Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 3JLMf3JbIo25slhAtiJg4s/XSPSDowxXMs1GLFVU2Kc=
Subject key identifier: D6:42:1B:E0:65:62:DF:61:63:C4:6A:AC:14:F6:C4:78:CB:1F:BC:E4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2EA00DFE16034AB3EDCD413DAABF52029C22A6DF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:19 +0000
ROA not before: Mon 26 Sep 2022 07:56:19 +0000
ROA not after: Mon 25 Sep 2023 08:01:19 +0000
asID: 59282
IP address blocks: 2400:d680:a3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:a0:0d:fe:16:03:4a:b3:ed:cd:41:3d:aa:bf:52:02:9c:22:a6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:19 2022 GMT
Not After : Sep 25 08:01:19 2023 GMT
Subject: CN=D6421BE06562DF6163C46AAC14F6C478CB1FBCE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6f:2a:10:a5:1e:6b:02:b6:4c:67:82:d5:f2:
60:7e:18:ad:8c:75:c0:62:95:98:ff:58:91:e8:35:
01:a3:52:e3:46:cf:0a:27:61:49:d9:de:e9:e5:a6:
4e:d6:7b:64:a1:38:8a:b4:45:dc:8a:97:f7:ec:62:
b7:9a:93:c6:63:b7:40:72:3c:25:b2:91:79:cd:4a:
23:ac:a5:62:e5:15:f2:2b:68:1b:a7:25:0a:02:10:
a8:e4:27:95:c7:d0:4c:d4:7a:2e:db:4f:60:44:2d:
06:b9:42:a8:2f:c1:20:0a:5e:74:cc:ba:89:6c:4b:
5e:94:64:be:93:2c:fa:19:d4:9e:bb:5f:47:8b:c5:
8e:54:98:b7:7b:0d:b1:da:29:da:77:c5:01:dc:44:
b6:b0:81:f8:ec:39:54:c8:48:eb:b3:31:41:b0:98:
53:e6:d0:71:42:0f:15:78:bb:ed:04:10:b0:bb:fd:
05:6f:b7:0b:7f:b0:7d:62:64:b8:3b:38:fb:9d:19:
01:86:ab:ba:97:a1:54:07:d3:66:14:d0:a8:28:66:
34:35:ab:4a:81:9e:36:51:e6:9e:19:7d:f4:4b:57:
d9:57:92:b6:f2:36:db:80:1e:48:40:6a:27:00:0e:
10:e4:9a:e7:11:7e:cd:a6:f7:75:40:46:f3:d8:aa:
06:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:42:1B:E0:65:62:DF:61:63:C4:6A:AC:14:F6:C4:78:CB:1F:BC:E4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:a3::/48
Signature Algorithm: sha256WithRSAEncryption
83:6d:78:85:b6:b2:35:0c:67:5b:53:8d:04:28:38:f6:cc:d1:
2a:da:4f:f6:08:7b:09:14:d4:d3:37:6a:aa:55:50:9f:57:1c:
6b:e5:20:fc:d8:8e:3e:16:33:37:98:41:ba:47:19:71:bb:c7:
4b:92:4b:6e:e1:9b:e7:cb:fe:1c:92:43:d6:9c:ef:da:f2:05:
b9:d3:28:a4:3b:b9:45:6a:c2:31:38:76:fe:96:e8:01:0f:5a:
91:5c:da:af:26:65:b3:85:2a:6b:64:b9:e2:ba:7e:0c:aa:d8:
9b:32:1b:11:cd:99:3b:74:4d:e8:d1:d7:cd:ad:1f:f1:1b:21:
3f:f3:ab:56:27:64:ea:db:d3:0d:8c:b9:2e:bd:31:ad:f7:5a:
1a:27:40:35:6c:98:5a:3f:aa:72:48:79:97:b0:8b:da:68:b3:
43:19:da:cc:6d:2e:2a:15:94:18:a3:98:75:20:3a:9b:9b:e2:
88:82:49:17:6b:08:3c:14:00:a3:c0:eb:c5:40:ca:82:b9:ca:
ee:9a:af:6d:1b:db:67:70:2f:d1:44:a4:2e:d9:33:03:ed:fb:
2c:d6:68:50:d9:5d:35:4b:ed:04:6e:61:ab:79:43:07:d2:b4:
24:b0:5a:df:6f:a2:2c:08:12:85:ca:2f:cc:29:8f:1f:55:d5:
b8:76:61:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org