Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: G4Ht//gVXon5kkfUIyPshDQIQMRkA8iE6rdXV9dH+MQ=
Subject key identifier: 18:39:D8:1A:A6:62:DC:A4:FF:06:D1:2D:D4:C9:00:DA:B5:EA:B2:5F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 333AE3B2AE224BAB6A334797DCCDB97401C84DE0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:22 +0000
ROA not before: Mon 26 Sep 2022 12:55:22 +0000
ROA not after: Mon 25 Sep 2023 13:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:2d7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:3a:e3:b2:ae:22:4b:ab:6a:33:47:97:dc:cd:b9:74:01:c8:4d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:22 2022 GMT
Not After : Sep 25 13:00:22 2023 GMT
Subject: CN=1839D81AA662DCA4FF06D12DD4C900DAB5EAB25F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:a5:eb:61:4d:7d:90:3b:8a:06:96:99:20:
5b:71:1c:95:dd:5b:17:a0:a9:92:84:28:7b:8e:21:
1b:66:db:b0:db:1a:f8:d9:3c:51:75:1a:7f:14:c5:
1f:bf:92:81:5a:d7:1e:b0:78:a6:99:f6:f8:e4:4d:
a0:28:3e:32:59:38:f3:80:19:7b:ea:d5:24:64:dc:
17:81:39:1d:47:0c:95:ca:03:ff:ef:80:5b:4c:f5:
99:68:5d:5e:65:c7:8b:70:cf:9b:5c:e5:77:03:63:
96:db:b0:9c:97:41:28:25:23:ba:50:0e:f8:39:56:
b0:1d:cb:bb:cd:69:37:04:b9:c4:fe:5a:91:4d:ad:
47:d6:33:35:c9:17:be:56:d1:b8:5c:2c:89:12:42:
1e:6f:39:ff:26:60:c8:20:be:43:8c:1d:27:98:bd:
93:19:a5:93:7f:dd:64:d0:80:72:b1:27:ab:c5:26:
9a:e2:35:4c:b5:ac:b8:f5:60:35:84:3c:97:3b:a2:
95:e5:c1:66:c8:94:13:18:32:01:aa:c9:a3:06:09:
03:fb:50:6b:23:07:aa:ec:74:01:82:6d:a8:67:a5:
df:26:90:8d:ed:1c:f5:da:64:12:d3:77:69:30:4c:
71:49:4e:0f:15:db:72:8c:1a:d8:bc:28:38:b0:06:
e8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:39:D8:1A:A6:62:DC:A4:FF:06:D1:2D:D4:C9:00:DA:B5:EA:B2:5F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2d7::/48
Signature Algorithm: sha256WithRSAEncryption
8d:9b:83:44:fa:65:30:01:1f:1f:3a:35:05:15:80:59:5f:05:
9b:65:68:a1:79:4d:b9:2e:29:0a:c3:ea:ac:8d:ea:72:b5:79:
23:13:6b:92:bb:4b:c7:c1:68:4a:1a:60:eb:b5:31:e9:e1:53:
00:66:83:4a:86:08:29:0a:9a:82:67:9f:dc:32:3a:3d:9a:da:
70:d0:fa:f7:d2:15:bb:48:80:35:3c:5f:8f:a4:37:14:be:24:
94:80:93:7f:38:29:c8:ec:3b:6a:2a:b2:65:b8:10:e5:7a:86:
f2:d5:93:00:e2:71:0c:8f:fe:1c:2c:94:d6:c6:bc:88:98:42:
e9:85:71:7e:0b:f1:c6:45:c3:4f:4d:3a:8e:90:0e:df:0e:0b:
aa:81:61:40:95:42:8f:eb:c2:d3:b8:7e:f6:15:2a:e3:41:73:
10:ac:0b:aa:3c:a0:34:94:e8:ac:e1:42:d8:b5:0b:70:f8:09:
87:c9:78:8b:e1:f2:c6:ff:6c:49:2d:17:a9:de:b7:c8:12:83:
24:2b:c1:d1:59:74:11:fd:b7:6d:06:5b:27:f5:0c:08:0e:ae:
3b:c3:98:e1:10:bd:ca:ca:ab:ae:20:04:27:05:3e:53:0a:a7:
be:a4:61:29:46:50:b2:ce:4a:2c:6c:96:8a:81:fc:61:13:c8:
ef:16:a8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org