Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: tkPWXmP1TMw0vF+Z7IWNx3vGYc32nt8dsXoYStPASHY=
Subject key identifier: 18:4C:09:82:03:9B:53:AB:44:39:EB:E4:5B:B3:78:70:ED:03:A8:AE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 57E9D84ECA63C76C376D5F3D0332960020AB4CB3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:51 +0000
ROA not before: Mon 26 Sep 2022 10:55:51 +0000
ROA not after: Mon 25 Sep 2023 11:00:51 +0000
asID: 59282
IP address blocks: 2400:d680:3d0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:e9:d8:4e:ca:63:c7:6c:37:6d:5f:3d:03:32:96:00:20:ab:4c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:51 2022 GMT
Not After : Sep 25 11:00:51 2023 GMT
Subject: CN=184C0982039B53AB4439EBE45BB37870ED03A8AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ce:98:77:1b:2f:50:69:3c:d4:ae:4b:8c:03:
e7:fc:78:db:eb:cd:4e:d0:1d:06:39:18:be:c5:3b:
3b:87:56:4c:53:c6:27:25:ed:ec:c1:e8:e2:eb:c6:
7a:ac:41:33:28:14:46:11:36:8a:8a:f1:5e:3a:8c:
aa:2b:93:f0:25:b5:e4:00:38:c2:db:5d:45:b0:13:
e3:f1:9b:a3:db:a4:84:ee:72:d0:c0:5f:c3:99:f5:
6b:b8:6a:3a:4d:fd:be:47:90:71:99:a9:2d:e4:8d:
a6:a3:4e:1a:06:fe:3d:79:5d:bc:8e:8b:fc:a4:b9:
b1:66:9c:d1:c7:27:69:76:aa:d1:23:5a:06:03:22:
59:c1:36:e1:5f:ca:57:ae:9c:6f:40:ff:75:62:c0:
69:3a:04:53:65:ea:e6:ea:f1:e5:68:55:f7:4b:6a:
dd:3a:00:52:5d:c2:c1:8a:c1:8b:9f:a8:97:dd:78:
ee:1e:13:5d:6b:77:b5:d5:1f:06:82:24:dc:92:f0:
b3:6a:90:46:f2:9b:45:e2:ce:39:32:6f:d7:31:d6:
f4:68:be:60:36:68:94:62:65:14:9c:c5:40:10:db:
98:c5:dd:be:b9:92:0d:25:79:6a:ae:e6:a3:35:3a:
43:de:0a:49:37:09:92:66:3b:f1:c2:e5:1b:10:b5:
65:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4C:09:82:03:9B:53:AB:44:39:EB:E4:5B:B3:78:70:ED:03:A8:AE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d0::/48
Signature Algorithm: sha256WithRSAEncryption
5c:f9:43:97:a6:f8:70:ae:9f:e2:7b:58:9c:c4:3e:78:52:28:
37:59:b5:46:a5:18:79:73:85:f4:9b:37:ef:f7:fc:e7:8c:e7:
0e:c5:c5:ed:70:5c:85:79:dd:16:dc:04:3d:b4:90:65:a2:3b:
a9:59:f0:7c:dc:bb:98:ed:67:bd:58:9a:41:40:b5:5b:71:ea:
25:c3:90:36:38:01:a0:a6:99:ab:65:b1:40:4e:d6:fd:e9:39:
1e:f2:ba:8e:12:5a:5e:36:ee:36:3b:8e:c8:00:b2:e7:da:b2:
e1:15:aa:b1:8a:09:eb:d5:bc:0c:e5:b2:f3:97:60:49:e2:28:
d8:3b:cc:de:dc:b1:7b:be:09:ed:86:9f:e5:0f:1b:46:90:e9:
d8:b5:fa:ce:2b:1b:28:2d:5c:d2:20:fe:44:07:b8:e7:37:32:
af:9d:5a:0a:c2:f1:d2:62:75:c0:35:53:11:7f:99:80:e2:b0:
de:8c:8a:da:40:55:15:d0:d2:61:9c:95:43:62:13:e9:5e:8c:
44:21:a4:2e:b5:a4:f8:4f:ba:78:ef:9c:16:f6:34:c4:c4:49:
ae:a5:9a:a9:39:2a:34:5d:f2:f2:56:c6:a8:4f:7c:6d:af:2b:
05:f8:62:3e:b4:a5:be:ad:55:67:7f:da:4e:39:2b:3c:2d:8c:
d8:2d:30:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org