Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3139663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ymAL2OjiQ8rKpCb3l7k2Ts9+AEVQPA+HXqsXWinaMZM=
Subject key identifier: 36:A9:2A:88:D5:E2:C4:81:4E:01:DE:4C:2E:D0:F3:61:40:84:6F:CE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 33F18A28C8E461951309A9E4BEC49402596D922D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:02 +0000
ROA not before: Mon 26 Sep 2022 07:57:02 +0000
ROA not after: Mon 25 Sep 2023 08:02:02 +0000
asID: 59282
IP address blocks: 2400:d680:19f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:f1:8a:28:c8:e4:61:95:13:09:a9:e4:be:c4:94:02:59:6d:92:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:02 2022 GMT
Not After : Sep 25 08:02:02 2023 GMT
Subject: CN=36A92A88D5E2C4814E01DE4C2ED0F36140846FCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:33:f8:c6:2b:04:0b:21:f3:23:6b:78:9f:86:
9d:ec:16:98:60:7b:35:66:a6:d8:c7:16:bd:d9:18:
af:b0:31:19:f9:e3:99:69:be:a7:f6:41:35:e5:58:
4f:cd:55:ae:80:52:c6:de:6f:b7:20:79:1f:1e:d1:
6f:10:d4:ec:95:25:2a:10:c0:31:b6:5f:ab:7a:ae:
c0:e9:d4:43:7e:cd:68:37:74:db:5b:82:b2:55:79:
a8:74:60:cd:50:54:6e:2f:f5:57:7d:4e:c3:f7:09:
d5:85:bd:50:7e:86:2b:b4:b1:55:b6:b6:5b:48:88:
ed:e9:ae:14:74:5e:cd:37:a7:af:78:62:46:bd:49:
ba:1c:a8:13:ea:2f:95:cc:44:9f:0b:9b:00:ee:4c:
73:ed:2b:f4:10:de:a2:4e:a9:b7:29:e3:83:a0:f2:
9d:73:ea:d4:f8:72:74:33:48:b8:46:77:ac:77:aa:
ae:79:97:a9:78:01:b5:db:16:78:63:84:c0:d9:23:
12:6e:a7:76:79:6e:cd:4b:ec:a4:1a:c8:a0:81:17:
81:72:99:63:d8:4b:c8:5d:b1:69:70:6f:fd:41:ce:
64:0f:26:c9:64:4c:cf:c1:e1:46:e1:a9:0d:c7:d9:
41:9a:d9:bb:39:4a:76:2a:79:bd:65:62:15:81:22:
fe:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A9:2A:88:D5:E2:C4:81:4E:01:DE:4C:2E:D0:F3:61:40:84:6F:CE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:19f::/48
Signature Algorithm: sha256WithRSAEncryption
4c:51:1f:1f:52:00:87:3b:69:6d:06:52:56:b7:9a:23:b6:df:
84:8e:60:36:80:69:ab:4d:84:bd:7d:c8:52:c0:1d:f6:eb:a2:
ed:33:ed:45:25:6e:da:ce:8d:44:84:20:d0:aa:f4:91:8e:11:
f0:3b:b0:27:d7:f7:a3:94:23:f0:3c:a1:42:f6:58:b1:35:50:
9f:00:83:96:c5:26:11:69:b2:66:85:47:a7:00:ee:a7:92:06:
99:d6:86:bf:04:28:37:9a:69:e5:94:fb:e9:d4:d0:bb:5b:4f:
64:06:de:00:17:86:cf:f0:c0:03:f2:78:dc:b6:00:b3:69:af:
67:6a:52:4e:ec:c9:60:d4:c5:d3:54:46:47:a0:7a:6c:57:ec:
7b:09:d4:cb:d5:7d:a9:90:1a:91:0d:f5:9e:16:63:2d:23:dc:
0f:df:2a:00:f2:e9:5b:e5:25:c0:ce:c4:96:a9:f0:83:6f:7c:
51:9f:28:23:e0:a9:d2:95:0e:42:9c:4e:dd:05:8c:16:54:f7:
c8:82:74:df:a2:38:d8:c1:f0:07:6f:ae:e0:15:34:d9:b4:02:
d9:6e:9f:da:e3:be:57:f5:0d:27:58:84:ce:91:e4:e0:27:c7:
48:fc:8d:39:45:f6:30:70:11:45:0b:78:89:b6:5d:e8:53:2d:
05:34:85:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org