Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GEhMQ8gRj5DzPKPLKHfXPejefbiA7bPvp5vRoaOABjk=
Subject key identifier: 05:87:53:93:B6:EC:21:A5:18:74:1A:D0:7D:90:A5:B6:B3:99:65:D1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 16658752EBB9EE8C745C63DB05982003B6E1E0FE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:35 +0000
ROA not before: Mon 26 Sep 2022 09:55:35 +0000
ROA not after: Mon 25 Sep 2023 10:00:35 +0000
asID: 59282
IP address blocks: 2400:d680:251::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:65:87:52:eb:b9:ee:8c:74:5c:63:db:05:98:20:03:b6:e1:e0:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:35 2022 GMT
Not After : Sep 25 10:00:35 2023 GMT
Subject: CN=05875393B6EC21A518741AD07D90A5B6B39965D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:84:d5:7e:2d:9c:f5:33:3c:96:f4:97:6c:6b:
27:3f:2c:50:a6:b8:40:56:3e:f6:78:46:77:c5:d2:
83:99:b4:18:4d:6a:25:9c:57:f8:de:a7:15:d6:a5:
c5:c8:48:22:de:95:4f:4a:07:31:f5:b4:cb:88:b5:
00:94:09:c5:ac:3a:9c:90:8d:09:15:de:11:09:e1:
2d:b8:d5:f5:1b:08:40:ae:cc:e8:96:f4:90:7c:b2:
d4:3b:11:2a:a1:ab:83:7b:fa:c3:66:f1:fc:c8:de:
d5:f0:72:76:30:70:2c:b0:3d:f4:8d:86:d6:36:61:
82:9b:73:e4:b0:b1:43:68:60:6e:ec:29:ca:7c:a2:
1c:24:7e:88:2d:06:4d:cb:81:7f:da:b9:db:3a:23:
d5:ed:db:53:4e:66:b4:b0:c7:da:05:37:5e:00:f9:
4f:23:29:fc:bf:79:e8:1e:5b:68:a9:2d:b5:16:eb:
4b:ca:8b:f7:a4:8c:a3:32:84:a3:21:87:fa:ad:ea:
57:9d:0d:03:f1:69:bb:be:cd:73:7f:47:93:8e:f0:
7e:1c:84:7a:e0:57:82:bf:32:95:89:50:cc:93:37:
ba:55:6e:07:17:54:97:62:22:f6:2a:11:36:8e:bd:
e0:f1:74:9a:af:19:a8:42:ad:b3:25:15:45:82:e7:
36:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:87:53:93:B6:EC:21:A5:18:74:1A:D0:7D:90:A5:B6:B3:99:65:D1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:251::/48
Signature Algorithm: sha256WithRSAEncryption
0a:a4:33:4a:69:0b:d5:5b:75:83:a8:d3:1d:9a:c9:78:27:4f:
ba:3a:6e:d2:79:19:86:8b:a4:70:5c:6f:45:eb:e4:fb:db:2c:
b8:8c:f6:3b:2b:cb:34:f5:29:99:b7:ff:6e:18:37:a9:72:40:
47:6a:39:a0:ec:7d:6b:06:29:93:6e:20:a8:ca:24:ac:05:98:
2d:c2:fb:8c:58:27:6e:5e:d0:c3:40:82:ed:0f:59:ed:49:a1:
56:2b:d0:b3:34:0e:26:10:65:97:ba:81:a0:57:37:8c:bb:3b:
20:77:18:3e:cc:ce:53:c2:91:d7:14:7d:7a:0e:09:04:87:d6:
b8:5f:b5:23:a6:a1:6b:46:4d:4a:2d:ce:39:97:d9:19:59:df:
fc:02:4b:8c:bd:01:1f:e2:de:3c:d7:f2:21:5c:48:b8:10:94:
1e:58:df:12:bf:d0:6c:bb:e3:8b:85:ae:ac:30:de:38:77:c8:
6b:65:c1:49:50:26:eb:33:6c:4c:5c:0c:47:55:30:40:6d:1c:
22:56:2c:62:7e:5f:88:44:b5:53:8b:bf:94:0d:d5:13:2b:c2:
b0:6d:0f:8e:4a:06:8d:f2:aa:ad:92:3f:22:db:17:ac:90:b9:
1a:53:bf:d6:a5:e9:7d:75:90:8d:ca:80:53:bf:b4:f2:95:6f:
54:8c:ac:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org