Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jYIETetljCVL84HBggvTZYefS82MbDeOYB4Hz6Hoqcc=
Subject key identifier: 33:97:61:86:54:3B:4C:20:45:7E:33:87:0C:1A:45:85:D4:A3:EB:FE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6688B0305910AC1CBD83DB18B8084844BC9E4C2D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:19 +0000
ROA not before: Mon 26 Sep 2022 07:57:19 +0000
ROA not after: Mon 25 Sep 2023 08:02:19 +0000
asID: 59282
IP address blocks: 2400:d680:6b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:88:b0:30:59:10:ac:1c:bd:83:db:18:b8:08:48:44:bc:9e:4c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:19 2022 GMT
Not After : Sep 25 08:02:19 2023 GMT
Subject: CN=33976186543B4C20457E33870C1A4585D4A3EBFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:30:f4:b7:2c:84:a7:d1:e1:31:f4:d9:12:39:
d7:21:1f:fc:5e:34:a3:87:0f:1f:c9:a2:e7:ab:70:
76:b7:ff:b6:4d:a7:bf:01:49:64:8b:06:de:8a:55:
a6:8e:04:68:73:4b:17:10:43:61:d4:34:57:f2:f8:
43:49:a0:0d:5d:09:7d:96:e4:9d:88:d5:67:d8:ed:
33:72:0f:a9:8d:d4:bf:d1:35:0f:3e:d8:76:43:00:
b2:5a:2d:69:7f:7b:8e:f5:c9:0f:ed:a0:d5:63:03:
c6:f9:bd:ee:8c:c5:7d:b4:41:af:18:37:80:b2:f3:
39:cf:f8:f6:93:0c:c9:26:8e:0e:53:27:87:25:d7:
57:09:aa:e1:7b:2b:04:6f:a7:51:25:02:68:fb:98:
29:5c:1f:b9:3c:68:06:b9:62:4a:e8:76:57:14:c3:
45:56:77:45:a5:fc:9b:a6:0b:a0:fb:c1:9d:5f:2a:
a3:dd:a6:29:d3:1c:c8:76:fc:88:66:10:6c:35:06:
f8:a0:67:19:fd:d6:73:c7:8a:1e:f5:eb:d0:83:fa:
c2:2c:29:bf:55:2a:d8:0a:84:14:27:dd:e0:3f:6b:
87:55:e9:ff:82:82:3a:8f:e5:a2:67:5c:41:90:df:
9f:54:05:57:f7:ee:37:ab:1f:32:1d:28:a3:11:18:
63:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:97:61:86:54:3B:4C:20:45:7E:33:87:0C:1A:45:85:D4:A3:EB:FE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:6b::/48
Signature Algorithm: sha256WithRSAEncryption
3c:b6:a6:88:e3:90:6a:0d:79:35:25:3a:ad:60:b4:37:39:6d:
7f:ab:7f:4c:f1:98:fd:48:8f:bd:f7:dd:64:7b:f6:e1:8b:bc:
58:31:60:f9:ad:c3:45:19:c1:84:6c:9f:b6:fb:4d:0c:70:03:
69:9a:bb:7a:12:6b:6f:bb:ef:cd:6c:fa:02:da:59:c9:8b:6f:
4f:1d:02:4d:2d:33:74:a6:6e:f6:c4:bc:f5:dc:12:8e:95:42:
31:f1:cc:a1:51:6a:06:89:d0:59:73:a4:0d:7d:99:21:8d:e1:
8c:68:a8:b7:f2:7c:1f:66:4e:b1:2e:77:d9:33:03:08:73:b1:
50:2e:9f:e7:a5:25:b3:8d:6c:5b:c5:61:13:1c:78:20:f4:46:
02:22:52:87:24:0b:5c:ab:da:3b:d2:c2:d6:91:e7:b2:56:34:
f8:ad:70:58:c4:b6:00:a8:6d:88:fe:43:86:87:21:df:ae:02:
f4:01:a6:8e:7d:71:e4:4e:6b:7d:23:67:6b:a4:75:54:40:ec:
79:cb:8d:9b:0e:3c:d6:fa:1c:c2:18:f6:d3:54:09:ff:42:1f:
cb:4e:54:3b:4b:88:5b:d8:79:4e:20:0a:3e:d2:9c:ad:2d:c8:
d1:fc:fb:46:18:49:25:b5:1c:80:31:09:2b:9b:a3:ae:36:80:
60:e3:df:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org