Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: QUFyMfGaDROZOyjpu9LO6VbT1BM2Pm4yi6/+zJv/f+0=
Subject key identifier: 58:10:32:07:61:8B:B5:EF:53:64:20:13:A0:77:38:F4:1A:61:0E:27
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3B17EE40EA08A714CFB9A30579155BFC64FBA949
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:3f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:17:ee:40:ea:08:a7:14:cf:b9:a3:05:79:15:5b:fc:64:fb:a9:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=58103207618BB5EF53642013A07738F41A610E27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:0c:19:e4:7b:0f:6b:a8:ee:d3:35:13:ae:b5:
70:b9:2a:c3:90:e4:93:a6:82:a4:04:8b:11:ee:3b:
2a:d9:d3:72:82:49:b5:47:28:4f:31:9c:4a:95:6d:
19:7a:8b:f8:e6:6f:63:b4:2a:23:de:99:e7:a8:a4:
9f:4e:fe:b1:fa:e3:2f:dd:96:79:fa:88:81:28:b9:
12:85:76:60:90:a9:9a:84:04:65:87:97:af:1b:8f:
10:c6:bc:fa:75:6f:56:22:1f:a0:f7:45:14:ea:58:
da:87:ac:62:e2:40:a6:7d:8f:a4:83:1a:ba:85:04:
8c:3d:60:21:57:7e:7d:6b:3c:86:66:d2:72:04:d8:
ee:a5:da:6c:dc:68:e1:33:15:98:b5:9e:64:99:47:
3b:34:31:82:8b:6b:f7:93:ff:e3:aa:62:c2:dc:72:
ce:bc:7e:1b:99:48:03:c9:f9:74:1a:f8:c6:8e:8b:
47:97:40:b0:3f:21:7d:5b:56:28:fc:85:71:ce:66:
86:e2:54:ba:14:44:cb:40:29:a0:eb:3d:3b:50:7f:
cf:c0:fe:aa:9c:a2:ac:4c:10:a1:e7:92:4a:2c:94:
39:3b:7d:d8:f6:5f:61:9a:2d:07:7c:62:b5:9e:76:
19:5c:a1:83:bf:ab:69:66:bb:0d:c9:18:fe:b2:34:
70:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:10:32:07:61:8B:B5:EF:53:64:20:13:A0:77:38:F4:1A:61:0E:27
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f8::/48
Signature Algorithm: sha256WithRSAEncryption
19:4b:63:30:49:d4:8e:63:b9:a3:ba:3b:f5:ff:eb:a1:d4:0f:
d0:59:9c:0a:54:c6:9b:8f:9d:e4:e0:16:90:49:d1:87:30:fc:
c2:37:83:ba:6b:d4:81:8a:6e:08:aa:9c:80:3f:ac:93:4a:eb:
f3:69:dd:8d:95:ae:3f:13:5d:51:5d:f1:5d:cc:c2:ab:22:73:
e0:53:f5:7c:42:a4:46:4b:48:f3:c3:61:a6:d8:3e:d3:11:35:
ef:9b:86:66:75:c0:11:a6:a0:71:8f:fe:28:cb:76:59:60:fd:
19:d3:55:63:52:98:ac:da:4b:66:ed:25:cd:13:9d:b8:e1:f8:
27:68:1a:8f:7f:90:d1:8e:c8:19:c3:b4:03:c5:d8:14:ad:a1:
15:40:63:2b:98:98:13:58:a8:5e:9b:fa:4e:8b:af:24:6d:ea:
19:a1:90:4f:09:4d:55:5c:2e:d0:a6:97:cf:4a:10:b6:15:0c:
2d:40:2a:cc:cf:0b:66:50:d7:59:0c:cb:15:27:fb:4b:cf:0e:
97:e0:6a:a0:af:60:0e:e4:c2:33:cd:93:7a:d7:51:04:92:fd:
24:9c:51:7f:2c:e6:15:64:49:b1:e2:24:e8:e5:63:83:be:71:
48:c6:82:76:80:91:3e:ae:01:ee:0a:c5:7f:ca:74:5a:82:5b:
1f:c1:72:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org