Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: G0eCy3+QYXy7eYPUzGbKOLvFuC3eC+JNDtfajYg9hVw=
Subject key identifier: 84:A7:67:B3:74:9C:88:D9:35:AF:CE:E4:87:49:0F:FB:31:D0:25:70
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4FB525DC111005A8627CF9D9A5389724AB83F4DD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:18 +0000
ROA not before: Mon 26 Sep 2022 07:57:18 +0000
ROA not after: Mon 25 Sep 2023 08:02:18 +0000
asID: 59282
IP address blocks: 2400:d680:9e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:b5:25:dc:11:10:05:a8:62:7c:f9:d9:a5:38:97:24:ab:83:f4:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:18 2022 GMT
Not After : Sep 25 08:02:18 2023 GMT
Subject: CN=84A767B3749C88D935AFCEE487490FFB31D02570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:96:11:fe:4e:97:f2:9c:8e:fc:3a:09:87:5d:
c8:b5:f0:23:d7:e3:17:cc:3b:ac:8e:a2:4e:25:2c:
ca:3b:8f:fd:26:bc:be:9c:21:c5:b7:67:ec:da:23:
d9:bf:2b:1a:ea:c6:07:29:47:1f:4a:b7:b9:14:93:
70:4c:b9:a4:8b:6d:36:94:a2:e2:b3:7b:7a:79:75:
3b:58:f3:aa:9d:2a:ba:6c:07:05:5b:d4:04:01:1c:
9d:4d:94:36:7f:28:03:c2:66:72:b8:20:8b:34:af:
7c:f9:bd:6d:f0:df:41:9f:3c:08:25:ee:bb:91:91:
b5:79:bd:e7:c6:df:66:f1:26:5e:7e:f1:95:67:78:
32:66:f0:50:cf:49:a8:30:42:47:4d:d1:90:1c:f8:
1b:55:52:1e:60:8a:b3:4c:03:8b:88:80:99:98:ec:
34:76:a8:52:24:31:0d:54:63:85:8a:12:39:ae:21:
12:09:7f:54:99:e7:80:f9:2b:dd:5e:6a:e3:b5:d6:
c2:ab:a4:49:92:6d:fb:be:9f:a3:bb:17:20:fb:84:
cf:29:7d:2f:d7:13:73:d3:f1:d9:70:f2:51:4c:bf:
75:6d:93:ed:5c:4b:2f:e8:5c:2b:67:e1:38:64:ef:
17:fb:e1:ac:3d:53:da:96:5d:ee:c0:c8:59:e3:c6:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A7:67:B3:74:9C:88:D9:35:AF:CE:E4:87:49:0F:FB:31:D0:25:70
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:9e::/48
Signature Algorithm: sha256WithRSAEncryption
1b:26:47:4e:8d:2f:20:8a:e2:f4:4b:0d:8d:24:8d:38:d0:fd:
25:39:6b:4a:d8:61:67:00:dd:74:e9:f4:13:74:92:a3:38:60:
ae:3f:dc:a5:7f:c0:80:6b:7d:ce:56:10:01:83:51:9d:50:79:
48:34:d6:6a:30:4a:85:84:af:95:0e:f7:8f:a5:5d:45:67:33:
ee:ec:63:d7:e8:a4:0d:71:cb:52:76:2d:64:6c:e9:41:c9:47:
00:e2:7c:62:65:e4:e2:9e:cd:57:8e:ac:74:fd:b5:6d:77:b9:
0c:2d:03:4f:7c:8e:bc:39:d8:f2:8a:f5:37:8c:c0:33:4c:29:
65:21:58:30:3c:97:25:c3:10:74:3a:be:83:3e:45:ce:1a:c8:
74:de:99:67:4b:db:86:ef:51:94:03:12:55:49:31:38:95:5f:
95:ec:59:81:be:86:65:3e:6a:d9:c8:d8:9e:2c:31:66:48:91:
3a:1f:bc:e4:c0:09:52:4a:d7:64:26:97:fd:d7:b5:b5:e2:39:
67:36:14:5d:d4:55:ee:17:20:a0:0a:ea:25:dc:90:0a:52:c3:
f1:0d:da:bc:52:0c:87:db:35:ac:d0:5c:2e:30:68:49:4c:61:
e2:9a:86:9e:ea:43:39:43:07:7f:60:5f:28:ec:ae:12:ae:b5:
3c:47:21:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org