Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hmZChTZDxOhfihH+xc1Cg8Dc+IMAvzGJvTQxH+89OAg=
Subject key identifier: D1:2D:69:8E:49:9B:71:00:4F:97:DA:93:7D:6A:6F:31:42:EB:46:44
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 33729147737AB0B6EA83B6FAECE9436027867533
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:28 +0000
ROA not before: Mon 26 Sep 2022 09:55:28 +0000
ROA not after: Mon 25 Sep 2023 10:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:30e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:72:91:47:73:7a:b0:b6:ea:83:b6:fa:ec:e9:43:60:27:86:75:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:28 2022 GMT
Not After : Sep 25 10:00:28 2023 GMT
Subject: CN=D12D698E499B71004F97DA937D6A6F3142EB4644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:af:23:cf:bb:00:c4:4a:8d:0e:ae:54:af:
d7:81:67:63:7d:c9:43:f4:22:43:44:54:1a:ba:61:
cc:e0:c0:65:4b:c8:a2:73:b0:5f:c0:8b:6e:99:bc:
da:d5:83:71:90:8c:4e:ce:58:91:38:1e:29:a0:10:
7e:bf:96:12:6f:d6:21:63:a7:d5:19:9b:0a:98:eb:
e1:cf:00:3d:44:91:45:50:aa:4e:a7:41:96:13:f3:
cd:1f:8d:6f:c4:c2:5e:e7:b6:af:df:07:0b:f2:a6:
b0:9f:94:f4:aa:b4:25:8b:46:df:ca:ad:16:10:97:
86:9a:e6:44:b8:5f:54:8a:c1:84:6f:32:a7:8c:34:
c9:26:17:b2:6d:a7:b7:aa:2f:de:43:6d:b4:f9:b5:
8e:0f:75:64:5d:92:14:99:91:aa:3f:3b:3e:07:47:
83:3f:f7:dd:84:6b:f7:3d:64:6c:81:88:92:c0:90:
f4:5d:cf:30:47:19:ee:c2:a5:dc:44:6c:a0:26:ad:
9a:19:3f:ef:fc:c7:63:ab:a6:af:39:23:97:12:3f:
17:cd:c6:37:db:40:65:f2:0a:27:9e:bb:4d:25:43:
61:da:77:6c:d4:ce:2e:c0:da:5e:15:18:66:df:88:
0f:8b:81:3b:0c:4b:29:77:93:34:e3:4c:4f:56:a9:
1f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2D:69:8E:49:9B:71:00:4F:97:DA:93:7D:6A:6F:31:42:EB:46:44
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:30e::/48
Signature Algorithm: sha256WithRSAEncryption
61:0e:ab:24:59:1a:87:cd:9b:69:c4:3d:90:7b:47:26:ce:ea:
78:9c:a7:d6:14:40:53:29:90:a2:b9:d2:f2:99:fe:01:77:fb:
49:79:15:a0:d6:0d:dc:17:97:f4:d8:7a:fb:80:c3:f4:5c:2b:
08:6d:a5:c5:7b:10:47:58:7b:a7:84:68:bc:a3:34:ae:52:7b:
4c:c4:9b:96:0c:cc:55:f9:90:56:5b:59:3c:0e:5d:1e:a3:2c:
df:ad:3e:3f:56:71:92:ee:ac:38:45:61:a4:cc:0a:86:be:48:
14:11:e8:9c:d6:07:5d:51:a3:14:19:49:a3:28:eb:b0:31:9e:
b4:10:07:66:01:e3:9c:46:e4:46:a0:88:d3:74:33:ea:b4:cc:
c9:d0:fe:62:2a:b1:43:26:33:59:3e:5c:4b:86:65:28:f1:a2:
e3:8c:31:b9:16:17:44:19:25:6c:85:f9:9d:b6:a8:25:41:84:
61:f2:83:86:ee:2e:d5:60:1f:38:a9:f8:a5:2a:49:87:02:58:
e1:df:1d:2e:95:f9:4b:6f:3f:33:20:4a:b2:e6:64:62:a1:ad:
a1:93:71:ee:ac:a9:ad:8b:71:fb:d9:db:f9:5b:01:81:5d:6c:
4b:d2:ce:9f:c6:6b:8d:d4:d4:34:d5:0e:79:78:2a:74:3b:67:
fc:d8:11:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org