Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 6D3OzOiq329gW2giPhr2YrMj69dMKxJSvii64VWjgnc=
Subject key identifier: AE:50:A8:8B:DC:3E:3D:8E:89:AB:94:CE:40:C1:FA:92:D8:53:BA:35
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3072A9F24E17C0467E07CE18F5978B5DD119C491
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:21 +0000
ROA not before: Mon 26 Sep 2022 12:55:21 +0000
ROA not after: Mon 25 Sep 2023 13:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:2fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:72:a9:f2:4e:17:c0:46:7e:07:ce:18:f5:97:8b:5d:d1:19:c4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:21 2022 GMT
Not After : Sep 25 13:00:21 2023 GMT
Subject: CN=AE50A88BDC3E3D8E89AB94CE40C1FA92D853BA35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3a:8d:ad:85:5d:d6:f1:40:ef:7f:30:9a:8a:
c8:4e:ef:9a:78:06:ee:7a:48:fb:23:1f:42:b7:67:
8e:ad:3c:87:f7:19:20:f9:0d:04:3e:c7:6d:eb:ef:
d7:20:b8:96:d1:cc:a6:58:87:5e:e6:41:ad:7a:c3:
6f:03:50:cc:03:04:44:2a:cb:ce:ef:49:ae:29:5d:
66:51:f1:b6:82:5e:f3:43:a0:ce:77:ba:66:a6:15:
84:22:89:e6:bd:cf:c8:4c:7a:01:c8:f5:9d:58:e0:
8b:92:f0:32:7d:f7:e5:61:dd:5d:dd:53:7f:24:f5:
36:ea:84:b2:93:6d:ee:e3:6d:b4:0b:4b:fe:b5:81:
77:0e:39:ad:44:ae:84:3f:8e:93:88:e6:04:d0:dc:
f7:44:b8:eb:bf:72:23:90:30:64:c3:d9:f8:13:b1:
2d:e0:fd:75:1c:28:75:b1:44:71:09:d2:df:24:99:
70:60:a2:01:6e:69:26:21:6f:69:e0:ff:c8:b9:b3:
ec:77:53:e2:6b:6e:61:29:6c:a0:8c:04:df:54:af:
3d:73:9b:c7:e9:40:07:5d:73:97:3e:ae:11:b9:88:
ee:4c:48:0e:3c:cd:d8:a2:c1:16:84:a3:51:4b:9d:
61:91:f0:70:62:28:16:85:a3:0a:80:9b:ef:6e:01:
7f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:50:A8:8B:DC:3E:3D:8E:89:AB:94:CE:40:C1:FA:92:D8:53:BA:35
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2fc::/48
Signature Algorithm: sha256WithRSAEncryption
a2:5e:b6:9e:fc:c9:28:3a:b9:c6:70:ef:30:1e:87:12:16:11:
55:78:18:cf:b8:5d:06:04:d7:d1:f4:5b:60:88:22:b3:b5:9e:
80:6f:12:55:eb:dd:c4:ed:63:ab:ba:e9:11:85:03:b9:d2:40:
bc:a8:dd:a0:d7:99:22:0b:08:6d:cd:9d:be:cb:6e:56:3e:03:
2b:b6:a5:87:87:5e:64:8d:95:3b:58:ff:77:c2:00:a3:49:b7:
e4:27:9d:10:40:92:22:64:a7:6c:53:43:ee:40:3e:1c:ef:52:
42:7b:8e:db:da:a8:45:ab:bd:ec:6a:25:5c:8b:45:48:76:d6:
66:cd:b5:d8:ae:13:14:2b:22:09:41:96:f9:b4:ae:1b:b3:d0:
85:1d:6e:3c:70:16:45:43:f7:da:a4:a4:4d:45:99:f0:08:ae:
3a:f5:f2:ae:4f:08:23:34:65:5a:a8:4a:5a:82:7f:16:56:4e:
2a:01:7c:2d:e5:02:bb:c6:85:dc:6b:6f:29:28:f8:bf:7a:d1:
6d:e7:7e:40:76:3f:47:63:ee:64:b9:3d:8c:33:f7:1f:e7:e2:
c6:86:21:49:f8:91:7c:52:a3:2b:9e:90:06:fc:15:0b:9e:0f:
f4:32:4f:7a:1b:19:a6:23:08:e0:4f:64:45:4f:ef:c0:fa:44:
af:22:fe:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org