Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4/fi+JyyOp85q6D3VTWUwjrDMmvRlftEgz2lWM0JE7s=
Subject key identifier: A0:68:8D:EB:01:BB:86:E6:3E:6F:F3:EC:79:78:50:17:B8:15:55:1E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 397B46B434FF3EDB26156FBA7D58BC17619C5BC9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:15 +0000
ROA not before: Mon 26 Sep 2022 07:57:15 +0000
ROA not after: Mon 25 Sep 2023 08:02:15 +0000
asID: 59282
IP address blocks: 2400:d680:32::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:7b:46:b4:34:ff:3e:db:26:15:6f:ba:7d:58:bc:17:61:9c:5b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:15 2022 GMT
Not After : Sep 25 08:02:15 2023 GMT
Subject: CN=A0688DEB01BB86E63E6FF3EC79785017B815551E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8c:7c:cc:f7:3e:5a:16:1c:ba:d8:9e:6b:d4:
fc:8d:55:d1:46:01:95:85:46:b5:c9:9c:fd:00:ab:
b4:6f:8b:6a:cd:e8:88:66:60:d0:97:6b:0e:65:63:
91:fb:ae:cc:60:58:5e:21:19:63:c4:7c:92:f8:62:
b7:15:19:8e:15:08:d5:7b:18:6f:ba:eb:11:4e:b5:
e7:45:2d:19:36:24:5f:e2:13:ea:f6:ce:f7:a3:31:
c7:30:1f:15:68:13:8a:fa:86:08:ed:43:46:bb:7e:
43:76:d7:56:55:59:3d:f0:e3:75:35:93:bb:3c:f5:
7d:85:d6:27:59:0a:3d:76:a9:d3:25:a6:11:3a:98:
cc:10:18:b0:be:13:72:70:7e:b6:69:3c:b6:df:42:
17:05:e5:a9:a1:5e:31:f0:2d:7f:c7:a9:1e:b3:04:
c7:20:d7:5f:1c:d6:c1:2a:75:cd:db:ce:84:c3:ac:
8e:a3:21:c0:d3:70:01:75:e5:79:72:47:bf:5e:13:
58:dd:57:ed:24:83:06:95:a8:eb:08:e2:2b:00:9c:
15:95:d3:91:e9:69:8a:7f:e5:4a:ae:f9:64:d2:a6:
27:63:24:f9:48:f7:82:02:84:a5:3e:79:26:1d:70:
19:fc:73:8a:1c:7f:0f:3a:f1:15:65:d4:1c:ba:c2:
d4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:68:8D:EB:01:BB:86:E6:3E:6F:F3:EC:79:78:50:17:B8:15:55:1E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:32::/48
Signature Algorithm: sha256WithRSAEncryption
b1:44:41:87:fa:6c:9c:1b:d5:f8:44:69:8e:19:59:72:5f:58:
88:54:be:2b:2e:cd:fa:12:50:bf:7c:cf:92:71:6c:ef:ef:b8:
e7:28:bf:79:3b:96:58:88:f6:a5:41:41:9c:a3:7c:a6:29:05:
6d:6d:2b:36:f8:b7:21:b3:9d:d0:86:88:36:06:38:b0:52:4b:
69:40:c1:2f:5c:45:14:23:73:7e:da:29:05:18:3b:ca:71:80:
0d:27:a3:0b:86:92:eb:de:17:06:21:fc:47:3d:6e:09:84:80:
a1:f4:83:56:22:be:5c:84:3e:85:41:5e:f0:f8:77:8b:70:1f:
57:91:5e:5c:39:f9:68:d3:df:2d:45:d5:b5:ab:0f:f4:bf:b4:
2e:82:7a:76:5c:38:ed:57:db:9c:e2:76:87:48:23:70:86:ff:
ce:7c:88:17:55:16:20:72:6b:fd:e5:5b:dc:2a:87:eb:ee:fa:
fd:96:ab:47:95:53:e8:ee:1d:07:6d:a2:3b:2c:a8:53:7e:4d:
20:29:94:12:68:dd:8d:89:5e:91:45:48:c1:be:1b:17:c6:d8:
3c:ef:77:6a:ea:85:3d:c2:d6:4d:75:c8:e9:df:d5:6c:5a:59:
b6:6a:bb:9d:6a:6d:3c:e0:33:53:cb:a4:28:5c:de:1d:64:37:
3d:1c:31:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org