Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: oGnS+tCeG2Iib7/Vid1l1okGjbow6O66DUJlEYFvwm4=
Subject key identifier: 3C:DB:9B:09:69:A1:DC:E0:33:38:F8:FD:D9:0D:5C:B8:89:80:72:E9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7633514998E63414BA370AEFD6036A383873EADC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:21e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:33:51:49:98:e6:34:14:ba:37:0a:ef:d6:03:6a:38:38:73:ea:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=3CDB9B0969A1DCE03338F8FDD90D5CB8898072E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:19:a1:c6:be:07:cd:4b:76:96:60:ce:fa:a5:
75:f4:3f:f3:90:f0:b6:d5:d6:cf:4a:ce:f2:d2:c9:
fc:47:10:18:7f:3d:ff:ab:d6:89:77:a7:69:65:a8:
a9:00:35:86:59:0d:9e:1c:5d:f4:6c:4b:9e:44:5a:
02:f0:47:eb:85:dc:56:04:8e:75:dd:c7:49:28:2d:
19:1f:f3:a5:45:71:ff:57:fa:52:58:4b:73:29:a6:
25:ba:f9:d0:5a:86:94:6a:a4:a4:95:80:5f:bf:48:
0d:b7:42:25:9f:64:39:04:49:01:53:ff:72:cf:40:
6d:4d:17:79:2f:eb:26:07:fa:82:3d:97:74:64:9a:
15:7a:c3:b9:59:e7:30:b0:56:59:4b:36:f6:ae:1e:
6e:95:fb:7a:0d:db:35:81:64:10:32:94:30:22:d4:
77:34:2e:fc:85:61:b7:cc:69:21:7b:35:d5:7b:87:
f4:81:07:40:60:65:e7:20:69:48:e1:83:84:c6:f6:
83:98:9f:74:c1:52:31:1a:14:f1:de:ce:45:d1:40:
90:c1:9c:9c:20:69:f6:b8:43:36:ed:e7:0a:38:80:
3f:bd:29:ab:17:4c:b7:eb:39:c6:95:7d:cf:96:cf:
3e:ed:c3:88:3b:42:76:3a:2b:88:66:09:7f:a7:29:
e1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DB:9B:09:69:A1:DC:E0:33:38:F8:FD:D9:0D:5C:B8:89:80:72:E9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21e::/48
Signature Algorithm: sha256WithRSAEncryption
35:f6:b6:ea:0d:99:c9:30:b6:eb:27:16:a3:6d:c6:4c:1e:e1:
dd:1c:94:57:d9:44:26:fc:c4:41:2f:11:59:22:a7:e1:46:39:
f1:ae:26:80:d0:48:da:ed:64:c0:e3:48:a6:c9:18:0d:ce:68:
ab:25:0f:74:cb:cc:95:37:0e:be:41:60:bb:6d:82:66:54:70:
ed:58:d2:fc:1d:08:5b:68:5a:eb:87:50:7c:52:e7:56:52:bc:
9c:23:b2:55:1d:c2:47:ae:6e:88:3b:66:c9:14:b2:77:2d:d0:
32:98:1a:8c:79:1f:c7:15:e6:e8:5f:31:d6:1d:ae:0c:96:84:
a0:81:47:09:49:f7:7c:51:98:dc:fa:65:1f:77:b9:b7:24:4c:
e5:88:c9:f1:b5:6b:b6:aa:91:2d:95:6e:98:da:4b:ba:91:97:
b8:24:7f:f2:b7:72:ca:8b:b3:df:64:b6:21:e9:b5:48:a0:7e:
46:25:aa:c6:b6:8c:29:b0:cf:ea:b1:a8:c2:e5:47:9e:22:e3:
0a:0b:24:bc:a9:ef:e7:b3:d5:f3:c5:59:b5:7d:28:36:22:7f:
9c:a8:d0:fa:0b:34:c5:1e:b5:19:52:29:af:a2:b6:d4:cc:9c:
cf:53:76:35:b7:98:6a:2d:8c:b3:e7:59:b1:81:00:c6:2f:04:
77:ea:5a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org