Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9RdeTJgnhebfEp1T7TsAmznd8gC9k4G5uym8pOyjzLg=
Subject key identifier: CE:5C:13:6D:29:BE:CF:56:26:7F:B8:78:51:55:85:44:D2:1A:0F:CB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3C3E55E99DF36CFA0E74C27AB635D868E2E254FD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:18 +0000
ROA not before: Mon 26 Sep 2022 09:55:18 +0000
ROA not after: Mon 25 Sep 2023 10:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:259::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:3e:55:e9:9d:f3:6c:fa:0e:74:c2:7a:b6:35:d8:68:e2:e2:54:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:18 2022 GMT
Not After : Sep 25 10:00:18 2023 GMT
Subject: CN=CE5C136D29BECF56267FB87851558544D21A0FCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7b:7f:ce:ba:b9:58:27:0b:ae:87:3e:37:44:
d9:96:b0:a3:e4:d4:3b:7e:80:83:c8:06:e9:6f:0a:
1c:9e:ce:e1:34:a6:9f:c4:00:8b:a1:a8:78:ae:27:
9c:b9:89:59:84:35:92:d8:8c:b1:d8:ea:d5:16:2e:
eb:5d:e7:65:81:bf:9c:2b:34:b0:e0:39:3f:00:36:
83:21:e8:92:8f:a7:a7:cb:b5:bb:94:e2:66:b7:c0:
6b:5c:15:18:a4:ef:d4:f7:ad:2e:92:27:c6:ca:08:
75:1a:c2:34:43:ac:59:49:d6:91:24:2b:74:93:0b:
2c:18:ca:b4:0e:ca:44:f3:72:6b:2f:83:1c:65:f2:
f7:be:e5:96:08:a0:78:9c:e2:60:63:3a:de:06:99:
71:40:8c:7b:91:df:7d:0e:60:de:8a:c5:4c:ba:dc:
74:6c:2f:54:c7:ba:4d:71:bd:49:f1:e2:a7:8b:75:
a5:a4:fa:5b:a5:30:67:84:f0:3d:0a:9d:da:e1:10:
14:97:2d:c4:8f:31:70:7f:36:e9:9a:f8:3b:39:0e:
b3:56:07:e5:f7:3c:ae:31:10:57:5e:d4:06:93:f4:
67:55:41:2a:42:63:27:bf:c0:73:69:bf:28:e4:50:
2c:bd:47:a4:57:c6:45:3d:dc:f8:e0:a2:15:b7:95:
0d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:5C:13:6D:29:BE:CF:56:26:7F:B8:78:51:55:85:44:D2:1A:0F:CB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:259::/48
Signature Algorithm: sha256WithRSAEncryption
0e:68:5d:77:b9:f9:a2:c3:b8:04:25:8b:81:af:1d:47:71:98:
91:d2:f4:65:d0:aa:40:f6:72:81:7b:23:04:37:86:41:f9:05:
76:44:8e:11:56:f0:7b:3c:c4:40:35:dc:3a:7a:f1:de:14:76:
32:67:56:10:41:da:ae:d2:12:45:47:e0:4e:59:81:f7:ee:d7:
c4:82:c1:81:17:39:91:a6:13:71:a0:39:6b:1e:8a:40:2f:95:
ff:1b:fe:0d:ca:db:92:2b:3e:6e:02:9b:55:03:79:b0:60:1f:
80:ae:56:1e:c0:77:30:5d:7c:58:2f:dc:ca:74:f2:3a:b0:bf:
75:98:99:2d:32:1a:e8:2b:ee:bd:3a:68:2d:0f:1c:5d:3c:74:
95:c0:de:f7:18:d8:3c:95:56:10:e7:c3:9f:0c:ba:62:45:7a:
4e:97:df:ab:9e:de:12:17:3a:b2:d0:ab:34:7d:29:0e:c6:8c:
87:8a:d7:eb:3e:1f:6a:7d:87:d8:2d:88:54:b6:ce:d3:71:f5:
91:41:76:cd:47:31:89:b1:ce:67:df:5c:47:a6:52:22:42:9c:
d6:fb:12:fd:b8:55:38:dd:b6:98:e3:fa:09:91:61:95:a7:27:
16:5d:72:c0:6a:21:12:14:68:78:2d:5f:dd:01:8b:7a:15:a2:
0f:45:16:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org