Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HNc2tu/nXUr8IVTurKLLgLcqg0dQHo0o+mrOrJVuQOc=
Subject key identifier: E3:30:12:C8:98:73:21:30:13:1D:89:B5:9B:DF:E7:7F:4D:49:44:8F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 16677F489C90749ABC98A5176A1826E0360D9F1A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:58 +0000
ROA not before: Mon 26 Sep 2022 07:56:58 +0000
ROA not after: Mon 25 Sep 2023 08:01:58 +0000
asID: 59282
IP address blocks: 2400:d680:81::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:67:7f:48:9c:90:74:9a:bc:98:a5:17:6a:18:26:e0:36:0d:9f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:58 2022 GMT
Not After : Sep 25 08:01:58 2023 GMT
Subject: CN=E33012C898732130131D89B59BDFE77F4D49448F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:27:aa:f0:fe:6b:67:e3:ff:4a:2f:fd:c0:b0:
0d:67:9e:08:e3:94:d2:2f:81:8f:2e:d7:e8:ff:81:
c5:0b:f7:51:75:db:01:37:76:b1:93:5b:9b:ef:98:
d3:b7:e9:b3:9a:76:54:e4:b6:4a:f2:e9:0a:45:47:
70:c5:6b:f9:c3:6d:51:f6:ff:e2:2c:57:0d:f7:30:
85:2c:0d:b6:09:7c:58:5c:51:e0:39:59:f9:95:49:
06:ad:f4:eb:ce:62:4d:ef:8c:ca:7a:14:b8:1d:77:
5d:3e:20:0b:43:8d:33:c0:9a:08:8a:1c:13:50:4f:
e6:d9:72:a9:27:7f:32:bb:a4:6d:8a:8b:36:d7:82:
22:a2:03:03:b2:2b:22:c6:6b:18:f9:24:0c:62:33:
f4:90:b1:36:9b:be:eb:67:31:a9:e4:1c:f8:2c:2e:
c3:37:10:a6:5b:bc:f0:52:a2:b2:f4:6b:4b:30:f3:
0d:a9:dd:53:5f:e4:85:a9:a9:f0:19:bc:88:cf:da:
5b:86:f1:8f:b0:b7:25:27:0d:78:bd:1e:87:a5:d2:
21:5d:e8:3f:e2:1e:91:90:c2:87:e5:0e:af:d0:37:
6c:0a:2b:5e:e2:97:b8:3f:c3:78:7d:bf:ec:3f:49:
83:43:8a:17:8f:8d:1d:08:e9:48:0d:60:49:28:88:
11:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:30:12:C8:98:73:21:30:13:1D:89:B5:9B:DF:E7:7F:4D:49:44:8F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:81::/48
Signature Algorithm: sha256WithRSAEncryption
10:7f:3e:11:de:22:15:7f:a9:55:38:44:65:11:1b:4e:85:f0:
9b:68:5e:67:29:67:f3:98:56:b8:e7:9a:c1:d4:5c:e7:52:32:
72:b4:0c:84:eb:b8:2a:b3:06:1e:8f:e7:6b:f2:05:06:fc:22:
fd:c2:b7:72:f5:7c:61:4e:4e:87:79:b2:ab:a9:51:92:75:f7:
51:31:1a:38:60:b2:56:74:f1:7f:cb:0c:02:5d:1f:52:b8:b3:
80:57:6d:b4:31:1d:d3:01:75:16:2b:d8:1b:8f:eb:1a:33:68:
91:0f:7d:26:1f:d0:08:ce:85:3d:be:9d:9b:93:d4:e9:4b:f4:
c6:81:c3:07:67:a8:14:38:81:82:fc:2b:c4:3c:3d:f0:26:ce:
7d:9a:a1:37:a2:e8:cf:87:48:87:00:f4:92:82:84:ec:47:18:
1c:9c:83:da:f2:17:a7:2b:24:db:39:ee:9c:50:58:20:a1:46:
2e:3c:1a:3f:52:50:6d:15:e1:1e:aa:29:f3:59:29:55:55:eb:
93:1b:4f:90:69:ec:0b:17:75:c8:d9:60:5e:7b:8b:31:d9:8e:
39:a3:27:40:cc:6e:5b:e9:61:55:88:30:6f:6c:bd:15:a4:b9:
d2:ea:93:54:bd:ef:93:d5:3b:5e:e2:50:86:5b:9b:82:56:dc:
99:e3:e4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org