Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ftU4bRi8WhDAAUWaJNVtA9g9cDmeMty5bUTA98tdprw=
Subject key identifier: DD:54:76:5A:69:19:A6:61:57:E3:AB:68:0B:D9:E1:53:ED:CB:92:B1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5A3C74BB65B99E6509005D35DC81B6F2B66D1559
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:59 +0000
ROA not before: Mon 26 Sep 2022 07:56:59 +0000
ROA not after: Mon 25 Sep 2023 08:01:59 +0000
asID: 59282
IP address blocks: 2400:d680:235::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:3c:74:bb:65:b9:9e:65:09:00:5d:35:dc:81:b6:f2:b6:6d:15:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:59 2022 GMT
Not After : Sep 25 08:01:59 2023 GMT
Subject: CN=DD54765A6919A66157E3AB680BD9E153EDCB92B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:06:32:49:1a:70:4c:b4:19:90:c9:72:9e:0f:
70:f8:48:85:73:05:cc:9b:2c:61:1c:db:a9:51:db:
f5:c9:4c:9b:4b:b5:ed:81:2b:18:fe:2d:eb:3c:a1:
ad:b0:ed:b2:aa:26:a9:22:18:6d:26:75:af:64:5c:
f6:48:69:dc:42:46:2e:5f:f8:ce:11:a4:75:4f:ea:
ba:b6:24:16:55:19:59:c4:aa:68:d9:2e:6a:c5:fe:
f9:25:82:87:81:69:51:63:a9:8e:f4:93:ac:f4:58:
37:a8:6b:b0:b7:ef:5b:56:3d:87:06:a2:c9:a9:97:
9a:09:58:81:43:f3:8d:c8:d9:f6:d1:01:fc:af:77:
c6:3d:a8:91:3c:f8:9d:d7:6e:2c:59:33:17:c6:f5:
10:12:f6:87:84:98:58:46:c1:08:cf:bb:1d:4c:9a:
65:97:4f:34:fa:e3:44:30:bb:0a:a1:90:fb:76:4d:
4e:f7:fb:44:5c:e5:a4:08:af:14:00:78:42:15:b3:
d0:8e:35:60:b2:79:f6:9f:c8:a3:c1:30:bf:3a:dc:
16:b9:ca:c8:53:b9:92:0c:b7:7b:d0:17:bf:8f:60:
23:0b:a8:74:73:ec:7b:6b:be:18:98:13:be:1a:0b:
81:2c:d5:74:52:40:47:cd:f7:f0:29:65:66:84:bd:
26:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:54:76:5A:69:19:A6:61:57:E3:AB:68:0B:D9:E1:53:ED:CB:92:B1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:235::/48
Signature Algorithm: sha256WithRSAEncryption
7b:6c:c7:c5:7b:36:f0:a2:8a:ee:49:ff:1c:d0:23:83:56:33:
9b:36:d3:c2:30:97:bb:d9:61:d5:5d:98:8c:41:03:d1:9f:48:
3d:3f:6f:54:96:00:4d:15:40:41:f4:07:ce:93:a0:5a:ad:92:
d0:73:75:9b:f4:0f:e5:eb:17:e3:61:9d:07:77:0f:7c:92:51:
1b:19:9f:e9:53:bb:70:f9:c0:f2:1b:37:c0:97:1f:25:de:f3:
de:00:f3:c5:a1:76:c1:19:6e:03:00:bb:11:a6:0f:ea:d4:b1:
cf:fa:73:5f:04:ba:50:40:5a:2b:77:33:eb:14:62:ef:7f:60:
35:49:c9:9e:e4:bb:cb:99:a1:d6:88:e3:89:08:0e:ca:96:9b:
1f:45:1d:a4:31:08:00:77:16:38:e7:4f:8d:47:db:66:db:62:
3e:0c:21:69:09:9e:36:95:b6:db:4f:ac:95:e8:64:c2:cf:23:
6c:75:01:46:1f:2a:66:80:cb:2e:f0:09:03:fd:ea:e2:57:fb:
50:0d:0c:03:21:a8:e8:b6:11:b2:16:3f:34:30:93:7c:89:b0:
fe:29:44:78:5c:20:9f:4a:a8:06:85:0d:05:d0:c7:12:c9:ab:
05:09:13:17:d6:7d:0b:66:13:cd:83:4d:8c:fd:81:1e:7f:22:
59:cc:e2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org