Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nRsBtH5LD/p/mIs8RhlG333d4ghW0qyY1dqyJboVgU4=
Subject key identifier: C8:47:74:03:9A:C5:FB:E4:65:EA:77:36:F0:73:70:67:D8:A4:EC:58
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5E83B920D723BF68112161C6C75A600E36619DA5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:41 +0000
ROA not before: Mon 26 Sep 2022 07:56:41 +0000
ROA not after: Mon 25 Sep 2023 08:01:41 +0000
asID: 59282
IP address blocks: 2400:d680:36::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:83:b9:20:d7:23:bf:68:11:21:61:c6:c7:5a:60:0e:36:61:9d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:41 2022 GMT
Not After : Sep 25 08:01:41 2023 GMT
Subject: CN=C84774039AC5FBE465EA7736F0737067D8A4EC58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d6:5a:0b:d3:e7:42:e7:32:05:fd:8a:68:a6:
df:ab:0b:05:f4:16:50:fc:8f:46:78:b0:6a:b1:f9:
9f:57:38:46:5f:12:31:46:85:06:05:3b:e7:e2:44:
88:32:23:c4:f4:5f:c0:da:60:29:c3:0a:64:2f:4f:
65:7d:92:76:d0:35:3b:ce:08:f9:51:22:f9:02:6b:
46:77:87:d9:81:00:fc:a3:0e:44:48:17:54:7d:67:
22:5d:fd:51:99:69:14:84:9c:5d:ee:f9:ac:1c:b7:
a8:e8:fc:cb:3f:49:3b:14:41:a6:94:29:a8:1d:3b:
51:e7:85:89:67:6d:f2:8a:af:ba:49:6c:37:03:d6:
79:2b:49:e0:24:18:8a:16:89:98:0c:f7:30:2e:c8:
22:89:68:78:68:96:54:f3:e3:09:d9:a4:dc:60:4d:
bc:12:d6:59:09:26:a1:ef:31:28:1d:4e:2e:1f:ec:
86:82:c1:f6:65:cb:a4:67:01:73:e2:a8:55:0a:83:
2a:5a:bb:9f:5c:bb:5e:de:c0:fc:20:b9:8d:8f:b0:
f8:06:4f:77:5c:25:88:93:b7:6e:4c:f6:d8:6f:d4:
87:02:ed:1d:e3:8c:4e:9c:8b:03:31:f3:13:d3:25:
f4:c1:9b:42:e3:b4:f4:78:9a:1a:76:21:aa:84:97:
9c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:47:74:03:9A:C5:FB:E4:65:EA:77:36:F0:73:70:67:D8:A4:EC:58
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:36::/48
Signature Algorithm: sha256WithRSAEncryption
2a:40:d9:7b:c9:1e:2d:b2:aa:4e:47:99:17:38:6b:4e:fd:03:
7c:d2:01:d0:48:bc:ad:74:e6:5c:f1:63:76:16:1b:26:49:46:
21:c4:7d:ab:e9:56:ee:64:5a:31:44:63:c7:f6:5c:62:35:20:
af:9e:07:5c:b7:38:e9:fb:30:53:87:ed:66:17:3c:fd:c5:e2:
b4:f9:a6:de:c4:35:99:8e:9b:a3:6f:f1:b3:ce:cd:4c:dc:b1:
5d:fc:a0:94:13:d0:92:d9:e3:e0:5b:61:bb:37:e5:31:fd:c4:
83:c0:34:ac:4c:d0:99:bf:3b:a4:f0:72:d5:8b:75:c5:0e:1c:
84:b5:df:f8:33:f8:ee:27:89:85:06:31:fa:7d:f0:c3:51:01:
80:90:d9:7e:d8:19:ca:e3:f4:26:16:a6:36:85:17:30:02:de:
28:fa:31:35:78:9c:b1:91:e4:9f:54:4a:f8:60:c3:16:83:bd:
07:38:58:d1:c4:30:f8:59:b5:2f:d8:51:89:de:93:c1:2c:e1:
28:e6:05:35:be:c0:1f:d4:46:d4:db:fc:d4:fc:40:2c:20:ab:
65:cf:1f:44:13:d5:45:4b:16:89:09:b8:23:10:78:08:2f:8a:
94:29:e8:bf:9e:0d:3c:1c:07:10:0f:42:8e:09:31:54:11:b1:
56:e5:f4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org