Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hJ2AqB+1fsjUtr1bqA4o9C5Bo3TZfSEfRgnELilCQaI=
Subject key identifier: E7:5E:3B:C9:30:FD:9C:93:C3:C0:14:61:6C:38:A8:1D:B0:79:DD:1A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2FA9F8F452E51772A00D0F89CEC5EC993FEC9AFD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:54 +0000
ROA not before: Mon 26 Sep 2022 07:56:54 +0000
ROA not after: Mon 25 Sep 2023 08:01:54 +0000
asID: 59282
IP address blocks: 2400:d680:94::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:a9:f8:f4:52:e5:17:72:a0:0d:0f:89:ce:c5:ec:99:3f:ec:9a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:54 2022 GMT
Not After : Sep 25 08:01:54 2023 GMT
Subject: CN=E75E3BC930FD9C93C3C014616C38A81DB079DD1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:45:a3:cf:07:d7:73:06:2a:9f:f0:e4:e6:61:
8b:ad:46:26:51:19:02:a6:0e:06:5b:74:ff:81:b1:
bb:e4:21:ba:ca:84:00:c6:b3:d4:54:7c:d7:1c:1f:
94:17:5c:1d:51:e0:a2:9d:f6:8d:bd:8e:60:26:23:
f9:5e:b6:a2:a5:03:85:e8:e7:6a:b2:3b:6d:c7:71:
26:49:f0:da:5e:72:32:5b:c3:c1:c4:80:28:36:a2:
a5:75:5a:0c:ea:df:34:88:cf:70:0c:53:b9:58:cf:
98:88:d4:65:59:0e:70:4d:2a:06:2c:d0:1a:d9:c9:
0d:0d:17:d0:e5:d9:ce:4a:01:4b:c9:86:75:9a:33:
72:62:bb:b2:5c:0a:fe:a1:3f:97:d1:c1:c1:8e:b3:
7d:2d:02:78:27:12:39:71:3c:b0:37:e1:9c:3e:bb:
f1:53:b8:b8:28:77:8c:d0:82:76:07:00:19:be:60:
59:b6:ef:66:1c:3f:0d:cf:b5:52:27:90:f3:74:3c:
a4:d3:a6:a3:c4:73:11:3e:f5:6b:9e:a5:35:ba:6d:
e3:db:0b:1f:e1:ba:7b:61:7c:63:7b:b7:40:d1:46:
c4:d9:c2:17:75:db:64:ee:78:8f:0d:64:0b:cf:e9:
e9:c3:be:76:f2:00:b7:36:8a:10:58:76:97:ee:73:
fc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5E:3B:C9:30:FD:9C:93:C3:C0:14:61:6C:38:A8:1D:B0:79:DD:1A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:94::/48
Signature Algorithm: sha256WithRSAEncryption
bf:ff:b9:38:31:01:1b:e8:ee:4d:18:0c:50:20:d1:67:39:00:
e5:24:98:d6:32:2c:ce:b4:c9:56:73:05:62:4c:ff:c2:ad:ef:
80:2f:d3:ad:91:d6:49:a2:66:62:dd:ec:f5:37:ee:3d:58:e8:
41:53:8e:1c:f5:79:30:b3:ea:92:78:aa:6c:60:d8:b3:d1:dd:
ea:76:1f:85:1f:38:bf:d0:56:7b:36:07:a3:bb:b1:38:76:61:
a0:c1:3c:17:2f:de:39:0c:ce:60:bc:9c:ca:d6:9c:0c:dd:b0:
ea:60:eb:ae:2a:29:fe:4c:a8:62:d5:2b:f6:a1:61:df:08:0a:
4e:17:9c:69:01:fa:9e:59:ca:0c:0e:5b:0a:ba:fd:22:ad:7c:
32:91:91:d8:ec:8c:6b:6e:4e:f1:63:9c:c8:0e:c6:da:02:21:
90:db:f9:d3:d8:29:97:de:55:82:5c:9c:74:a5:5a:20:df:9d:
29:6b:73:90:7b:cd:b4:2f:62:ae:6d:2c:29:44:55:be:43:29:
0c:fc:1b:1d:38:c7:38:a6:f1:ae:34:2e:ab:7a:d1:ab:bf:21:
04:bf:fd:96:e0:c8:66:08:5c:7d:10:50:a7:35:cd:01:69:ff:
cb:5d:4d:96:45:3b:07:04:49:c7:98:55:94:7f:74:95:6c:6f:
07:fb:27:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org