Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: O0JGkGL45MZFENim6mDzDsAJyZzf5Pn+CkONiZP5Ohs=
Subject key identifier: AE:6F:2B:99:23:0D:73:D1:2B:73:54:9E:47:5A:BE:8C:90:00:59:27
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5A418B686698B556502D08D098E2A61AAC67817B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:238::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:41:8b:68:66:98:b5:56:50:2d:08:d0:98:e2:a6:1a:ac:67:81:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=AE6F2B99230D73D12B73549E475ABE8C90005927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8b:8d:b2:21:15:7d:bd:9a:f1:24:35:a0:82:
1f:a0:ec:39:39:f7:e1:09:89:3f:f8:66:0e:b0:dc:
d8:c5:e8:49:81:2b:46:58:75:1e:d3:99:1f:a9:fb:
d1:a9:84:07:3e:67:7e:5a:9f:ca:b4:08:55:75:b9:
30:a5:ef:99:d1:27:7f:e9:b8:5b:11:d4:b5:b7:a5:
bc:be:94:a4:6b:7a:f5:ef:87:10:f6:3f:63:d9:8f:
76:05:e5:53:b5:b5:5b:4d:11:69:d0:c6:29:59:5e:
12:5e:f9:e4:14:c3:58:cf:77:3f:52:ea:ee:86:4c:
17:d6:0b:0f:26:1d:3c:15:13:af:c7:be:37:d2:4f:
8e:d0:ed:bb:0c:81:9a:0b:5b:69:53:59:ff:1c:42:
2f:cc:44:e9:76:7d:b8:17:5b:05:6b:00:44:25:3b:
86:14:6f:38:a4:46:0d:50:7a:ab:07:8c:b1:69:82:
7b:6c:6f:51:78:d9:6c:b9:cf:b8:4c:19:bb:3e:55:
7b:0b:d1:fb:f2:3a:98:78:19:cc:3d:eb:46:1f:c4:
cf:c2:5a:a2:0e:f7:1b:70:4f:1f:71:3e:17:f8:5b:
76:6c:d4:be:27:bd:a5:51:1b:75:5b:20:8c:f9:ed:
f3:65:03:46:c4:6b:89:06:a7:4d:28:cd:38:67:29:
d7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6F:2B:99:23:0D:73:D1:2B:73:54:9E:47:5A:BE:8C:90:00:59:27
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:238::/48
Signature Algorithm: sha256WithRSAEncryption
c4:b9:3a:17:2b:83:38:5a:9c:e3:b8:4c:bf:a3:72:ba:a2:41:
ac:2d:b9:35:03:93:3d:3a:48:45:e3:3a:5f:a3:3c:47:73:c9:
d1:77:09:ca:d6:37:3f:0a:d2:48:3d:ac:ea:da:21:4e:de:bd:
4b:88:b8:11:7e:5e:34:f6:91:93:62:80:cd:9e:f4:13:68:db:
cd:87:64:56:9d:da:98:f2:0a:1c:01:5d:19:44:9f:1c:37:f6:
1f:00:5a:16:60:ec:1b:6d:2a:e3:4b:88:02:6e:61:fc:97:1e:
b1:f0:fd:6d:eb:b2:0d:56:e9:2f:6d:a0:4c:88:83:49:25:f3:
3f:43:29:3e:60:b3:12:24:41:9c:8d:70:12:b1:3d:af:0b:a3:
0f:22:be:42:7c:47:b8:f4:2e:52:42:7b:9b:4e:a3:71:1e:a1:
80:07:51:2a:d7:6f:08:a0:0e:96:66:35:cf:38:f1:94:fa:4c:
7f:5d:ca:0a:dd:d3:99:a1:68:15:f4:0b:35:97:49:cb:64:94:
95:53:ee:6e:51:ee:66:2f:bf:41:7b:83:dd:c4:91:54:f0:71:
e6:d0:a1:3e:60:d5:8f:54:8a:7d:64:6f:61:20:61:0a:ac:0e:
5d:8e:3d:82:24:c5:15:99:bb:7c:ab:97:73:13:d7:f6:f2:1e:
39:bf:38:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org