Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ukIyAXVWMnkvo3T82VNZ4k2SwFOp4wA1/xuHYwZj5G8=
Subject key identifier: 18:CE:35:7A:C1:4C:42:92:AD:2F:9C:9B:3A:F6:16:69:51:54:8D:DA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 47A825E60204E075C59D2A6811BD29C53428379A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:26 +0000
ROA not before: Mon 26 Sep 2022 07:56:26 +0000
ROA not after: Mon 25 Sep 2023 08:01:26 +0000
asID: 59282
IP address blocks: 2400:d680:4c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:a8:25:e6:02:04:e0:75:c5:9d:2a:68:11:bd:29:c5:34:28:37:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:26 2022 GMT
Not After : Sep 25 08:01:26 2023 GMT
Subject: CN=18CE357AC14C4292AD2F9C9B3AF6166951548DDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b4:7f:13:a9:9d:02:60:5f:1e:3d:74:3a:d1:
4c:2d:8c:f4:f0:41:97:f7:09:f7:5f:55:f4:d0:e6:
ab:b0:b1:d4:1c:d4:92:02:63:8b:7e:77:d7:f0:b1:
06:bc:26:9f:38:94:06:41:1e:bd:8e:3f:e1:34:f3:
08:68:d1:4b:c8:09:53:b9:8c:1c:a1:3c:2e:94:10:
e9:87:dc:7d:ce:0d:fe:90:78:8e:c9:32:31:95:50:
bd:ca:19:0e:f5:4a:9c:f5:46:58:04:b2:6f:14:48:
ca:36:04:91:f8:05:6a:90:fa:82:9c:54:32:59:fb:
76:bf:30:74:9b:af:0b:39:b4:92:6e:7b:25:11:bc:
f6:32:13:a8:43:36:c1:02:16:4d:3a:f5:4f:1d:26:
dc:4b:a9:95:ef:8c:dd:1f:d0:5c:2d:98:26:19:bf:
aa:98:73:4e:58:4b:9d:3b:83:b1:c7:b7:c3:7d:19:
dd:fa:6a:44:36:f7:4e:19:f9:09:68:68:b0:f0:b1:
3c:d2:cd:5a:68:eb:7c:03:01:62:0d:31:03:df:88:
3a:3c:9d:37:f6:f1:95:d2:42:2f:40:66:69:2f:a8:
4a:7d:55:c7:af:c2:6f:d5:1c:a6:4a:10:d4:a3:eb:
03:56:75:7b:57:5d:27:d6:a8:8d:8b:0f:21:a5:1a:
6d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CE:35:7A:C1:4C:42:92:AD:2F:9C:9B:3A:F6:16:69:51:54:8D:DA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:4c::/48
Signature Algorithm: sha256WithRSAEncryption
1a:97:4a:00:70:67:38:2e:51:54:ac:eb:5c:ab:75:96:60:0c:
f0:3a:17:58:e3:31:a2:f7:72:c5:4c:f1:09:da:6e:69:a7:bf:
29:31:bb:d2:f5:02:ee:7c:c7:00:73:cf:ad:0a:59:d5:7f:ae:
91:e1:07:be:6d:60:ab:46:ee:a4:4a:e9:d2:4f:ff:5a:d2:8e:
db:22:07:6f:08:99:be:0c:3a:0e:a4:9e:75:d7:a5:4b:98:47:
52:30:40:32:a9:21:11:8c:35:11:46:85:9d:b1:0b:44:9d:d4:
5f:c8:6b:9c:56:05:a4:55:6e:92:67:b1:0d:5c:ce:55:6c:ce:
3b:3c:38:e3:66:23:ce:48:61:e6:2c:d8:26:2b:26:73:49:58:
d5:79:7a:f2:c4:fd:32:33:69:b3:6a:25:91:98:e7:e7:f1:89:
7a:0c:87:d8:dd:25:a1:f1:66:35:a8:01:ab:d9:79:95:29:c0:
3c:fa:4a:b8:4e:c6:93:c8:7b:33:48:ae:d0:67:2e:91:7e:2b:
ef:4e:3d:94:9d:49:f3:66:d8:72:94:d7:40:5d:56:43:0e:45:
b9:d1:f1:1e:09:bd:a0:4a:35:8d:ad:9d:a6:27:7f:22:1d:4d:
d1:57:45:a9:3f:d4:24:50:f2:3b:fd:3c:e7:8a:12:1a:1a:96:
f5:5d:16:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org