Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: F4c2gHKoKLa1MHQAJW/xmORtypc3OO4Ghm6ILDmrJ80=
Subject key identifier: 19:84:1F:3F:46:6E:7F:09:2B:BC:70:EE:B0:65:72:EB:7C:2D:D7:61
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D3C0C3474D48D7C9256CFE9CDE9FE33CEC65C54
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:152::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:3c:0c:34:74:d4:8d:7c:92:56:cf:e9:cd:e9:fe:33:ce:c6:5c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=19841F3F466E7F092BBC70EEB06572EB7C2DD761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:66:46:e2:0a:d7:f3:fd:37:01:36:1d:7e:15:
21:aa:d2:f5:c2:73:dd:94:22:f2:e2:ed:9c:e9:4d:
46:45:75:06:31:b1:3b:71:1c:7a:c3:8d:14:d5:78:
e9:9d:eb:a0:f0:c4:bc:89:1c:96:c2:98:6c:be:7f:
35:2a:67:71:ff:63:74:3f:11:a7:7c:8f:ee:6b:8d:
bb:44:02:ca:5e:13:20:ad:28:3f:32:9c:24:91:f3:
55:ec:14:f2:5d:c2:fe:d0:fc:ee:fa:f6:0c:18:67:
42:9c:4e:5e:d0:2d:48:0a:e2:60:41:b7:b9:72:5c:
c0:a0:20:20:18:64:aa:63:9b:ff:9e:8b:a2:f8:97:
b9:ab:b9:b8:8d:20:f6:bc:78:97:41:ef:0c:c8:7e:
3c:a5:ee:b2:27:f1:d0:7e:ca:6b:61:ef:da:ec:91:
bd:e2:df:8a:d3:c2:28:52:f3:fa:7d:b7:7f:c4:ff:
9e:8c:0c:61:6d:9f:6f:37:8d:bd:9d:3e:1b:43:d7:
64:e1:03:36:ee:33:a2:9c:00:09:85:6e:eb:1f:65:
6a:49:9d:e7:f0:03:7a:9b:24:66:43:fb:3e:35:2a:
c4:3a:3c:cd:6e:40:72:1b:32:ef:17:e5:9b:3e:15:
e6:74:82:41:1a:a1:9f:cb:89:bd:21:4c:79:0b:9c:
22:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:84:1F:3F:46:6E:7F:09:2B:BC:70:EE:B0:65:72:EB:7C:2D:D7:61
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:152::/48
Signature Algorithm: sha256WithRSAEncryption
1d:8b:29:08:37:2f:4e:51:80:e2:22:b1:c7:63:80:b1:07:3f:
48:30:16:95:45:e7:26:08:6b:56:4f:ea:9e:4c:a7:6f:4e:94:
28:73:63:70:9a:a7:6a:81:96:04:ff:05:89:b9:c0:9e:8a:e1:
81:8e:c1:16:39:fa:43:62:5c:17:5b:d7:70:58:44:6c:bc:6d:
46:4d:49:02:8a:c2:3d:19:ad:7e:68:9a:fc:16:e7:29:13:2b:
c6:3b:77:8e:a7:7f:a1:34:fa:66:5e:eb:0d:1f:9b:12:8b:6d:
25:7b:7d:d5:12:13:48:9c:ce:b0:e4:37:2c:93:a1:a9:36:c4:
14:82:2c:02:35:c6:73:af:58:53:96:90:ee:ef:a6:52:3a:62:
15:d5:aa:b7:52:26:87:7d:55:19:7d:b0:81:c0:8c:09:e8:17:
0c:10:c3:95:bc:7e:33:a2:8d:72:78:2b:34:33:98:35:4d:57:
26:eb:c7:e4:b9:74:eb:31:5d:6c:91:17:44:49:d2:50:0b:94:
96:02:94:b8:7d:e1:c4:11:68:ea:31:64:88:b4:ab:29:62:29:
b1:21:63:a1:b9:67:68:af:d2:e2:69:43:fb:e1:03:ce:80:2a:
3d:f9:56:ea:73:3b:ef:5a:72:47:22:76:59:96:0d:d7:85:7c:
8c:7e:5c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org