Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: iHEhebLHWX2JYF3QjjBhnqweDzUtVkiJHhSjnrjGJCc=
Subject key identifier: EE:38:C5:64:70:E0:64:72:69:5F:C2:F1:65:82:86:BB:ED:EA:AF:DC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1E4B48B869CA59C968B321C329E2E5400A9C7909
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:24 +0000
ROA not before: Mon 26 Sep 2022 07:57:24 +0000
ROA not after: Mon 25 Sep 2023 08:02:24 +0000
asID: 59282
IP address blocks: 2400:d680:7f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:4b:48:b8:69:ca:59:c9:68:b3:21:c3:29:e2:e5:40:0a:9c:79:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:24 2022 GMT
Not After : Sep 25 08:02:24 2023 GMT
Subject: CN=EE38C56470E06472695FC2F1658286BBEDEAAFDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dd:48:25:a3:13:4b:30:ae:0d:1b:12:cb:40:
3e:00:d4:fa:af:78:c2:dc:a8:41:4c:a7:ac:28:9f:
b2:9b:23:cd:ba:6c:14:a7:c0:4f:a3:c1:ee:00:35:
00:9b:8f:ed:cd:29:97:0c:95:c1:0b:53:44:85:c5:
b7:32:52:ea:30:45:c6:f5:86:67:fd:da:ef:b2:3b:
18:de:cd:ef:1d:f4:df:1a:5d:5e:e5:82:84:ef:80:
fb:aa:5e:fb:05:1a:e0:b1:70:5d:fd:ab:fa:0c:20:
ee:1f:c3:57:5b:75:bf:c3:1b:d7:d5:90:cf:2d:b6:
0c:83:e2:bf:f5:79:7a:00:40:a5:e6:9d:1f:d9:31:
76:a1:8a:51:c8:eb:d9:b7:c7:90:a3:5b:b5:a0:a1:
56:7b:28:31:43:6e:27:23:46:d0:a9:72:5a:db:ec:
fa:59:5e:c0:e3:64:db:58:a7:0f:de:ea:dc:53:e6:
10:bd:fc:b2:31:aa:e3:4f:54:ae:69:9d:44:50:49:
b8:1e:cd:10:2d:82:d5:b3:b8:86:9a:4b:4e:2b:84:
07:d0:c3:ea:4b:04:c9:0d:5e:aa:43:33:7d:4f:0f:
a5:d5:4d:4a:25:af:8e:cd:45:0e:99:c9:ee:84:34:
20:14:bb:48:c5:27:e0:8f:d5:49:cb:c7:74:d7:9e:
29:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:38:C5:64:70:E0:64:72:69:5F:C2:F1:65:82:86:BB:ED:EA:AF:DC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:7f::/48
Signature Algorithm: sha256WithRSAEncryption
11:e5:02:0c:bf:b7:cd:7b:d9:1a:33:20:34:ad:f4:87:0f:f0:
95:f2:cd:d1:29:e2:bc:a9:05:91:3e:2f:97:46:1f:45:62:71:
34:41:38:ba:43:45:00:ec:3a:b8:f0:43:29:d5:00:40:84:68:
e3:67:29:97:f8:72:84:83:45:fc:9b:59:c7:83:d8:61:f2:54:
b8:f6:4d:99:8f:84:bb:ca:96:7e:6e:37:7a:93:c2:58:f3:c7:
f5:16:cb:18:c7:11:27:c8:c3:5c:f4:c5:19:21:ab:0f:6d:0a:
03:80:9a:b3:51:2b:73:82:d8:a2:d0:75:43:f9:8c:2d:2b:8a:
59:c2:3b:93:da:d3:3b:c5:1d:03:e2:fd:48:be:29:91:62:f5:
86:57:3a:be:4f:f3:24:1a:30:9d:4d:ef:ab:4a:29:05:94:99:
90:af:a0:11:ba:a0:53:d8:c8:8d:a7:5e:08:e2:5e:67:4b:bc:
7f:b5:29:2c:13:c5:48:3d:fc:df:3f:5a:0b:10:23:a6:64:42:
44:86:7a:a7:38:62:b8:33:55:03:d7:7f:1d:c8:2f:e2:c8:7e:
72:45:9d:fe:e6:0e:29:ce:38:d8:ac:c9:3c:55:ae:b6:cc:0d:
32:87:ec:bf:73:07:a0:d3:fa:75:7e:30:67:23:be:9c:3a:b6:
e1:d7:4d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org