Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: BgLuqNqPzE+IopXedM5p5MKy/NupXnrVaS69sBm/DhE=
Subject key identifier: 3D:82:06:7D:A1:30:1C:D4:6F:0A:D9:8B:C1:8B:F4:94:66:4F:75:BA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 40CCB7865C6A49F92D1154967680A5D2F2469D0F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:13 +0000
ROA not before: Mon 26 Sep 2022 12:55:13 +0000
ROA not after: Mon 25 Sep 2023 13:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:2dd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:cc:b7:86:5c:6a:49:f9:2d:11:54:96:76:80:a5:d2:f2:46:9d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:13 2022 GMT
Not After : Sep 25 13:00:13 2023 GMT
Subject: CN=3D82067DA1301CD46F0AD98BC18BF494664F75BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1d:ad:47:23:5d:fc:02:28:60:19:73:57:91:
94:0a:65:12:44:ec:67:12:75:c8:5b:89:3e:50:3b:
99:25:dc:49:64:12:19:f5:52:c7:f9:dc:86:5f:51:
fb:83:7b:6c:60:a1:a3:92:f8:d9:db:52:6e:0c:8c:
9a:34:c3:7b:b0:51:f2:9d:12:8c:77:57:bd:96:fb:
c6:33:bb:13:4b:5e:bd:94:7a:9d:2b:d7:17:e2:a3:
b3:24:3c:0b:f8:6f:56:05:32:96:e1:14:25:3c:45:
48:7a:e2:34:5b:d2:2e:c9:5b:e4:4c:3a:65:f1:39:
b8:17:a7:fa:b2:cb:7e:e1:e4:e2:2e:11:fb:c4:f3:
ec:a1:bb:7f:b1:4d:05:89:58:35:9a:57:dd:56:29:
b9:e4:92:66:5b:1e:0c:8b:34:29:de:ea:91:5f:c6:
82:f8:84:57:82:63:2e:3e:f4:a9:d0:54:04:db:85:
ef:1d:ba:9c:02:cd:a0:8d:3d:a7:17:74:6f:22:11:
35:06:7c:f1:0e:e0:d2:e2:0d:97:c2:c1:b6:43:8b:
79:30:dc:8c:41:82:20:1e:ce:89:2f:8c:34:2b:12:
61:e2:6d:a4:0e:57:d9:67:b7:74:fe:12:3b:12:26:
c7:56:f4:b0:c6:da:55:53:53:a4:86:9b:82:2e:75:
94:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:82:06:7D:A1:30:1C:D4:6F:0A:D9:8B:C1:8B:F4:94:66:4F:75:BA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2dd::/48
Signature Algorithm: sha256WithRSAEncryption
7e:26:44:cb:45:1b:3e:73:bb:7e:62:9b:8c:fe:76:73:bb:6f:
37:27:d6:0b:45:64:3c:6b:2b:9e:38:f8:a4:1c:86:e0:f6:b0:
99:83:21:dc:d5:f6:db:6a:0d:5e:52:d0:25:c0:b5:7e:4c:e5:
8b:61:24:93:9f:75:71:c4:96:33:5a:b7:f9:83:b5:72:60:12:
37:7b:2e:01:0d:c9:8f:91:66:25:1c:cc:fd:ec:4a:1a:4f:b1:
c5:fd:cc:75:e3:fe:b3:d4:a7:4a:1f:f6:38:85:59:1e:9c:25:
64:3c:84:c0:f9:5f:58:cb:5c:43:75:18:85:d2:d0:5f:ba:5d:
63:2a:90:09:1c:7f:81:ad:b0:23:db:c4:d6:cc:98:e3:1c:a4:
83:51:9b:cd:ad:7f:a6:0b:84:ea:4e:4a:77:50:72:ac:9d:db:
73:8c:fd:ba:bf:c2:7a:e7:6a:66:49:d9:1a:6f:19:1c:fd:6d:
a9:01:cd:20:a5:79:ac:80:d5:f6:f7:dc:3e:fb:07:7e:34:2d:
5e:15:24:5d:fe:22:37:6e:4f:48:4e:25:d1:95:b9:04:18:a2:
13:29:23:9a:61:f5:03:d6:3f:ca:e6:ad:35:2d:a4:c0:1d:90:
01:54:52:3c:2e:e4:28:a7:f7:fd:f7:b2:29:59:2c:90:9b:69:
5d:28:b0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org