Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3166303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: v6a2KUXRldOJRaFOYoknsQ/0nljVGWupGOzPd+nQ4yg=
Subject key identifier: AE:1D:6F:98:37:A4:A1:77:19:45:EF:B4:CF:72:89:93:22:F5:7C:FB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5DA77F31ECE964A86B52BCA5B09DFE45BBCE61AD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:32 +0000
ROA not before: Mon 26 Sep 2022 09:55:32 +0000
ROA not after: Mon 25 Sep 2023 10:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:1f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:a7:7f:31:ec:e9:64:a8:6b:52:bc:a5:b0:9d:fe:45:bb:ce:61:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:32 2022 GMT
Not After : Sep 25 10:00:32 2023 GMT
Subject: CN=AE1D6F9837A4A1771945EFB4CF72899322F57CFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fa:35:b2:25:98:6f:5f:07:ae:55:db:66:d1:
45:00:b7:a2:11:0b:64:60:99:81:b1:49:db:ba:65:
c7:11:74:09:9b:93:ab:74:fd:81:56:b2:32:05:24:
dd:42:50:05:25:88:20:8c:26:8a:fa:a0:3b:36:8f:
80:99:2a:a8:7b:64:c0:48:e4:17:2b:d6:c5:e7:fd:
7f:70:0f:fc:10:00:c0:5c:de:20:4e:a0:a3:97:f9:
a0:35:c2:1f:95:29:36:86:01:d4:c5:93:f4:25:39:
84:bf:e9:ff:88:91:f9:08:2a:5a:7d:1f:65:54:32:
26:47:b5:b9:ea:cd:7a:0f:bc:df:47:86:ee:2b:ba:
88:bc:25:57:92:69:98:90:ef:18:00:11:b1:93:4b:
6a:5b:c2:73:3f:d7:21:49:98:60:7b:0b:9b:c5:1e:
1d:fa:50:89:a7:ec:8e:b2:cd:85:e8:ec:ee:c2:4a:
8d:c0:a6:c9:7a:e3:7e:c7:c2:b6:6a:e6:10:40:06:
5c:72:8b:53:7f:5e:81:f2:73:2c:ee:81:1c:2f:a0:
c8:e5:0b:cf:be:95:0e:8e:33:e5:0e:56:28:3e:41:
70:4e:b3:32:b2:b9:54:eb:89:aa:82:30:23:8f:c1:
43:8e:99:cf:e0:a2:63:15:20:23:52:fd:dc:f2:28:
61:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1D:6F:98:37:A4:A1:77:19:45:EF:B4:CF:72:89:93:22:F5:7C:FB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1f0::/48
Signature Algorithm: sha256WithRSAEncryption
32:1f:b0:e9:b3:96:53:39:92:12:3d:54:98:77:2f:a1:02:cf:
df:50:7e:d1:0b:65:33:ad:f3:d7:13:49:83:e8:9b:06:0d:b4:
86:08:58:56:52:64:4f:b4:a5:10:e6:68:1e:16:fc:37:09:b4:
57:95:6d:18:07:43:44:17:e8:06:84:02:a9:5b:d0:85:39:cd:
43:61:3b:17:8c:1e:95:9f:f0:e1:85:c4:23:8f:73:ed:74:8b:
69:fe:a8:cb:84:09:db:9e:03:16:bb:dc:87:4e:3f:ca:f5:d7:
8c:04:16:cf:5f:1c:b2:5a:55:17:3d:90:19:8f:1b:22:15:10:
7f:e7:e6:f1:57:eb:d3:89:dc:50:61:c8:a8:f6:91:d7:52:4e:
14:83:32:06:1b:63:61:59:fc:d8:5d:2c:65:bb:0e:6d:9a:b2:
b7:6d:d2:9b:c7:aa:fd:e2:68:13:67:e1:d5:7d:28:ee:e1:f0:
9d:c6:67:e5:fa:50:4b:6c:e1:c8:05:c5:d7:b0:36:60:17:6e:
1f:a1:4c:df:84:41:c3:18:cc:24:04:c8:9d:36:1f:b5:34:58:
25:2c:87:72:6b:b6:eb:95:ec:1f:61:b7:9f:68:90:23:57:a4:
d6:b2:fe:16:e4:37:d2:c7:50:a4:b4:86:4a:c8:a5:2b:b4:7e:
aa:a2:5d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org