Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: tY/IZ5GWS9s1y1QaYma2rs2AiYIFHVbM+5n9Gh8ETEU=
Subject key identifier: 5B:76:06:4D:2E:4A:06:9D:26:FE:76:4D:8E:06:D3:7C:BB:07:16:BC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 63113F12C125376DBF4A32B309070522462C2E38
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:46 +0000
ROA not before: Mon 26 Sep 2022 07:56:46 +0000
ROA not after: Mon 25 Sep 2023 08:01:46 +0000
asID: 59282
IP address blocks: 2400:d680:21c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:11:3f:12:c1:25:37:6d:bf:4a:32:b3:09:07:05:22:46:2c:2e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:46 2022 GMT
Not After : Sep 25 08:01:46 2023 GMT
Subject: CN=5B76064D2E4A069D26FE764D8E06D37CBB0716BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3c:24:65:b5:53:1b:ec:10:c8:22:0d:e4:f0:
62:aa:7b:52:b3:98:e0:5f:99:0d:c2:50:a9:e6:a2:
da:da:42:69:3a:7d:50:8d:2a:6e:d8:e1:66:43:57:
a8:e5:82:37:9c:64:c4:10:0e:c2:64:d2:fe:91:0e:
df:38:e1:83:20:de:ae:9c:1a:fc:da:df:31:16:ac:
ae:c9:5f:d2:c2:b2:81:ed:51:cf:5d:86:c9:28:29:
57:53:1c:82:0e:76:ad:a8:2c:20:cd:2f:b2:ed:72:
13:81:f7:b9:7e:c4:cd:bf:4f:6d:09:ae:86:2e:52:
fc:f2:14:27:2f:52:a6:b1:7d:db:5c:a0:b5:ad:26:
ef:11:0f:d6:3f:84:d3:ef:ef:a2:48:5b:f3:71:fa:
c8:a2:a1:7c:cb:10:8a:d7:a1:3a:b5:26:a0:54:82:
f1:53:56:44:77:3d:a3:46:aa:b2:35:b5:2f:c2:fd:
80:ea:1b:cf:12:4b:65:e5:ca:6a:a1:a9:ce:a7:42:
b7:85:75:67:d5:93:ff:af:24:8c:7a:7c:fd:fd:11:
7f:ab:24:cf:3e:7a:e0:67:37:a9:da:bc:2a:39:6f:
a1:a7:b2:69:96:59:c0:4f:fe:e4:e0:c1:27:8e:d5:
d0:a6:8f:4e:75:f2:22:2e:ca:b1:15:20:67:b8:88:
8c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:76:06:4D:2E:4A:06:9D:26:FE:76:4D:8E:06:D3:7C:BB:07:16:BC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21c::/48
Signature Algorithm: sha256WithRSAEncryption
8a:10:33:fb:05:fb:88:10:02:88:4b:0e:72:0c:a5:cf:c1:44:
63:b4:5f:c2:a7:16:c5:7d:5f:1b:92:2d:ab:19:c6:ce:02:d7:
72:73:7e:54:e0:0f:68:c6:a5:7c:54:ea:25:9e:0f:27:5d:d3:
53:ab:81:3e:aa:56:8f:1c:4e:eb:f7:02:d0:70:95:99:07:91:
82:60:39:20:9f:78:6d:c8:0f:13:25:2f:0a:ed:c1:0b:68:99:
20:7d:21:47:57:dc:71:61:67:1a:95:6a:fe:53:5a:37:db:5d:
60:9a:20:d7:e1:2f:a6:ba:87:ee:af:5a:ed:55:ae:ee:d6:00:
8c:a8:60:9b:b2:55:f3:5c:5d:3f:c8:b4:22:49:17:55:c2:a9:
23:e9:9a:cb:a6:6c:1b:dd:6b:fe:97:a7:03:d3:9f:c3:61:ed:
7a:1a:33:fe:10:85:79:cb:68:b6:77:4c:85:81:cf:e0:d1:bb:
9d:a5:9e:02:b3:1e:a9:36:cb:7e:29:d9:4a:49:be:79:6d:ba:
b3:2f:c1:78:f8:d9:76:3b:2a:0d:ef:d3:81:6f:2d:8c:8a:bf:
93:72:fa:cb:b3:9c:bf:b6:43:bf:68:d6:43:d3:34:98:54:dd:
11:62:27:6b:93:b3:15:e8:b8:bf:8d:0f:9e:45:71:79:6f:6a:
28:04:c9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org