Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3133343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sEaUy8Q6119xcLjpkn9bbch0DzxQnFtnkL3A1EhCPfM=
Subject key identifier: 81:41:38:17:8D:23:E5:30:3D:35:25:D4:93:4E:48:29:4D:F3:4F:F1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 25F680D0F61860572E75658AE06FB4E84D8D93C7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:30 +0000
ROA not before: Mon 26 Sep 2022 07:56:30 +0000
ROA not after: Mon 25 Sep 2023 08:01:30 +0000
asID: 59282
IP address blocks: 2400:d680:134::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:f6:80:d0:f6:18:60:57:2e:75:65:8a:e0:6f:b4:e8:4d:8d:93:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:30 2022 GMT
Not After : Sep 25 08:01:30 2023 GMT
Subject: CN=814138178D23E5303D3525D4934E48294DF34FF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:2c:8a:8f:db:26:b9:15:3b:6b:8e:95:09:
21:2a:75:52:48:87:56:73:86:28:a8:e4:a1:33:1f:
1b:32:2c:6d:73:7e:65:45:da:ed:28:a9:16:89:92:
bf:5e:8c:68:29:fd:3d:ba:7b:e5:e7:a2:87:63:ea:
a0:18:e6:54:ab:7a:94:57:87:3b:08:04:4f:c0:ea:
14:96:6c:6f:a8:ce:c0:67:42:56:ad:7c:7f:10:4a:
b3:97:ff:0a:b2:3d:f5:b4:87:fe:32:60:74:59:23:
3a:e8:cb:7d:4a:37:2a:d4:6e:c6:89:a5:40:e6:df:
68:32:c4:ab:c5:28:4e:0d:9a:9a:31:03:08:aa:c8:
a9:41:e7:15:70:04:0e:b9:9f:aa:19:ef:df:1d:05:
42:9a:54:c9:90:0f:f4:da:05:b0:b0:fb:50:e0:ca:
08:18:52:97:ad:11:49:fa:46:79:14:a2:35:ea:ed:
05:f7:1c:6b:af:f3:20:2c:25:24:d7:b0:70:d6:4b:
80:1e:81:eb:14:12:c3:1d:04:cf:54:ad:cb:d3:7e:
37:8f:3e:7d:f4:e6:d6:cb:a4:4a:09:98:20:59:70:
40:89:bf:d6:88:80:6b:c0:cb:76:57:b5:78:56:a3:
2c:e6:59:8f:6e:83:e3:d8:ce:7f:eb:5d:ba:b7:cf:
51:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:41:38:17:8D:23:E5:30:3D:35:25:D4:93:4E:48:29:4D:F3:4F:F1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3133343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:134::/48
Signature Algorithm: sha256WithRSAEncryption
63:22:69:12:c7:ce:19:eb:f7:78:db:44:9c:6b:f0:de:a9:24:
85:f9:d0:38:41:63:d7:bb:f8:c4:f5:8e:01:5f:dd:39:12:8b:
2a:6c:ad:33:9b:c3:54:4f:09:be:f0:80:e6:fe:ef:49:0a:a4:
28:35:5a:e1:ad:7e:51:4d:11:4a:05:2a:a7:a2:f7:aa:d5:8b:
9b:7f:de:77:5e:9f:2d:38:2c:d7:40:27:30:0f:74:3f:a3:bd:
d0:d7:79:b1:a1:f9:ca:59:98:99:93:dd:94:7c:e4:6a:a5:04:
89:57:3a:d0:d3:68:7e:dc:a8:7d:5a:d9:4e:32:52:26:1e:4a:
0a:7d:fe:fa:31:86:22:95:67:c3:3c:3c:2e:2c:9e:fb:f9:58:
26:62:a4:db:94:29:b0:9a:bc:c8:6a:fe:19:6e:c0:45:b8:91:
26:2a:d6:97:09:a8:8f:ae:c8:73:55:3b:eb:7a:58:62:bc:eb:
a5:e2:f2:f4:27:c3:ee:7c:91:3d:81:1e:99:8e:9d:a3:5f:3f:
26:9b:e2:bc:da:40:d5:05:bc:e0:3d:e9:1c:ce:5a:38:5d:d7:
27:dc:76:27:1f:71:93:c1:6e:f0:71:e5:6e:be:87:5d:7c:bf:
8d:ef:7a:8b:25:7c:f6:84:19:2b:43:2e:46:c4:56:02:31:ac:
9e:7a:c4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org