Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: C9Cr7OjWWZGEA/DiGbJ1VSsKoxEF7tm8tz2I/tBzEUk=
Subject key identifier: 9C:82:54:20:14:EE:5D:17:96:F5:1F:8C:CE:03:8E:B7:FB:74:48:49
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0A409CEA4F6D22080B5910BDAE326E27954F5282
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:36 +0000
ROA not before: Mon 26 Sep 2022 07:56:36 +0000
ROA not after: Mon 25 Sep 2023 08:01:36 +0000
asID: 59282
IP address blocks: 2400:d680:ce::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:40:9c:ea:4f:6d:22:08:0b:59:10:bd:ae:32:6e:27:95:4f:52:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:36 2022 GMT
Not After : Sep 25 08:01:36 2023 GMT
Subject: CN=9C82542014EE5D1796F51F8CCE038EB7FB744849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:05:b7:8a:13:44:6b:e1:a2:ed:ab:a0:9a:f7:
ea:09:59:4a:c9:c3:1e:70:fc:0a:e8:38:4c:26:d9:
f4:dc:51:9d:6b:c1:e7:97:77:f4:bc:0e:32:86:08:
94:37:b2:70:69:ec:5e:25:af:4a:9e:8a:dc:1b:d3:
d8:3b:fb:c8:ef:23:3f:1a:80:64:fd:12:85:a5:3b:
19:84:c1:ab:6d:6c:31:cf:36:19:7c:94:01:79:bc:
db:ee:35:94:bf:5f:0a:42:7a:1a:02:a8:51:c2:d0:
4c:61:27:1d:ef:c6:a2:01:db:95:a0:2c:1d:57:d1:
ba:6b:6b:0c:e2:80:c4:49:2c:02:5d:47:9f:fa:22:
2b:1d:fc:f2:98:5b:9c:c2:b1:ae:ba:97:b0:c3:3f:
3c:6a:8a:34:92:3f:60:bf:ad:1c:96:1f:ad:a0:06:
44:90:1b:62:2b:83:b6:d1:25:ad:df:d3:f6:c5:15:
92:72:7c:34:2c:19:54:e0:09:2e:e2:9b:d2:0e:d7:
f9:19:8b:7f:b1:98:f9:de:f7:e2:df:3f:44:8d:f9:
95:8c:fb:b8:f0:f9:3e:ab:b5:03:95:62:90:a0:c7:
3a:45:c8:b7:30:28:9d:aa:32:0e:ba:9c:aa:85:d8:
5b:49:63:9d:5a:4b:ea:ea:e1:f7:06:ba:68:58:7f:
b7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:82:54:20:14:EE:5D:17:96:F5:1F:8C:CE:03:8E:B7:FB:74:48:49
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ce::/48
Signature Algorithm: sha256WithRSAEncryption
8e:7e:34:fb:ae:ac:46:96:b5:fb:ae:fb:d5:54:90:f5:f4:bd:
50:8f:f7:aa:1a:db:1f:e9:7d:92:44:ad:7c:03:f1:75:f4:45:
60:15:41:63:bd:6b:f4:b7:ca:77:fb:7e:5f:33:a0:55:df:7f:
51:a2:cd:fb:fb:12:12:58:32:d1:0d:40:8f:fc:5f:ef:68:da:
ab:ed:60:1f:e9:05:a8:22:56:80:a3:ba:44:f4:d9:f8:8b:e7:
3f:d6:c6:b5:c6:3d:a9:4f:9b:4c:10:0b:97:c9:38:8c:13:f0:
f1:0a:3d:54:27:21:1f:c1:a3:eb:77:6a:4f:41:28:05:67:8e:
9b:53:eb:9f:e6:d8:fd:12:0c:1e:6b:08:9f:c8:13:5f:bd:cc:
50:86:e4:4f:ce:07:e5:7b:07:cd:b8:43:d1:44:8a:47:62:68:
13:b8:d4:ec:d0:28:cf:d8:52:f5:42:87:28:98:58:54:57:d0:
55:35:f3:2d:56:30:e8:70:73:e6:9b:aa:5a:15:2a:b4:f6:02:
3f:26:26:47:a7:e7:b5:d3:3a:92:fa:10:9f:ab:fb:da:b1:91:
85:1d:14:a9:7b:5f:18:b4:8c:8b:7c:ce:97:a0:bf:3f:32:5d:
14:9d:6e:8e:a7:e2:eb:b5:19:42:3a:02:4a:3f:d1:ae:1d:a1:
41:cc:96:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org