Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qzJtypp25qsUNo5Oc/m+YNxaaswBzsasOopeKjahczM=
Subject key identifier: 41:08:7A:9F:2B:DD:4A:A3:61:67:F1:8A:59:BA:44:47:2D:76:B1:0F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 188FDC9B81B2D1C837FA58915D3C4A4EB4D02297
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:49 +0000
ROA not before: Mon 26 Sep 2022 10:55:49 +0000
ROA not after: Mon 25 Sep 2023 11:00:49 +0000
asID: 59282
IP address blocks: 2400:d680:382::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:8f:dc:9b:81:b2:d1:c8:37:fa:58:91:5d:3c:4a:4e:b4:d0:22:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:49 2022 GMT
Not After : Sep 25 11:00:49 2023 GMT
Subject: CN=41087A9F2BDD4AA36167F18A59BA44472D76B10F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cb:5b:1b:b7:e3:66:c6:0e:ef:50:5a:84:78:
72:73:d9:87:6e:56:36:68:a1:5d:c9:10:57:17:38:
2c:ed:e6:6d:ab:66:02:7e:4e:f1:88:2c:4a:2b:56:
01:df:f2:b6:c2:7d:10:dd:90:57:7d:35:2a:f8:82:
72:f9:46:c2:51:65:ad:c2:3b:d3:cb:f5:c1:d8:cc:
d2:ef:a6:49:64:80:5b:e5:48:0b:f4:c0:50:9d:6a:
97:d4:24:c3:0c:f3:53:90:eb:73:28:e6:69:5c:be:
63:0c:79:87:1f:f5:6e:7a:94:3e:f7:c1:ac:c8:77:
27:a2:e2:ae:cb:37:fc:41:63:1d:d6:0d:d4:c7:9c:
5d:41:c8:77:24:3a:ee:92:9b:c5:37:54:03:95:ea:
27:49:fd:6a:d5:44:1e:6a:80:d3:fb:44:c2:64:99:
c5:5c:bd:21:6a:3e:2e:af:86:2b:0e:d8:a8:20:b6:
17:e5:66:ff:6b:db:cb:86:3a:e8:0a:01:f0:e7:ab:
0a:e4:27:bf:cd:e2:cb:a2:7a:ae:3c:2a:16:b4:07:
86:2b:dc:af:12:ad:33:48:e5:38:9d:a9:12:e6:f2:
0b:5e:fd:42:15:b2:f9:bd:6c:e1:9c:56:52:ed:7d:
1a:2f:0e:49:2c:7a:d8:c2:e1:f7:53:80:0b:7c:6e:
0e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:08:7A:9F:2B:DD:4A:A3:61:67:F1:8A:59:BA:44:47:2D:76:B1:0F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:382::/48
Signature Algorithm: sha256WithRSAEncryption
85:b2:a6:50:5f:44:75:90:d7:05:17:37:3e:2b:9f:99:2b:a1:
26:fb:cb:dd:61:b9:26:ee:7d:a4:d9:57:8f:e1:4c:8e:dc:de:
79:c3:19:6e:07:0b:64:91:aa:b2:04:d3:56:84:29:d3:5e:e9:
b4:0b:01:5d:c1:76:93:e5:68:a0:7d:27:eb:4c:22:70:41:b8:
e8:9c:3f:b3:8c:a6:6b:c8:7d:f1:9a:67:01:22:48:75:a7:52:
a5:44:3d:aa:de:a2:6c:3a:c3:ee:64:bf:bb:2a:a9:d6:0e:2f:
f0:78:2c:14:b5:00:88:4a:e8:3f:0a:bb:04:f7:68:d8:0d:c4:
93:3c:ef:dd:fb:3e:ae:fd:54:6f:3c:25:eb:ef:0d:5b:c6:62:
9c:c4:e2:20:24:ce:41:90:20:ee:84:b4:dc:a1:a9:da:04:2c:
16:1b:f7:66:75:89:51:a9:d1:77:50:50:c9:8c:f9:12:35:e9:
79:7b:a6:9d:29:4f:ec:c4:42:18:b5:16:bc:c3:ef:f4:5d:de:
31:ec:bf:c6:ca:32:11:34:39:ff:b6:f9:4a:72:88:d1:c3:ca:
06:e9:59:70:a5:a5:1d:dc:6d:47:64:a4:99:1d:f5:6c:1f:12:
be:fd:6c:1a:35:6d:fc:7d:6b:df:48:af:5c:54:36:43:3d:e8:
98:fe:cd:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org