Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +hmK3ZbfPzoha39fjyS1yC9xbpwxBjjQf0fOtDdlN3g=
Subject key identifier: AD:38:99:46:D3:C3:D1:90:C3:51:7C:07:37:C3:C6:88:04:CC:93:92
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2D70635E4D790CAAA80D1DE497EB2F46941A70B2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:38 +0000
ROA not before: Mon 26 Sep 2022 07:56:38 +0000
ROA not after: Mon 25 Sep 2023 08:01:38 +0000
asID: 59282
IP address blocks: 2400:d680:e2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:70:63:5e:4d:79:0c:aa:a8:0d:1d:e4:97:eb:2f:46:94:1a:70:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:38 2022 GMT
Not After : Sep 25 08:01:38 2023 GMT
Subject: CN=AD389946D3C3D190C3517C0737C3C68804CC9392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a5:2b:5f:c4:f5:14:f1:45:86:6b:4e:e3:30:
d0:75:83:39:25:ee:18:95:fe:8d:67:d3:16:a2:dc:
9a:58:fd:9b:37:b4:5e:10:2e:72:f3:c4:fa:47:4f:
6c:ac:8d:7f:cb:1e:63:24:73:bd:37:8b:34:2a:fb:
38:4a:55:ce:aa:4c:95:78:17:48:09:82:34:f1:be:
7a:e3:f5:2f:4d:9d:63:b0:35:d6:d3:a3:22:5f:98:
22:e4:37:17:d3:9e:4e:f4:89:f2:8b:26:b1:e0:eb:
d7:59:f1:05:95:53:6a:c6:a2:a8:bb:df:8d:4a:ea:
bc:fa:f1:b7:cf:fd:32:23:df:c7:de:46:9d:88:9f:
86:4b:83:81:3f:7a:7a:f7:1c:77:de:ab:c7:04:92:
d5:15:85:1e:7a:01:2c:ab:69:c2:0f:52:3a:ac:36:
e6:99:1c:ab:05:a9:e1:f0:f1:7b:e8:9e:6d:92:71:
6e:e8:9a:1a:67:4e:27:e4:89:58:a5:7d:b4:08:fe:
7d:ea:d2:f2:da:71:ba:34:5a:14:5e:0a:0e:49:08:
e0:ee:9e:8c:b7:0a:26:08:a6:e2:24:de:14:ab:88:
28:ef:6a:6c:6f:18:98:b9:47:34:5a:10:a4:46:e8:
d8:54:b6:42:8f:df:f6:5f:d3:8d:82:1a:06:c0:6a:
21:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:38:99:46:D3:C3:D1:90:C3:51:7C:07:37:C3:C6:88:04:CC:93:92
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:e2::/48
Signature Algorithm: sha256WithRSAEncryption
51:f6:69:e9:fa:0a:aa:14:47:78:a8:7d:7b:d7:a6:35:5e:99:
c5:a8:4e:8e:c4:55:ee:09:0c:7a:06:0e:a0:6c:fc:54:3c:a0:
9c:c6:67:9b:26:1a:7d:80:7b:e7:47:a4:11:5e:5e:71:e2:41:
02:2b:f5:0e:b7:3c:37:eb:56:eb:1e:2d:30:85:5d:41:cf:b6:
3a:25:f4:ac:6f:30:7a:f5:3d:6f:fb:66:74:94:a6:c9:86:6d:
b2:f1:6a:22:af:51:e5:a6:d2:d2:31:ee:77:c5:3d:c7:68:e6:
1f:3f:1d:03:f0:4b:0b:1b:83:ca:17:b7:68:1c:28:da:e4:d4:
55:e1:98:a7:63:bf:60:6f:cd:a3:2c:25:7c:98:33:9e:80:0f:
48:c3:be:27:20:29:f1:69:4a:45:44:03:d2:8c:7c:47:5c:a0:
ba:2d:8e:c8:cf:8e:4d:a6:f2:d4:03:25:a8:d5:e9:ee:33:53:
de:8e:a8:e2:b4:94:e5:a2:48:13:8a:f7:3a:16:9b:fc:77:f9:
92:5b:78:ff:3c:87:cb:84:e6:6a:4c:5e:8d:fe:8c:46:99:f7:
05:31:ba:ed:a1:27:03:f1:2f:ae:a5:41:70:ee:e1:6e:fc:d9:
99:9d:8b:40:ac:d2:a7:5d:d2:32:57:ba:7d:03:f9:07:0a:8c:
87:7e:49:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org