Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5SuEEDwm9C7LThaiwnFIAxVlM58hdaUcL4kdIcK4WVA=
Subject key identifier: 94:35:64:69:5D:E7:28:0B:62:B4:5F:6C:22:5F:F8:68:33:5B:41:48
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 55DD2F978BB8E22986ACE812A8240672755E83B0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:16 +0000
ROA not before: Mon 26 Sep 2022 09:55:16 +0000
ROA not after: Mon 25 Sep 2023 10:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:31c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:dd:2f:97:8b:b8:e2:29:86:ac:e8:12:a8:24:06:72:75:5e:83:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:16 2022 GMT
Not After : Sep 25 10:00:16 2023 GMT
Subject: CN=943564695DE7280B62B45F6C225FF868335B4148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:8b:6d:51:76:45:71:f3:26:43:ab:b1:69:
ef:1d:e5:ac:6c:06:f1:e4:d8:b8:f7:81:5a:ed:d2:
6b:16:1a:ea:17:b3:7b:bb:8f:05:3c:36:ed:e9:4b:
df:7b:ee:a2:80:92:44:d0:38:a0:5e:21:8b:bb:e3:
00:a8:84:d7:9b:53:18:20:f9:d6:d1:bd:4f:d4:da:
7e:5b:8b:94:25:8d:e1:b5:ca:9a:96:5b:c0:fd:08:
d3:eb:52:e0:04:1f:f7:2b:39:38:03:f6:b3:8f:42:
f8:9a:f3:88:bf:b7:cf:81:1b:dd:31:64:3d:49:94:
23:f7:6e:3d:e0:10:30:1b:6f:28:9c:5d:b7:21:95:
6a:a7:b6:c4:6a:af:a5:84:8b:4e:a4:ed:ed:cc:2a:
9f:23:de:a9:eb:8f:41:b5:bf:a8:fc:f4:e0:37:67:
bd:b9:02:1c:31:f4:2a:6a:7b:3c:a0:24:9c:e7:3c:
3e:ba:e4:d6:cb:0e:29:16:78:75:75:5d:cd:7e:57:
fe:f1:1a:74:94:c2:a8:08:98:13:d5:22:bf:31:59:
fe:f3:2c:84:75:5d:28:38:cb:54:ac:50:a7:88:33:
5d:ef:a2:ae:12:63:85:7c:f8:d9:93:e7:85:c2:91:
92:d8:c9:91:72:07:2e:ad:1b:b6:74:25:8f:30:10:
2f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:35:64:69:5D:E7:28:0B:62:B4:5F:6C:22:5F:F8:68:33:5B:41:48
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:31c::/48
Signature Algorithm: sha256WithRSAEncryption
b7:03:3e:bb:ac:8d:d4:88:f3:18:25:9f:24:d4:f1:c3:4b:20:
55:ed:22:40:8f:6f:aa:3d:e5:70:3d:9e:08:14:c6:e6:c3:5e:
7c:d4:6e:71:ca:98:89:02:f0:b3:c7:8a:4e:26:8b:4d:2e:28:
c3:fb:c2:1a:fb:5b:c7:47:78:92:05:2b:38:d5:29:3c:e4:e5:
21:2b:28:9d:94:31:a8:31:e1:90:f3:c6:a5:de:6e:48:93:54:
a4:13:e8:c1:0b:10:2e:e9:2a:62:a5:e9:93:95:1d:b4:15:fd:
f7:39:13:ce:9b:8c:76:1f:fc:14:65:a9:cd:1b:be:56:39:3e:
2d:46:82:c1:eb:dd:7e:1f:74:a5:2d:4c:c1:61:07:79:a1:d8:
5f:2b:be:e2:56:8d:5a:fe:03:aa:57:04:c2:25:a1:30:d9:83:
71:11:7f:e7:b2:0a:9c:34:1c:47:bd:6d:93:50:43:7e:0e:ac:
42:f9:13:66:1d:40:53:12:8a:91:f1:b7:a3:ce:e1:8f:94:61:
52:72:6e:61:e9:43:bd:48:4b:e4:22:28:66:4b:11:c5:c1:5c:
c0:bd:0b:c9:34:3b:28:6e:9e:37:27:88:75:99:d5:96:a3:d7:
de:c4:84:81:9e:07:20:c9:a7:b1:0d:1a:94:b4:02:cb:0e:4b:
ac:97:6b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org