Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +THm6oVt8oyGeKXH5ged2KIrwGgDIcegrUOCc7cSwUc=
Subject key identifier: CA:E4:72:F4:81:7D:FB:68:2A:04:0E:19:7C:52:80:C1:C8:F9:93:17
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4F35BC1FF54196D35E0FC25E161692658767DC1C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:47 +0000
ROA not before: Mon 26 Sep 2022 10:55:47 +0000
ROA not after: Mon 25 Sep 2023 11:00:47 +0000
asID: 59282
IP address blocks: 2400:d680:386::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:35:bc:1f:f5:41:96:d3:5e:0f:c2:5e:16:16:92:65:87:67:dc:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:47 2022 GMT
Not After : Sep 25 11:00:47 2023 GMT
Subject: CN=CAE472F4817DFB682A040E197C5280C1C8F99317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:4f:99:e1:86:52:bc:ee:6d:33:73:6d:6d:
12:a7:85:f3:76:4e:5c:af:13:f5:24:04:7e:be:78:
ec:91:c3:bb:5c:20:94:41:1d:90:9b:20:51:4c:4e:
1e:8f:f2:d2:5d:c5:50:7b:8c:45:1f:d6:c0:ab:f4:
10:e8:90:32:96:4c:9c:55:8b:8b:ec:98:8c:70:de:
67:32:a8:c6:61:31:72:cb:93:c5:3f:48:61:73:3b:
a9:4e:e4:7b:db:2c:a0:ae:2a:61:0d:b1:db:ea:96:
d4:dc:de:93:d1:78:8e:45:6d:9c:45:b0:31:36:92:
c6:ee:eb:52:6f:fa:2e:54:39:ab:c6:11:37:4a:01:
d1:f8:e2:d9:3f:f3:7f:6d:89:e5:6e:94:16:1a:52:
8f:42:73:73:88:18:aa:74:cd:6f:76:44:47:79:b7:
62:f4:e0:53:92:3e:c5:9e:23:96:01:52:e7:91:b3:
d4:be:44:ff:aa:d2:42:65:51:63:f7:3c:7c:42:9a:
4c:29:df:f0:38:a3:53:8e:34:3f:12:3d:4f:37:a9:
b7:93:ca:28:dd:e3:d8:9d:90:7c:dc:77:27:46:b3:
40:1e:d9:56:87:db:6d:d0:70:2d:dd:91:a5:35:e7:
6d:35:59:b2:ec:c9:80:3b:e9:3e:a2:32:04:35:94:
60:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E4:72:F4:81:7D:FB:68:2A:04:0E:19:7C:52:80:C1:C8:F9:93:17
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:386::/48
Signature Algorithm: sha256WithRSAEncryption
09:22:a2:b8:3d:28:92:af:c0:f5:14:3a:38:ae:e8:12:e1:00:
da:9d:9c:b0:a0:54:73:79:2e:5c:f4:fa:3b:c8:36:8d:e7:a7:
ee:74:fd:c7:56:6f:3b:2c:02:7a:48:f1:53:3d:1b:c7:a3:bb:
e6:96:7c:9c:cc:31:dc:63:4f:01:04:c8:ed:fd:f5:5c:ae:f6:
a0:4c:1b:df:e8:aa:cc:5d:cf:06:01:c9:59:53:b9:8b:af:09:
7a:c9:5e:ae:51:03:55:f8:49:ca:e7:fd:99:71:4a:41:1b:c6:
01:24:db:63:1d:5d:79:31:9c:a1:a8:16:a3:df:59:b2:0c:01:
fa:5b:bb:33:ad:ba:ad:e8:a4:d2:51:cf:c0:e8:11:64:9c:30:
e3:0d:02:b2:df:43:ec:2f:4e:a1:c7:91:14:f4:5b:4a:41:c0:
9b:49:e2:76:3e:03:01:71:6b:20:ee:f9:28:2e:e2:d1:6f:6a:
b8:f3:53:ed:6f:11:1f:56:fb:d7:9a:11:12:d4:cb:94:c2:66:
1c:5b:d6:c2:98:76:93:9d:94:33:de:4e:69:27:8f:2c:50:5c:
a1:84:c3:34:24:16:c1:1a:76:28:83:d5:3f:12:4c:d5:a1:06:
32:04:25:a9:90:eb:cb:5b:de:8b:46:52:95:d2:69:14:c5:a5:
1a:86:2b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org