Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: eplVwaYvI8a24anQV5OhkusJJPceEjPKnfue3TFZP14=
Subject key identifier: FF:B0:23:69:B0:7C:08:BD:0A:33:4F:F3:D7:FB:E7:FB:6A:00:4A:DA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2A119750D8B70AED456183DEBC18D70CE8E74164
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:11:97:50:d8:b7:0a:ed:45:61:83:de:bc:18:d7:0c:e8:e7:41:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=FFB02369B07C08BD0A334FF3D7FBE7FB6A004ADA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:97:86:4c:b6:d5:5f:9f:91:78:9a:1e:ee:61:
e7:df:d3:94:57:bd:d7:52:20:98:92:de:31:e6:20:
6b:4b:0d:fa:f3:ad:d6:aa:67:30:6d:92:d2:2d:e0:
a3:7f:c7:fb:f2:7c:6e:3a:d2:9c:8e:7f:12:67:c9:
5d:3a:71:4b:c7:da:59:d4:eb:50:19:d2:67:09:12:
70:8b:b7:85:02:0d:b5:f1:e1:7a:2e:dd:8b:c5:7e:
36:f0:1e:c3:3e:2d:99:7e:16:25:21:3b:b1:e6:92:
6d:79:4b:3d:6c:14:5e:3c:99:20:04:6d:ba:06:0a:
a5:f0:c0:17:08:5a:7f:61:bb:b3:55:c2:df:65:fb:
6d:43:7d:b7:10:84:3d:ce:bb:71:01:c1:1a:33:19:
ff:2b:96:73:4a:b6:db:bf:07:d4:4a:68:20:8f:a3:
56:69:ca:91:5d:00:ca:39:2e:69:f2:ca:71:8f:33:
d5:e9:62:c0:82:af:18:50:2f:d8:b1:8d:31:ae:b4:
03:d6:f4:56:4d:47:7b:6d:68:e1:f4:e6:50:31:e9:
c9:75:e9:69:8b:c0:e6:41:51:3f:f5:82:32:a1:68:
af:33:2d:66:d5:a5:ee:bf:85:bc:9e:32:e7:b9:cb:
f9:61:e8:59:23:24:e8:8a:3f:52:37:22:7c:25:63:
fc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B0:23:69:B0:7C:08:BD:0A:33:4F:F3:D7:FB:E7:FB:6A:00:4A:DA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:f8::/48
Signature Algorithm: sha256WithRSAEncryption
d2:cc:f2:32:9d:5d:c3:ad:d6:5f:11:50:29:d3:3b:6d:cc:97:
f9:86:d9:8a:56:14:da:95:5e:86:65:0f:5c:a6:9f:00:d1:da:
97:1d:f5:a2:c0:a2:8c:64:c7:40:bf:ed:f3:cb:ca:59:69:50:
d3:3c:f2:27:20:2a:21:89:20:bd:be:23:da:3f:3f:bb:ae:0b:
8e:f4:06:9f:da:44:aa:bc:ec:4d:b4:8a:9c:93:8f:48:a8:1e:
28:86:40:7d:9a:78:0a:01:25:58:05:ca:96:7e:ce:4e:88:84:
ff:75:2d:93:d8:46:c9:12:b8:c7:9c:7e:d7:f9:de:87:9b:af:
f0:d9:60:bd:64:9c:e6:47:6b:ac:ff:ee:14:8c:ab:f4:0f:e2:
a6:5f:23:10:12:8f:2f:3a:f3:4b:9e:cd:e8:d2:9b:f4:da:5c:
0b:b5:c9:1b:19:af:92:0a:18:bd:dd:58:5b:6d:c6:4d:f3:f0:
e4:81:1d:f3:d4:c7:50:59:f1:aa:ca:11:5b:ec:7b:fe:83:63:
9c:c2:0e:67:88:04:07:5c:49:45:62:96:a4:5b:eb:f2:4d:20:
cd:0a:2a:55:56:27:9d:a8:36:63:11:1c:2e:80:27:f0:5a:6f:
b9:ac:b9:34:c9:8e:7b:d1:ee:bf:9d:d1:da:74:1f:07:fa:fc:
e1:36:21:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org