94:F3:8B:A6:15:08:FC:81:7B:F7:31:0D:EB:6A:FE:FE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:6e::/48
Signature Algorithm: sha256WithRSAEncryption
a3:8e:59:e9:12:d5:98:a0:1a:a2:7d:f9:55:8a:bd:ea:2d:22:
79:c9:f0:26:c4:70:c8:ed:99:ea:92:b1:82:d8:1b:b1:c1:33:
84:63:08:bf:60:02:9a:41:06:77:f4:86:a1:e0:17:fd:d9:49:
7d:0c:b3:a8:0b:a1:3a:cd:ad:ab:e8:3a:a5:6e:cc:7a:82:1d:
ef:ef:43:17:d2:84:8a:ca:42:10:37:b9:ae:f9:8f:21:34:21:
00:58:61:60:a6:ce:f6:ae:6e:ed:5d:5e:3d:37:4e:23:fc:3a:
3a:f7:94:f0:0c:24:48:a2:74:f1:83:b6:70:22:9c:4f:5f:b3:
7b:4a:d3:b7:50:2a:35:4e:1d:26:fc:39:43:ac:e2:db:fd:25:
d1:05:72:85:7a:8a:d0:e1:bf:9f:e7:70:1f:7e:d4:5a:df:9a:
44:34:cf:d5:53:d8:e4:f7:e8:5a:2b:4d:92:6c:4d:70:f0:7e:
4f:f2:2c:0c:87:93:db:86:08:68:ef:f9:9d:16:46:80:ba:07:
76:c3:cf:0a:7b:0d:94:50:bc:42:7e:c0:ba:5a:5d:04:a9:75:
71:39:7f:9b:f9:19:17:a6:c6:cd:44:c4:04:3f:31:ac:f6:e5:
c5:e6:0b:fb:b7:b9:af:ac:d6:cd:9b:b7:6d:c8:52:8d:19:31:
67:81:b2:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org