Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: VaCx7MAraYX5yOIPK/yAvGKjFb0K7J5hAAoOA/pQGXM=
Subject key identifier: D2:73:3E:C2:40:26:C4:42:9E:A7:97:D4:C0:A9:4F:FF:14:D3:A6:19
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4D1C17C64630F12B77E12764902C197AEC17590C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:18 +0000
ROA not before: Mon 26 Sep 2022 07:56:18 +0000
ROA not after: Mon 25 Sep 2023 08:01:18 +0000
asID: 59282
IP address blocks: 2400:d680:fb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:1c:17:c6:46:30:f1:2b:77:e1:27:64:90:2c:19:7a:ec:17:59:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:18 2022 GMT
Not After : Sep 25 08:01:18 2023 GMT
Subject: CN=D2733EC24026C4429EA797D4C0A94FFF14D3A619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6c:58:f9:01:08:3d:7c:5b:08:ce:4d:8b:94:
ac:e8:3f:f8:b6:cf:7a:76:af:04:ad:f4:dd:21:99:
7d:cd:7d:be:90:ec:6b:c4:ed:b0:70:a7:52:1e:30:
62:8c:8e:d3:d7:03:5f:67:ed:c4:f1:3f:83:b9:1b:
ae:3e:b8:78:45:dc:92:ba:60:da:e6:cb:ac:b4:f7:
d2:ca:6b:0c:01:da:04:3d:99:31:18:cf:77:6e:02:
41:5e:3c:31:e9:95:d0:a2:68:65:24:e6:e5:7a:6a:
7c:e6:3c:a7:b7:91:8c:5b:a9:8f:c9:7a:9b:d7:50:
bd:a9:b8:8c:14:73:ba:08:32:71:97:45:ea:31:a9:
e8:37:ce:89:a3:da:fe:d8:3d:d9:94:f9:f8:a3:c3:
d8:b7:41:47:0e:68:58:03:6a:49:e9:9e:ef:d1:51:
0f:c5:9d:9b:9a:c4:b6:26:68:ba:ce:72:82:fc:f1:
5d:4a:bf:b5:26:49:c0:d8:6a:ad:fa:b6:2a:de:bf:
dd:11:7a:a4:fb:fd:d3:14:cc:9e:75:33:d1:93:f8:
8f:65:75:d8:dc:97:af:5b:e4:f5:06:cd:c3:1f:b5:
1a:4c:48:f5:9a:c1:fe:98:06:8b:e6:3b:22:82:6c:
e9:2a:dd:5a:94:64:12:ac:6e:c1:90:5b:5f:7d:10:
bd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:73:3E:C2:40:26:C4:42:9E:A7:97:D4:C0:A9:4F:FF:14:D3:A6:19
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:fb::/48
Signature Algorithm: sha256WithRSAEncryption
a1:80:f3:32:82:ac:94:55:df:c1:b4:e4:30:a6:4b:f4:c3:82:
40:d7:bf:58:27:8b:24:1a:a0:65:ba:9c:a6:8f:00:ab:1b:de:
f8:53:72:4a:21:9b:87:da:86:8d:a2:d3:62:b4:05:80:27:f9:
2a:40:a5:41:43:dd:42:14:51:8f:35:1e:ca:a5:0f:e9:00:45:
69:84:6d:34:5b:7b:d4:99:26:65:4e:75:ed:b7:c1:bb:c9:b8:
45:af:09:e4:14:a5:dc:fd:37:29:a0:8f:b9:07:d9:dd:a2:82:
80:6a:17:c7:f1:c0:b4:fe:fe:ac:2e:48:28:b2:6f:9d:ec:d3:
8b:b6:29:e6:88:2a:71:b3:a1:b4:75:4a:da:f1:50:63:be:09:
04:10:5a:53:5f:ae:a6:59:f5:cf:a6:e8:60:a3:0d:50:1f:3d:
97:c2:fc:f4:4b:b5:c3:5d:ec:52:78:23:e1:9b:75:44:70:f7:
95:3d:d7:43:da:09:99:ea:5b:c0:36:1e:34:2e:b7:cb:49:55:
ce:f7:37:3d:50:07:d4:87:20:14:79:e5:94:c0:38:73:eb:2f:
56:ec:fc:c6:14:45:5f:ff:d9:f8:33:33:51:eb:9b:78:32:99:
3e:89:3b:b8:19:fb:e6:2e:d9:22:80:c5:ee:ab:07:d7:86:09:
e9:68:30:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org