Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: tmX5it7or+ZFxEkresyuH2W7lRO6GCedGCQ/jFCFITw=
Subject key identifier: 81:6E:48:D8:9F:14:73:20:07:D3:FF:5D:CA:F9:D7:4C:8F:5B:15:C5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5CB951B95A91C834BE44FFC6937E0F7114230AB2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:22 +0000
ROA not before: Mon 26 Sep 2022 07:56:22 +0000
ROA not after: Mon 25 Sep 2023 08:01:22 +0000
asID: 59282
IP address blocks: 2400:d680:219::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:b9:51:b9:5a:91:c8:34:be:44:ff:c6:93:7e:0f:71:14:23:0a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:22 2022 GMT
Not After : Sep 25 08:01:22 2023 GMT
Subject: CN=816E48D89F14732007D3FF5DCAF9D74C8F5B15C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:b9:56:5d:0e:e2:42:bb:2b:1d:29:a6:76:
65:8e:08:f2:af:08:10:53:0a:69:40:38:33:32:46:
47:0e:2f:0f:de:3b:49:bf:e8:e7:23:d6:79:c1:89:
74:e0:87:88:6f:62:33:e0:89:1a:4c:d5:61:08:e9:
07:12:c3:33:98:03:52:3e:8a:e0:dc:5f:00:83:41:
71:b3:91:e2:7e:4e:f0:8a:98:26:4b:07:a9:e1:3f:
25:a7:82:54:da:5f:2f:ec:dc:aa:74:38:af:86:3d:
9c:de:b9:f5:ef:84:5b:1c:1c:39:80:f8:08:1e:d7:
df:53:ce:d7:62:10:6c:f4:7b:23:01:46:93:2f:e2:
da:40:a2:1b:da:6e:25:60:dc:81:42:8f:27:72:63:
c8:04:01:e3:e9:09:c8:ca:da:68:31:5f:f9:e6:78:
d1:63:b4:75:71:23:53:c8:7d:3b:d3:4e:57:1d:74:
1f:87:93:68:1d:e2:c2:a6:15:4f:a2:f9:08:f5:55:
47:95:34:a9:49:52:f2:24:f9:cd:d7:c8:01:1b:17:
2f:a9:0a:da:58:a4:1e:ad:4a:cf:e9:0f:9a:3f:6b:
76:cb:cc:24:59:05:41:78:63:6c:5a:ad:d7:fe:5a:
b1:59:cb:dc:c4:1c:05:d9:e2:55:7f:30:a3:02:76:
2c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6E:48:D8:9F:14:73:20:07:D3:FF:5D:CA:F9:D7:4C:8F:5B:15:C5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:219::/48
Signature Algorithm: sha256WithRSAEncryption
7c:67:c2:ff:19:f4:c8:74:3b:7d:dd:73:d3:3a:dd:ee:d4:6b:
ba:f1:03:8b:80:29:7a:e3:d4:84:61:eb:55:00:05:37:17:71:
a7:52:97:62:b4:9c:36:0c:9b:16:8a:73:50:b1:ef:42:30:bf:
04:53:f0:52:ff:6e:3f:80:73:f1:da:db:85:1e:84:cf:b4:2d:
df:91:11:56:71:f7:5a:94:cd:b0:d8:2a:3e:13:3e:1d:6e:45:
6c:ab:40:1a:a4:32:ec:a0:b5:4e:37:17:46:5b:6f:9a:33:ee:
24:6d:f3:f7:5e:c6:52:c0:b2:0d:e2:a0:48:9d:92:5f:4d:82:
52:9e:26:cc:d8:e8:bb:41:20:66:f4:16:ee:28:89:17:72:35:
21:34:9f:d8:24:f2:c7:73:8a:5a:82:6c:4c:9c:5a:9a:be:cb:
27:2b:bd:af:eb:bb:8c:9f:41:90:e1:33:6a:4e:45:dd:c1:4d:
75:82:3a:1f:af:be:10:75:bb:b6:35:7f:c0:c6:bd:df:ab:1f:
a3:74:29:17:f9:d2:5c:ef:03:e6:d5:d1:ee:15:99:e4:1e:3e:
d8:46:fe:11:68:e4:5c:ad:ca:fd:51:12:23:84:2a:3d:c2:f8:
f6:82:26:eb:e9:31:78:81:a5:0d:57:56:b3:09:71:92:fa:4c:
98:1b:4c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org