Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: kKwC75BU7/T+oRwEtTVJW1ebaXtiXxPC7NbPfLhdgKw=
Subject key identifier: D0:E5:56:D0:15:BA:C2:EA:4E:35:69:57:68:10:94:CB:DE:CE:27:43
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5BA62716E510A8517757E3B9D92DABA025B5E037
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:01 +0000
ROA not before: Mon 26 Sep 2022 07:57:01 +0000
ROA not after: Mon 25 Sep 2023 08:02:01 +0000
asID: 59282
IP address blocks: 2400:d680:34::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:a6:27:16:e5:10:a8:51:77:57:e3:b9:d9:2d:ab:a0:25:b5:e0:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:01 2022 GMT
Not After : Sep 25 08:02:01 2023 GMT
Subject: CN=D0E556D015BAC2EA4E356957681094CBDECE2743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:92:b7:b8:8a:95:47:e9:ac:a7:ab:cf:5d:7d:
28:f0:04:f0:f0:21:b9:18:53:aa:7a:55:ab:64:5c:
ad:e7:a6:f5:5a:95:0e:89:81:ed:97:aa:bd:74:83:
39:5c:89:1a:80:fb:4b:8d:55:96:3a:ab:23:f5:7d:
dd:5d:64:86:ba:85:21:07:eb:bf:8b:f2:8b:95:02:
b3:81:85:de:ac:83:41:da:4d:06:ee:d5:75:24:48:
70:7e:06:1d:59:84:ec:a8:e1:46:ac:49:a3:b3:fe:
9d:34:4b:e1:77:07:f9:f3:35:55:a1:d8:08:55:18:
e3:87:90:36:4a:2e:b5:ef:86:8b:95:21:05:ad:1e:
2b:91:7f:af:88:6e:a9:b3:88:19:f9:25:48:f7:5a:
ef:86:1a:c9:a5:bb:88:66:69:90:15:d6:41:65:39:
cb:2b:68:54:95:c0:bd:8d:e9:05:5e:ab:20:91:0c:
d0:2d:40:09:c6:8a:ac:e8:3a:1e:21:85:60:e8:19:
3a:7f:50:2c:78:08:6a:14:b4:03:4d:e7:c4:5c:a4:
8c:ce:64:ee:c5:65:39:72:11:5b:e3:38:42:1b:41:
b2:e2:73:2d:bd:6d:08:f3:4e:89:90:6d:f2:77:74:
c2:ed:4b:e9:41:5e:11:ca:71:49:55:f1:52:9e:1e:
02:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E5:56:D0:15:BA:C2:EA:4E:35:69:57:68:10:94:CB:DE:CE:27:43
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:34::/48
Signature Algorithm: sha256WithRSAEncryption
1c:06:9e:04:db:b1:0c:a4:5c:95:88:d9:1a:71:23:c4:30:30:
74:1d:45:da:93:99:4d:9a:ab:e8:34:da:85:f6:34:66:15:8e:
73:81:53:03:b4:a8:48:7b:ed:98:44:d7:f4:1f:91:da:fa:f3:
71:a5:53:2e:e0:d2:d7:90:87:62:95:3e:f7:41:e2:68:76:b0:
5a:84:e4:fc:37:e5:fc:ec:0c:9e:c2:de:ed:88:ae:20:7c:fd:
db:ba:2e:d3:1f:87:dc:ae:12:3e:4b:14:e8:d9:a9:4a:4e:e0:
21:86:83:eb:3a:c0:e7:cd:ab:7a:6c:1e:5a:7b:36:db:35:90:
b9:4f:ca:b5:60:26:67:13:79:4f:f2:dd:a6:1e:40:0e:dd:a9:
0d:59:1a:6d:f6:7d:0d:e8:47:25:b6:e9:5d:21:c6:1e:16:2f:
d0:18:5e:c4:e1:30:4d:52:ea:30:59:89:00:98:c9:22:3e:59:
6e:9a:e8:ae:01:2f:c2:67:67:f3:33:9b:d7:57:12:33:c1:70:
03:9b:15:41:84:43:90:c0:98:32:66:99:e3:ed:e4:0a:b4:73:
c2:3d:44:3d:4f:15:94:57:97:78:90:e6:7a:82:8c:0f:9c:f6:
d6:5d:25:07:09:cf:b1:aa:a3:8f:44:9c:c1:b7:1b:5f:ae:f0:
9d:8b:b1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org