Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/323430313a313363303a3a2f33322d3332203d3e20313332363532.roa
File: 323430313a313363303a3a2f33322d3332203d3e20313332363532.roa (raw, json)
Hash identifier: Yabbb0KqNJ7Q/ta8us75gSwIN2Lnk0ddsUQ/i1ndjHM=
Subject key identifier: D7:C3:6E:85:B7:E7:C2:FB:54:59:46:0B:0C:8A:F2:5F:E4:3F:08:90
Certificate issuer: /CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF
Certificate serial: 781116F425298B0CBD7D8D894FB7226BBF0A04C5
Authority key identifier: 2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/323430313a313363303a3a2f33322d3332203d3e20313332363532.roa
Signing time: Mon 11 Apr 2022 15:05:56 +0000
ROA not before: Mon 11 Apr 2022 15:00:56 +0000
ROA not after: Mon 10 Apr 2023 15:05:56 +0000
asID: 132652
IP address blocks: 2401:13c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:11:16:f4:25:29:8b:0c:bd:7d:8d:89:4f:b7:22:6b:bf:0a:04:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF
Validity
Not Before: Apr 11 15:00:56 2022 GMT
Not After : Apr 10 15:05:56 2023 GMT
Subject: CN=D7C36E85B7E7C2FB5459460B0C8AF25FE43F0890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c3:d4:d3:e4:bd:22:32:58:c0:96:df:8b:65:
06:3e:a9:27:26:4c:28:34:ee:3b:3e:2c:67:a3:dd:
04:b6:f3:1b:27:49:63:3a:be:7c:d2:20:74:7a:eb:
8b:f4:41:9d:36:8d:fb:1d:6e:2c:94:a7:96:27:53:
c6:80:78:21:87:f1:a1:4a:53:4d:f2:b6:d4:db:29:
c6:69:99:ce:93:3b:64:8f:98:1f:ed:dd:21:0d:f6:
74:50:47:0a:b1:0d:31:09:4f:a3:4b:43:1c:57:ce:
23:13:62:01:29:5e:b0:b0:6c:0e:e4:3e:9d:70:4e:
74:33:9c:97:0a:8a:a5:6d:4e:f2:31:00:10:40:4b:
e5:0a:d3:89:10:b9:e1:78:ff:61:5b:51:23:e7:81:
11:ae:bb:b8:42:ab:61:f7:ba:3c:d2:2a:d7:10:3a:
02:7d:82:68:44:ac:f5:14:ac:1b:09:74:c7:e1:78:
4a:26:aa:37:47:65:88:f7:c3:17:90:49:0a:d1:f5:
75:c3:73:ff:20:bb:f5:1f:a8:ca:28:ef:d5:b0:5d:
a1:6f:39:53:19:0d:8f:cb:9d:ff:fa:ff:3c:fa:d2:
ab:0c:1c:38:c9:39:e8:51:75:1e:83:80:d2:64:b2:
5f:93:65:a5:13:b0:85:b7:c7:c8:22:3e:a6:7d:a5:
b4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C3:6E:85:B7:E7:C2:FB:54:59:46:0B:0C:8A:F2:5F:E4:3F:08:90
X509v3 Authority Key Identifier:
keyid:2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/323430313a313363303a3a2f33322d3332203d3e20313332363532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:13c0::/32
Signature Algorithm: sha256WithRSAEncryption
21:33:a0:f4:6e:c6:7a:2b:94:97:5d:25:db:86:e4:07:1a:12:
b1:47:1a:bb:b1:3f:f3:64:74:d3:cf:b9:c2:4f:e8:a0:6b:02:
ca:02:2b:da:2e:dc:c7:7a:ef:2e:7c:4f:d9:42:9a:4e:79:69:
57:8f:7f:9f:69:0c:1c:6e:44:4c:fb:fc:a2:13:ea:4a:74:78:
15:ca:09:0f:dc:61:69:c1:b1:70:74:7b:7f:4a:20:cf:07:97:
99:d3:cf:99:51:c5:7f:2f:13:82:50:5a:1e:a4:fa:e3:7f:fc:
02:c6:d7:a1:d1:49:ed:66:a5:96:f6:e9:59:d2:ed:a4:5d:e3:
c0:80:d7:04:8d:ad:47:b7:75:86:e5:ff:73:d3:ef:b9:d4:68:
d4:ae:a0:ef:01:6c:3a:b6:86:6e:49:67:2e:2c:75:6d:7e:70:
c2:68:02:0d:50:79:1d:e6:93:98:fc:ea:0c:fd:d1:5c:4a:37:
5e:c8:12:8e:63:ed:2a:21:1a:d0:d5:3f:7a:7c:54:92:6e:55:
9c:56:cd:91:4a:fa:d8:6a:cd:ac:59:9b:f4:46:55:97:37:6b:
5a:d1:b9:6e:6c:45:6d:90:7e:94:f6:40:78:5c:b4:30:3f:bc:
57:b9:42:40:ca:b8:44:94:17:2d:4b:d6:c1:20:6f:1b:13:3d:
2b:09:4a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-ams.rpki-client.org