Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: J3kVR/lGK0ioUayDGFpgZmZ8QvApTTmXwgXjZW0b53g=
Subject key identifier: D1:E0:06:7D:65:E3:16:F2:12:C1:2B:20:4F:47:05:3A:21:B2:13:6D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 43FD86DB21B7DB64093D1CDC155D5F0A553E1D07
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:33f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:fd:86:db:21:b7:db:64:09:3d:1c:dc:15:5d:5f:0a:55:3e:1d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=D1E0067D65E316F212C12B204F47053A21B2136D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ba:44:7e:62:1d:0d:63:46:a5:54:b8:e4:7c:
28:67:31:e9:95:89:a8:60:e0:a6:21:a4:5f:27:b1:
6f:7e:d5:12:d9:d1:11:42:7d:0b:43:b5:91:44:04:
a5:f6:f6:9e:ea:b5:46:41:44:b4:cb:f1:67:cb:a9:
63:76:b7:40:0d:d4:6c:9e:11:5a:5e:c7:bf:10:7a:
5a:6e:85:ab:6c:36:b8:8b:2c:7e:23:06:3f:30:e6:
28:48:f8:9d:dd:4b:74:97:73:f8:02:05:12:1a:b3:
df:09:6d:bb:81:1b:ad:e1:b2:32:36:63:1f:02:bc:
87:13:cf:a7:4a:a0:1c:02:21:84:8b:06:18:a3:02:
8a:14:02:25:34:ad:d8:bb:df:80:0a:e3:7e:0b:dc:
67:a6:03:34:d1:01:96:9d:ab:a6:39:e4:ff:21:43:
a5:23:7b:84:cc:f3:7b:50:a3:3d:96:8a:c0:c4:74:
1e:fd:c6:78:b2:34:16:ae:74:cc:e5:6a:6d:40:e2:
a2:12:57:98:20:96:3d:4e:72:9c:9f:47:9e:5f:42:
0d:2f:ec:c8:4c:fd:ee:9a:fc:c5:6b:8a:a2:d8:7e:
f1:c2:16:24:e5:ab:2f:3c:45:5c:96:2f:1d:48:31:
fb:50:f7:50:18:97:21:a0:c1:71:8c:b7:7b:a4:1c:
77:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E0:06:7D:65:E3:16:F2:12:C1:2B:20:4F:47:05:3A:21:B2:13:6D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:33f::/48
Signature Algorithm: sha256WithRSAEncryption
c7:e2:3d:07:5f:dc:ac:94:de:0e:ca:22:da:2e:52:92:8a:7b:
0f:b9:5e:13:3f:ff:e5:7f:5f:d9:29:82:0d:7e:a4:b4:b3:fd:
cb:e2:b6:6c:2f:f5:aa:72:b5:4c:7b:3d:92:63:c5:d6:7c:57:
c0:56:43:ad:7e:ca:53:71:ad:ee:51:17:48:48:1b:55:42:9c:
d3:33:f1:58:4d:92:75:de:f1:cf:d6:67:b9:fa:cd:03:51:0f:
33:23:30:fe:23:45:3c:97:45:09:ba:7d:1a:83:67:c7:f8:c9:
03:37:fc:8d:2f:4c:6a:e5:bc:1a:8c:48:71:5a:cc:d3:09:82:
67:ce:d3:8b:f6:6c:50:0e:49:c2:41:d4:40:98:ef:f2:22:0e:
8f:e9:7a:ad:8c:59:76:09:bc:5a:80:a3:d4:77:8d:e5:df:fd:
88:e8:45:f1:52:61:1c:62:5b:3d:73:c4:2f:ff:dd:00:ab:ca:
f7:71:5a:3f:a1:e3:f3:68:ab:c3:5e:48:ff:29:4f:bd:ce:23:
8e:89:07:7c:cf:79:c1:6d:20:15:70:7a:72:bf:bc:67:f5:00:
a4:bf:89:7f:e7:86:44:a4:b9:58:c2:8e:43:9a:fb:c5:af:13:
dd:62:34:0a:82:6e:6c:91:f4:f2:93:95:c6:b0:ad:23:9d:92:
19:00:b9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org