Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Y0pxrFB3IJSPcvbaJ5mw0CBWPu2GiBD49BnHNoIPFTQ=
Subject key identifier: 98:7A:55:DF:FD:22:D0:B5:40:1E:D0:24:64:46:F7:7D:E2:32:AE:BC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3668A823A89B27B7433325458C02AED955AAB4EE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:06 +0000
ROA not before: Mon 26 Sep 2022 12:55:06 +0000
ROA not after: Mon 25 Sep 2023 13:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:2ad::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:68:a8:23:a8:9b:27:b7:43:33:25:45:8c:02:ae:d9:55:aa:b4:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:06 2022 GMT
Not After : Sep 25 13:00:06 2023 GMT
Subject: CN=987A55DFFD22D0B5401ED0246446F77DE232AEBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:db:c3:7b:88:ad:fa:ab:99:50:cb:49:1b:
f7:42:6e:34:e9:9c:ee:0d:3f:b7:11:a3:62:41:86:
36:64:a0:bf:11:f1:24:2c:73:5d:7f:62:2b:06:8e:
1f:48:a1:9c:41:6d:98:3d:a6:96:39:12:2c:04:dd:
75:8a:e9:a7:73:c8:6e:57:c9:06:57:64:cd:20:a1:
59:13:80:b3:9f:db:71:3a:38:aa:ff:ff:0f:5f:dc:
c2:fa:33:df:28:84:09:81:37:3a:bf:0a:e6:83:12:
d1:e5:0e:7d:ff:e6:34:19:fd:8c:a4:17:db:13:1d:
2c:be:9b:57:c1:dc:0e:26:30:ad:09:57:e5:50:d7:
b2:ab:15:4b:8c:df:84:60:ab:45:2e:69:38:d7:07:
dc:e2:79:f8:6f:d3:15:0e:1b:40:3f:c4:a1:95:23:
e2:20:53:e4:63:59:f3:77:2d:fc:76:2b:a2:5c:df:
80:31:22:81:bc:7f:cf:d5:1a:ae:6f:7b:62:8c:c5:
5a:05:2f:63:3b:33:ab:a1:65:72:7a:32:2e:ea:2d:
ce:fe:ef:20:41:bd:d9:ae:d7:77:ad:38:a3:c5:46:
6a:ef:b9:31:43:a5:a2:ac:f8:ce:df:fe:01:23:39:
64:ed:11:6f:bc:a4:d2:b7:db:bf:4f:46:ff:04:64:
5a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7A:55:DF:FD:22:D0:B5:40:1E:D0:24:64:46:F7:7D:E2:32:AE:BC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2ad::/48
Signature Algorithm: sha256WithRSAEncryption
69:39:ac:31:d1:3c:99:24:76:42:64:84:b8:67:0e:fd:67:84:
c3:04:2a:bd:cb:e3:70:db:dc:47:dd:17:35:bf:da:11:2c:5f:
c7:a3:53:8d:61:92:83:c7:92:5c:5a:cc:da:19:29:42:bf:0d:
a7:13:e4:57:4a:e3:18:72:5d:82:b1:f8:59:01:af:66:52:10:
b4:11:4e:0f:77:e5:32:15:50:c4:70:29:74:2c:b6:02:a1:e7:
c4:46:b7:1a:70:ec:b0:36:5a:ee:1a:c9:61:6a:20:d0:95:cd:
f4:53:46:13:d6:34:bf:00:f5:3a:9c:f3:8e:a3:0f:e4:2b:38:
86:07:e4:12:54:a9:d0:d1:e1:19:91:b2:38:56:64:45:4b:7e:
bd:7f:3e:5d:ac:8f:4b:6b:e6:29:e2:57:84:93:ff:e4:a9:06:
26:cf:a0:df:35:4c:5e:9f:6c:ef:89:34:8c:95:39:f4:2e:8f:
ab:ba:c1:4d:c3:3a:03:8a:08:64:02:35:80:ca:df:60:38:d7:
0c:47:76:48:59:93:4a:cb:45:5d:ea:07:09:29:be:fe:a7:b2:
55:a3:44:eb:fa:87:c3:18:80:16:57:e5:b3:55:6c:8e:33:55:
e7:53:e2:61:44:46:9f:af:c8:fd:04:a5:42:e0:07:57:a6:5e:
6a:05:b4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org