Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sxVMh1jPhwgxaZa8WTvU7eAEwVcIdiKAXRyLGlQaSog=
Subject key identifier: 38:EE:A7:33:61:25:22:85:C5:5B:FE:22:DA:AE:95:B4:5C:46:13:9C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 111BA1561423E94D631C4E49654415D3C04D0278
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:34 +0000
ROA not before: Mon 26 Sep 2022 07:56:34 +0000
ROA not after: Mon 25 Sep 2023 08:01:34 +0000
asID: 59282
IP address blocks: 2400:d680:b2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:1b:a1:56:14:23:e9:4d:63:1c:4e:49:65:44:15:d3:c0:4d:02:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:34 2022 GMT
Not After : Sep 25 08:01:34 2023 GMT
Subject: CN=38EEA73361252285C55BFE22DAAE95B45C46139C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4f:5c:74:21:7a:2b:f7:d9:39:bc:e4:92:45:
4e:7e:b5:3f:6e:8a:b0:14:70:a4:22:31:99:49:c1:
89:57:64:4a:8c:04:55:cd:54:02:b5:ca:2c:e4:9a:
8c:b0:09:dd:5c:e1:ce:14:8f:90:c5:5a:2f:73:bc:
cf:5e:1d:28:c1:91:1b:b9:65:ce:f1:05:f3:3b:87:
25:96:e7:56:7e:b2:df:34:92:95:65:2b:1e:36:f1:
0f:90:d8:ab:e8:94:c3:3b:21:74:d2:c0:46:50:ce:
36:3d:e5:7b:20:c5:f7:f7:92:c0:32:77:ff:53:60:
36:c1:f7:bf:1e:0b:26:8c:37:f5:13:38:d7:de:25:
ba:7d:3d:29:b1:59:b1:ac:25:2d:8b:82:0d:f9:26:
86:4d:b3:5a:a4:d3:9e:3e:d3:c5:82:b7:db:4a:88:
ee:d4:43:89:7d:eb:ea:4b:6a:e0:a0:2d:21:f0:f9:
3e:51:9c:57:1c:02:76:f8:63:cc:f2:90:7f:42:c3:
d2:fd:04:f4:e2:dd:a7:87:b3:a8:98:fe:00:ea:d7:
1d:d5:fd:30:89:74:7f:b2:43:f4:c9:a4:c4:8b:18:
78:fa:4c:47:a4:8a:ee:42:60:1e:40:08:e8:1c:76:
be:ff:5e:78:cf:8d:79:b3:05:1e:f3:42:dc:50:41:
1c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EE:A7:33:61:25:22:85:C5:5B:FE:22:DA:AE:95:B4:5C:46:13:9C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b2::/48
Signature Algorithm: sha256WithRSAEncryption
bc:49:8c:15:5a:d6:42:0d:54:70:1f:f0:22:e8:9e:14:d9:16:
15:d3:56:0a:fa:a3:7e:5a:f1:49:d8:8f:83:44:f1:e7:fe:fa:
a6:f2:6f:8a:cf:d8:e2:e6:63:62:00:a1:44:43:01:6d:e9:15:
f9:77:7c:5a:51:d0:c0:4f:0c:8c:45:80:ad:b1:5d:43:e1:00:
51:03:be:e9:27:ef:4b:ee:12:bd:8b:73:3d:44:75:b2:94:c6:
ae:ff:60:92:ed:9e:c3:07:a2:15:57:76:03:ae:f6:04:b8:9e:
ad:31:92:c9:70:d4:e0:bb:89:e3:12:cd:1f:47:f6:07:dd:87:
2d:84:a2:e2:a8:a5:70:48:4b:c6:50:c9:fd:8a:2c:28:be:70:
cd:ee:2c:e3:ef:2b:30:be:ba:ce:91:bd:ae:d5:51:d7:07:b8:
f9:eb:6d:85:c9:69:53:31:05:2b:ce:ef:25:ee:b5:86:e0:a7:
82:8c:af:8c:53:93:79:2c:eb:99:73:30:6e:f4:ed:51:3c:6e:
06:c0:45:c2:4c:ed:2d:c1:d9:41:76:99:e6:31:08:5d:c2:b2:
45:45:92:e8:8f:20:a9:4b:e9:48:15:da:f7:b4:2e:49:93:14:
87:8a:1e:ca:7a:12:4e:26:c2:4c:47:5a:86:5c:7a:88:7b:5f:
a4:8f:49:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org