Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JbXO5UTZclzP43/XOClTfEixrtb3iLvI0h93ZT/2PaU=
Subject key identifier: 72:2B:BE:0B:B4:CC:32:30:41:8B:44:D6:7D:C9:C0:64:FB:1E:8E:A3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5DF44A025B422041B6FC79773EB77503ABBDB2C5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:58 +0000
ROA not before: Mon 26 Sep 2022 07:56:58 +0000
ROA not after: Mon 25 Sep 2023 08:01:58 +0000
asID: 59282
IP address blocks: 2400:d680:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:f4:4a:02:5b:42:20:41:b6:fc:79:77:3e:b7:75:03:ab:bd:b2:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:58 2022 GMT
Not After : Sep 25 08:01:58 2023 GMT
Subject: CN=722BBE0BB4CC3230418B44D67DC9C064FB1E8EA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:85:9c:d6:d1:06:2e:a4:60:47:4d:2a:c5:33:
bc:f9:26:16:1f:bd:6a:5a:4d:b7:5f:ac:a5:34:60:
aa:44:3b:30:be:4c:fe:34:8c:b7:bd:f9:f9:42:00:
25:5e:01:a9:fd:85:5b:4d:79:4f:88:e8:9c:4d:8d:
ea:c1:e2:9a:4e:c5:ef:ce:c7:71:35:eb:56:ae:aa:
06:18:55:06:b2:c3:b9:d9:0e:6e:71:f3:d5:d6:b6:
80:25:6f:a5:26:0d:e0:6a:a9:5a:58:02:9b:88:69:
a2:68:2c:8f:f6:18:cc:bb:c1:90:8e:88:37:96:22:
a6:cb:b9:2b:6d:37:e0:dc:8e:ab:c3:ac:b3:d0:f9:
f4:56:78:6d:1f:2c:6a:96:ff:d7:a5:75:a7:89:a1:
d7:b0:c5:80:b8:e3:7a:72:80:dd:b5:bc:dd:d2:ba:
3a:06:07:1e:1e:14:fd:0b:0b:db:f2:52:97:bc:3c:
92:42:b6:9e:56:3a:0b:be:81:78:50:bb:df:2c:ba:
6a:c0:fa:83:de:54:d0:7a:d0:e2:ca:23:ca:60:2c:
96:a3:2b:e2:1d:13:82:07:16:c4:89:18:70:07:ef:
41:36:07:de:d4:75:9a:e6:25:b4:77:21:79:44:06:
c0:56:d1:e4:76:bb:ab:86:c5:7c:a0:bb:d9:c5:21:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2B:BE:0B:B4:CC:32:30:41:8B:44:D6:7D:C9:C0:64:FB:1E:8E:A3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:30::/48
Signature Algorithm: sha256WithRSAEncryption
77:fa:64:81:dc:e7:be:90:80:36:a4:0e:66:7f:73:f9:32:b1:
c2:05:05:c6:bd:19:05:fe:46:58:ae:6d:84:87:a0:b8:2b:55:
18:1f:1c:c2:30:da:0f:39:cc:7e:44:00:5e:1b:3b:79:65:b4:
fe:20:1e:b0:44:37:41:d2:41:0c:b1:dc:7f:5e:02:f9:27:32:
d0:8d:b8:ac:31:0d:04:97:e2:ea:e8:84:51:ac:5d:59:2e:be:
8d:60:a5:c3:6b:da:02:df:2b:01:9d:06:38:61:55:ad:39:32:
dc:77:3d:bc:bf:b7:ef:f2:1a:90:29:60:f3:8f:9c:7b:99:b0:
40:88:bf:e6:e3:7f:3e:d0:d4:8e:25:f1:d3:72:f1:10:87:26:
f4:ee:20:02:28:d4:5f:c9:50:8d:3c:c4:7a:fe:96:b2:39:39:
7b:f8:8f:0e:a1:dd:b0:eb:1f:2f:fc:9a:6a:18:4c:43:c4:90:
2f:ff:36:fa:4e:69:8d:f8:4b:ae:1b:04:cd:e1:bd:2b:ab:f8:
ce:ff:bf:49:79:fe:4b:ae:af:bd:d1:da:47:ca:f3:62:52:35:
30:1d:5c:f2:a9:09:5d:c9:aa:e7:35:cb:37:fd:23:9f:79:8c:
ea:36:98:8b:86:55:0f:a5:ea:2c:75:8e:b9:6e:fe:fd:f7:18:
46:ed:f8:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org