Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 7hTcMmbwtdb/xG5i2IvzJuphfklWyWnIIxJ+07mKQSA=
Subject key identifier: 80:40:58:32:AD:A8:B9:48:35:5C:07:C7:66:11:1E:B3:BF:FA:ED:47
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6BB47F6710CEA3D300867021FC68BCBE8AE6F638
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:31 +0000
ROA not before: Mon 26 Sep 2022 07:56:31 +0000
ROA not after: Mon 25 Sep 2023 08:01:31 +0000
asID: 59282
IP address blocks: 2400:d680:98::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:b4:7f:67:10:ce:a3:d3:00:86:70:21:fc:68:bc:be:8a:e6:f6:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:31 2022 GMT
Not After : Sep 25 08:01:31 2023 GMT
Subject: CN=80405832ADA8B948355C07C766111EB3BFFAED47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:87:e1:1e:51:fe:30:a4:84:d2:56:c1:fa:37:
d2:b4:2e:88:79:c7:39:48:39:e8:29:e5:0c:81:4e:
05:98:f4:cf:61:98:7d:36:fb:ba:1d:69:aa:2f:e4:
49:bb:f0:63:36:56:8a:af:9d:ac:4b:48:2f:02:53:
0e:08:54:b1:e6:72:6f:67:5a:b8:fa:78:7d:9a:0e:
72:06:63:67:a4:91:dc:23:cf:a0:de:27:34:db:8d:
aa:07:cf:6e:f9:db:b7:e9:6a:e6:fc:4f:48:42:c4:
22:8b:15:ed:27:6a:79:60:51:5f:f9:aa:97:83:5e:
6e:7a:8c:02:72:d4:91:62:f0:50:c0:e4:7d:9f:37:
23:02:c4:c5:94:b5:7f:9d:03:56:3a:36:62:e7:b3:
cd:69:5e:0e:7e:5a:53:3b:57:21:04:30:1d:ce:ee:
88:23:88:17:28:23:04:ac:3b:ef:87:d0:07:ab:17:
c5:dc:a7:0d:41:7e:6c:d0:38:1e:d4:71:82:0e:3e:
06:b1:cc:19:1b:f8:41:da:92:23:71:65:3b:9e:4a:
5d:e0:99:0c:7c:e0:1e:b9:29:57:ab:71:b9:05:df:
b2:cc:35:65:e8:ba:15:c8:9e:40:7d:75:de:75:2f:
34:88:2d:69:24:01:5b:36:f2:75:6a:f6:fe:88:74:
1f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:40:58:32:AD:A8:B9:48:35:5C:07:C7:66:11:1E:B3:BF:FA:ED:47
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:98::/48
Signature Algorithm: sha256WithRSAEncryption
91:3d:8b:45:cc:49:90:1f:80:14:48:2b:25:33:fb:7e:89:b3:
66:de:14:76:d3:81:2e:27:0a:09:90:b1:a6:25:c4:ca:d3:e4:
71:20:8d:82:8d:a4:f7:88:5a:c1:c2:9e:f8:b8:8a:1d:43:15:
00:5e:6f:3b:54:f6:5f:62:cb:a4:3d:fe:c2:41:db:39:58:41:
39:ad:8f:57:07:06:39:f8:63:f3:10:7c:66:e0:97:ca:58:44:
8f:fb:17:96:a9:53:ce:8e:1c:3c:95:11:dc:8a:a6:52:ea:56:
45:2a:69:4b:34:11:d6:7a:02:1b:6f:cd:3b:1b:5f:a9:db:93:
69:81:33:78:e6:f6:b3:fb:d6:65:0a:27:2a:7f:e2:9c:8c:17:
b0:c0:8f:30:58:ee:bc:02:0d:3d:35:96:b5:c1:08:ac:d7:7d:
87:89:61:41:a5:f3:31:b4:d1:00:80:75:a3:26:46:b0:10:96:
9d:8f:98:72:1e:94:a9:e4:ab:1e:97:a9:34:95:0c:6a:08:c3:
d3:3d:ec:1c:e5:63:53:ca:c6:6e:b3:74:cb:52:33:be:bb:76:
59:d2:3f:de:48:35:74:10:5a:48:81:85:c3:08:ed:ff:02:85:
6e:94:af:80:82:45:0e:48:05:e7:8e:b1:4d:c1:39:af:ea:a4:
5b:ee:bd:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org