Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2Oejx/rPsKmpuW/Yj0XPRGtLjDZmXOHIl05HMlimP+k=
Subject key identifier: 5F:2B:9A:78:18:4C:02:76:77:DF:A9:8B:F1:C6:0F:CD:EA:D9:79:68
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5E800C0C4521E61F8C39FF857105CA771C1DEA33
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:28 +0000
ROA not before: Mon 26 Sep 2022 07:56:28 +0000
ROA not after: Mon 25 Sep 2023 08:01:28 +0000
asID: 59282
IP address blocks: 2400:d680:227::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:80:0c:0c:45:21:e6:1f:8c:39:ff:85:71:05:ca:77:1c:1d:ea:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:28 2022 GMT
Not After : Sep 25 08:01:28 2023 GMT
Subject: CN=5F2B9A78184C027677DFA98BF1C60FCDEAD97968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e6:fb:4d:3a:30:48:88:63:18:e5:29:e9:af:
f6:b8:b4:bf:1e:20:e7:34:e2:30:e9:52:dd:89:8b:
e3:c9:0c:d9:a4:10:44:e1:e1:8b:10:28:7e:52:08:
2d:9b:73:1f:dd:bd:87:90:a8:cc:c2:bf:cd:ba:11:
f9:a5:c2:3a:80:e9:a6:42:6f:8d:fd:e0:11:be:55:
20:dd:c0:66:53:d6:c0:89:16:12:d2:f9:bb:3a:65:
5d:7c:b1:5a:a6:b5:26:cb:49:0f:8f:32:91:5f:1e:
13:c9:35:c2:88:ac:d0:10:7c:d0:12:78:5c:5b:d4:
ff:1c:32:4d:0f:ec:11:f0:c3:d0:9d:84:2c:cf:dd:
be:38:08:1d:76:57:6a:b3:fb:a7:29:ca:15:f4:93:
cd:a3:f6:93:c3:78:1d:98:e2:8c:45:7d:e4:4e:86:
12:a3:78:f0:83:df:9b:5e:57:c6:1f:93:a3:a9:52:
f5:59:98:d8:a1:b5:34:2c:49:9f:9c:0b:bc:5b:88:
6f:4a:b6:bd:6a:47:13:de:ed:72:2f:3d:20:76:78:
d6:39:30:d3:4c:bb:50:02:23:95:98:89:55:d3:9f:
d2:61:03:ac:69:01:61:9d:74:4c:fb:98:28:60:91:
58:3f:17:21:2d:b7:9b:aa:6f:7c:37:8b:d6:45:82:
8c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2B:9A:78:18:4C:02:76:77:DF:A9:8B:F1:C6:0F:CD:EA:D9:79:68
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:227::/48
Signature Algorithm: sha256WithRSAEncryption
8f:3c:af:38:00:98:af:2f:6c:66:8f:75:91:9e:5e:21:92:3a:
99:20:06:a9:18:40:1d:e4:da:7d:e5:7b:b4:ef:39:2c:cf:1c:
47:63:e3:b7:88:6b:b4:25:8f:dd:fe:18:28:9d:1c:d7:e6:81:
b1:91:11:28:3b:18:9b:e5:37:f2:f4:ea:d2:9d:31:d6:ad:9a:
41:ab:a6:66:37:d4:f5:69:db:26:11:3c:78:43:50:aa:71:b2:
81:87:5c:45:33:9d:ad:80:e5:b4:e8:bf:5d:31:03:6a:74:92:
bf:3c:b3:94:eb:fc:b1:34:9d:6e:69:51:b4:bd:b8:ca:fe:f1:
e4:5b:15:56:72:37:da:55:55:40:5b:fe:d2:15:42:10:e2:b9:
38:cc:7d:70:f5:95:c8:5e:f0:ff:56:64:bf:06:30:bd:2c:82:
c8:16:c5:6e:e7:57:db:f0:7b:21:4a:7d:4c:4b:ff:d0:54:35:
79:ee:57:03:01:78:d0:de:1a:33:df:d9:7e:0a:54:17:2f:e0:
9a:0b:31:5d:2d:2b:f0:30:3f:e1:74:8a:f8:32:a5:42:bc:62:
61:3f:98:bf:5f:4e:5f:f1:1c:2b:5c:67:9b:5c:94:2b:6e:5e:
f8:43:5d:58:75:82:a5:2c:02:82:c8:02:97:17:59:d7:ab:84:
67:f0:e9:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org