Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: C7PoRDvx3AWoEPeS7oHxB3+vA88YFSN/5fbpmaG937E=
Subject key identifier: 33:69:E7:74:4E:31:36:EE:29:F6:D7:81:BC:C4:B9:A4:12:F3:8F:F8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 19FAC627F27F48CEA8DAE2B8E3FE8C916558F963
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:43 +0000
ROA not before: Mon 26 Sep 2022 07:56:43 +0000
ROA not after: Mon 25 Sep 2023 08:01:43 +0000
asID: 59282
IP address blocks: 2400:d680:21d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:fa:c6:27:f2:7f:48:ce:a8:da:e2:b8:e3:fe:8c:91:65:58:f9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:43 2022 GMT
Not After : Sep 25 08:01:43 2023 GMT
Subject: CN=3369E7744E3136EE29F6D781BCC4B9A412F38FF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:35:7c:71:f6:0a:f8:b4:27:74:f8:e6:25:
e4:bf:4c:07:74:d3:da:7f:54:d5:80:37:0e:6f:fa:
32:9a:9d:86:ca:46:25:97:11:9b:6a:e2:f4:24:8d:
d8:b5:8f:e0:ab:5e:89:ea:95:70:a7:9e:57:62:49:
26:e9:11:5e:2a:9b:31:80:81:38:e2:d4:a3:f7:5b:
3b:e3:10:57:05:9a:b9:8b:96:95:f7:18:c4:1c:f9:
a8:c0:50:bf:5d:4c:d6:1e:bc:2d:3b:34:f0:c5:45:
24:6d:6c:cc:39:fb:52:69:34:53:a1:b9:aa:ce:05:
8b:ae:a6:07:02:60:77:27:50:0d:c3:37:bc:7d:0b:
33:a3:b6:23:2f:dc:86:d1:3c:f7:d7:10:2b:a5:db:
1b:62:b0:d6:8b:20:f4:66:4e:6c:8d:88:09:79:09:
2b:a5:e9:63:19:8a:ea:63:dd:d8:74:ca:79:31:4e:
64:3d:36:8f:eb:e2:59:63:15:3b:20:55:4d:4b:37:
97:3d:88:7e:8e:8e:f8:53:4f:63:88:1e:e4:83:45:
21:bd:21:a4:a7:89:d8:8f:42:72:53:92:05:2a:c3:
70:9d:36:bf:1f:ea:88:86:d5:49:b8:b8:ad:a6:72:
9c:47:86:4f:33:d5:98:cf:9a:2c:e6:d4:0a:10:d1:
b4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:69:E7:74:4E:31:36:EE:29:F6:D7:81:BC:C4:B9:A4:12:F3:8F:F8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21d::/48
Signature Algorithm: sha256WithRSAEncryption
5e:84:a4:e5:11:21:51:d1:3d:32:97:6f:3c:ed:00:3e:a0:95:
04:e8:ea:f9:80:11:fa:cf:60:bf:62:d5:f9:7e:23:5d:74:74:
c3:d6:1d:df:5e:83:2e:5a:b2:62:98:ec:27:bc:de:5c:8a:80:
00:09:61:16:de:a5:ce:d4:4b:aa:05:1c:9d:d5:07:e5:21:92:
38:32:a9:53:e9:ee:e4:4e:b3:e0:21:d7:25:67:88:e9:16:45:
21:d1:f2:b5:5f:c2:26:d5:e0:ac:a4:b5:75:7d:3e:b9:91:f1:
41:d4:1e:4f:cf:72:a8:c0:1f:04:15:c7:05:d3:b3:f6:6c:52:
6c:bd:1d:6d:5d:03:2f:dc:79:15:55:a2:54:de:b1:b3:a1:7b:
96:5e:c1:a8:13:dd:0b:dc:91:4c:cd:e5:f0:d7:43:04:1a:2d:
8c:74:fe:e4:9e:fb:87:b5:6f:05:cb:92:96:ba:c6:44:ad:09:
4a:e6:90:8c:77:7b:bd:a0:b9:52:be:7f:d3:ff:a4:01:e6:b8:
d3:0a:d7:1b:9d:91:af:ef:d9:0a:e5:d5:9c:5a:f3:4d:95:82:
ed:11:12:31:5b:41:0a:d2:17:37:39:e0:1a:f7:7c:41:f0:35:
14:ad:e8:52:ff:e2:ef:a1:56:2e:52:8c:4c:c4:cc:15:b1:65:
fd:e8:e9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org