Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: IYT81/WHcD4bG+czZa4XoWzLcADZGYRonMbZrYq68D4=
Subject key identifier: 66:E8:A3:1E:A5:19:A4:C5:4B:8B:A2:83:2B:51:E6:0E:0A:48:6E:36
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3323C0E86B7AACE1FD8469C13A610CF0FE33F15A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:3e6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:23:c0:e8:6b:7a:ac:e1:fd:84:69:c1:3a:61:0c:f0:fe:33:f1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=66E8A31EA519A4C54B8BA2832B51E60E0A486E36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:45:ec:ff:64:a1:d7:b2:a9:3d:3d:fa:d5:3f:
32:03:81:18:63:be:65:de:e7:5f:e4:85:8b:0d:01:
5e:87:ec:c4:83:11:89:27:07:03:ed:39:a4:8b:0b:
bc:d1:45:dc:fe:22:44:d4:de:9c:75:3d:c7:18:dc:
a3:29:53:54:a0:dd:ca:38:6a:25:87:f6:3d:bb:fa:
ee:b2:05:94:f8:1c:d7:20:c6:40:a8:de:f9:26:4d:
ed:94:bf:4b:cb:03:6a:d0:75:46:74:bb:c6:28:bb:
54:9b:c2:3a:98:a9:4d:a6:49:1c:30:04:68:32:50:
63:b3:4e:c2:60:ee:e2:5b:c4:15:0c:44:cd:0d:8a:
65:07:b6:a8:54:2b:4a:5a:cc:b9:d7:52:d5:84:08:
c0:bb:3a:47:65:50:c3:2d:bb:b2:9e:75:16:f4:af:
82:41:c6:1d:69:ee:33:1c:4a:66:33:11:c4:c5:b4:
fe:72:d7:80:7d:3c:3a:86:52:92:3e:9c:15:9b:89:
65:7b:fe:9e:02:bf:d6:8d:de:73:3b:95:ae:65:92:
66:80:8b:37:14:97:24:45:f5:75:53:59:39:a6:fe:
8e:96:a2:58:9f:02:22:48:e6:3e:3a:31:52:6a:27:
fa:db:e4:0d:b5:bb:9c:e0:42:d7:bc:c4:d7:8e:a4:
d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E8:A3:1E:A5:19:A4:C5:4B:8B:A2:83:2B:51:E6:0E:0A:48:6E:36
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e6::/48
Signature Algorithm: sha256WithRSAEncryption
42:5b:ea:44:a5:b0:6a:7f:26:4a:d1:b8:86:a2:ce:7c:0c:68:
6d:1e:4f:df:7f:16:72:0b:25:49:02:36:ce:9a:0a:ae:8e:2a:
42:13:da:b7:37:2f:71:85:c8:76:9b:df:fe:e1:b9:85:f0:9e:
6a:b0:c3:e8:6f:7c:ce:b9:d8:46:71:88:f6:22:3b:fc:e6:a7:
4c:ad:b8:f3:a3:fa:8c:f8:b8:c3:0d:50:9b:1a:ad:7a:de:d5:
26:a7:d0:08:2e:4b:6f:45:72:db:37:8d:67:e2:9c:75:45:a6:
c2:0f:cb:20:70:eb:21:c8:7c:16:42:e4:db:c0:1d:f8:91:f2:
43:1f:ca:02:52:29:52:b9:22:a3:79:19:cb:3e:76:b7:77:63:
dd:23:fc:8d:1f:de:b5:57:c4:67:f4:ea:35:4f:b3:74:75:2c:
08:cd:f7:c3:05:19:1f:eb:ff:a7:ef:32:be:a2:d7:ca:af:99:
e7:82:cf:db:b2:52:38:42:3d:35:8e:04:e4:39:71:53:7e:3f:
51:ed:d0:ac:fd:a8:df:19:0d:5f:e4:34:d5:c3:51:85:0c:77:
32:6b:ee:ac:eb:e3:9a:41:8b:ea:be:58:02:c3:d6:58:8b:e6:
1b:d3:1a:6f:13:7a:2e:c2:9b:8a:7c:b2:8e:b3:4c:e6:99:c5:
d4:f7:37:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org