Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cpgOxKOpDIg8ijbp5ai2/ODiEX7TDGVdjP8KnwsLyts=
Subject key identifier: 3E:D1:65:CE:0D:A4:64:4E:22:A5:FB:CB:37:90:E6:AF:53:25:8F:D9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 41C60B7AD4012BFCF634E0DA59EC676637FE5B3E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:19 +0000
ROA not before: Mon 26 Sep 2022 07:57:19 +0000
ROA not after: Mon 25 Sep 2023 08:02:19 +0000
asID: 59282
IP address blocks: 2400:d680:ca::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:c6:0b:7a:d4:01:2b:fc:f6:34:e0:da:59:ec:67:66:37:fe:5b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:19 2022 GMT
Not After : Sep 25 08:02:19 2023 GMT
Subject: CN=3ED165CE0DA4644E22A5FBCB3790E6AF53258FD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:ea:25:95:af:54:9f:ad:62:34:bd:f8:b8:
9a:90:f6:52:71:d8:56:dd:ca:3d:3b:03:fb:75:78:
4b:ee:da:6c:e8:13:6a:d9:ff:c4:5d:4e:f0:4b:8d:
c8:05:e2:53:37:4c:78:5c:99:4c:82:56:10:25:8f:
a3:83:9f:0e:e7:7d:ed:ed:12:50:0a:0e:06:cb:48:
5a:81:45:cf:34:ac:8f:41:c9:31:78:95:1a:fc:04:
9f:25:4c:c4:03:02:ee:15:b3:43:8c:6d:34:fe:83:
fe:19:25:14:6d:9d:ad:08:63:05:8e:26:54:8f:ca:
4b:79:9e:0c:12:9e:09:f0:f0:85:44:32:a6:7f:f3:
b0:38:05:dd:65:57:c3:de:0a:47:d9:ec:cc:3e:7e:
4b:14:62:eb:a7:0a:5b:85:48:ed:c0:40:c7:94:3b:
31:6e:06:87:6a:6c:4d:87:a7:91:ec:52:4d:c4:eb:
24:7f:c4:69:65:03:be:8b:97:15:d5:5a:35:93:11:
33:7d:6b:63:af:8c:6b:f1:ae:e4:4d:e6:bd:a2:bf:
81:1e:5c:ce:ef:9b:b7:98:b1:22:20:5e:a6:c2:6c:
1b:0e:08:4a:99:8b:cb:b2:ce:9c:ed:0d:81:61:f1:
7c:e1:84:08:b8:af:5d:83:ba:dc:fa:2b:55:ed:ff:
c7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D1:65:CE:0D:A4:64:4E:22:A5:FB:CB:37:90:E6:AF:53:25:8F:D9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ca::/48
Signature Algorithm: sha256WithRSAEncryption
9e:79:d0:15:01:6d:5e:8a:17:6c:78:2d:fb:9f:56:98:cf:e0:
43:75:db:73:c9:c4:8d:cb:fd:b4:c6:88:61:a2:b7:24:62:b9:
bd:2c:70:c8:6f:4c:8e:56:7f:50:dd:fe:21:62:16:ab:42:b3:
62:2c:62:50:90:c8:93:29:d1:b5:2f:8c:d6:a2:bf:5b:7a:ac:
0c:97:e1:49:6a:3f:14:54:37:32:93:8d:fa:f6:82:ac:b3:ba:
89:1b:65:ac:52:3e:b4:6f:83:e2:2a:ee:1c:1d:97:40:63:52:
57:56:e3:84:52:b6:ae:ac:c9:e6:41:22:bd:45:af:62:b6:2e:
d7:8a:2e:d0:0d:47:da:3f:6b:3c:21:80:6c:71:06:8b:59:50:
db:76:85:f1:b6:49:91:96:ce:34:91:4c:22:17:7b:b8:45:ca:
68:f9:a5:8d:5c:10:fe:94:02:ed:3a:1a:91:81:5e:7b:e1:ff:
58:05:0e:e0:bb:7f:6a:17:04:a9:96:c2:fb:4b:f8:a0:96:25:
2a:47:70:94:02:1f:ba:fa:9f:b6:c0:39:d4:16:19:45:11:61:
97:a5:6a:9b:ae:e8:1b:2e:95:c0:d6:95:b7:f2:cf:56:1d:8c:
1c:b6:43:9b:42:32:72:42:8a:7a:e1:20:7c:ea:8f:2f:bf:a9:
8f:2b:3d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org