Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rq3pxNUshnRqWXkLRKO+De3F1eKKix4U6pOQAqHSviI=
Subject key identifier: 93:38:9B:86:20:7D:5A:7B:62:7F:46:44:A6:9E:E1:83:0A:71:95:77
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4D2D85EC225C5AFBBE32A6765B46E7A85D663CD9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:25 +0000
ROA not before: Mon 26 Sep 2022 09:55:25 +0000
ROA not after: Mon 25 Sep 2023 10:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:1ad::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2d:85:ec:22:5c:5a:fb:be:32:a6:76:5b:46:e7:a8:5d:66:3c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:25 2022 GMT
Not After : Sep 25 10:00:25 2023 GMT
Subject: CN=93389B86207D5A7B627F4644A69EE1830A719577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:30:00:57:7a:cb:ba:cc:ed:ec:ca:25:f1:1e:
61:2b:c3:66:17:8f:2c:3b:a7:89:38:1d:21:85:e4:
d9:50:d3:72:64:05:7a:b9:20:fc:d8:84:55:dd:24:
3d:38:75:16:f7:8c:a2:eb:2c:6b:79:70:e4:b6:80:
aa:3e:53:9f:c3:c4:55:6e:5c:ba:eb:ac:b4:b3:09:
b1:bf:c6:4a:66:eb:2d:a2:f1:3a:ce:de:12:57:d6:
6e:a2:23:a0:18:11:00:b7:9c:7b:fd:30:5d:61:0f:
cc:a5:6f:3c:d8:36:47:a2:70:31:60:be:38:3b:47:
f6:65:a5:21:df:f9:70:58:49:b0:11:e9:ec:db:1b:
b5:73:79:28:67:cb:cf:b2:84:e3:0b:4f:f1:6c:01:
39:12:6d:70:84:10:cc:00:84:fe:6e:b3:e5:5f:11:
c4:cc:fe:7b:ae:c7:b0:3e:91:23:57:6d:1a:6a:48:
1c:6e:78:c8:47:9e:68:9e:0a:37:75:59:19:57:ea:
30:33:6a:c9:3f:ef:3f:da:c2:90:da:1b:d8:4c:41:
a6:84:51:8f:a3:43:74:cc:0f:c1:bf:ce:8f:14:e8:
6b:12:36:73:2c:db:ef:02:07:6d:9d:f7:c6:c1:fb:
1b:4f:08:cc:94:af:70:6c:3e:da:25:6d:db:43:5e:
cf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:38:9B:86:20:7D:5A:7B:62:7F:46:44:A6:9E:E1:83:0A:71:95:77
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ad::/48
Signature Algorithm: sha256WithRSAEncryption
51:cb:70:ba:ed:99:ab:83:ec:77:f7:49:42:1c:1f:67:ca:ef:
9c:aa:b5:69:bb:5d:c6:17:c7:bf:9a:c7:97:67:8b:9d:ff:93:
a5:ad:2e:04:51:cd:7e:9f:78:a9:f5:98:dc:69:5d:dd:62:a2:
d6:d4:e0:81:11:6e:60:7a:fd:90:53:03:46:54:7f:81:b7:fd:
b6:fc:55:b2:79:7d:c8:d1:7c:f6:d5:2b:2f:3b:39:74:13:4e:
54:3b:e7:96:8f:b7:77:f3:49:2e:2f:4d:d7:22:ff:ed:02:ae:
5c:2d:80:c3:0d:dd:a6:77:e9:70:51:e2:80:63:ce:87:2b:20:
e8:e9:86:a8:fe:55:fc:87:cf:5a:1c:dc:67:06:82:a5:80:9e:
ed:c3:38:82:1f:af:be:de:ba:8f:a5:72:d4:59:95:99:a3:9a:
17:85:c0:bb:87:44:d3:47:c2:6c:c1:4e:60:65:3c:86:c2:9d:
1d:21:3d:79:ac:ff:fc:ac:3b:d0:3f:fc:20:9f:0a:9c:2c:b8:
f4:f2:48:48:b0:c2:dc:34:51:ee:38:94:f8:ce:3b:24:d4:49:
99:b4:43:e3:b1:1a:d3:5e:b3:2e:5a:62:ed:51:55:78:39:53:
86:c9:15:41:6f:bc:c0:33:00:13:a0:a7:27:a5:6f:b1:9a:57:
c7:9e:a3:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org