Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hjKNtYr7Uza0CdEF9qzSB+/VzC50Bv+S/kXERnkLJl4=
Subject key identifier: 11:28:89:DA:9A:EF:11:11:9F:93:58:17:4B:C1:A6:88:63:B2:37:70
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5B085EA009C2562AE5FFB13073C4A23D58BE656D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:3a4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:08:5e:a0:09:c2:56:2a:e5:ff:b1:30:73:c4:a2:3d:58:be:65:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=112889DA9AEF11119F9358174BC1A68863B23770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:88:eb:f3:84:fd:44:0d:5b:6f:a8:99:d3:3f:
a6:ee:53:9c:d5:be:db:93:d6:e1:1d:16:87:83:a8:
af:eb:b3:2b:66:50:89:85:b2:00:53:ef:d4:27:43:
84:00:49:a0:3f:07:5b:ee:2f:e0:2d:a3:85:cb:66:
6f:32:fc:5a:dd:3b:3a:3d:30:68:31:d1:f6:46:b4:
97:0c:13:aa:f0:a0:ef:e6:27:b2:da:f1:50:45:51:
f9:8a:16:07:ec:67:0d:cd:b6:77:0b:05:a3:43:69:
5a:4f:fd:b2:2f:84:16:f0:7e:9e:05:13:5e:7a:c6:
e7:68:9c:19:e0:ab:3f:72:5b:31:26:3a:f1:62:af:
c3:51:3d:35:b4:08:c8:aa:c1:1e:33:9b:e6:01:72:
ca:19:fb:b4:b6:9e:3b:6f:48:e3:ee:53:2b:e5:23:
64:b9:af:8b:c6:31:66:5a:32:c0:33:c8:cf:ea:4b:
68:cf:45:2d:cb:b3:7c:b5:ee:37:e3:6c:de:0b:71:
f2:83:29:b6:89:6e:21:e5:7e:a3:2d:35:19:ba:10:
c8:5a:84:fb:46:37:11:0c:08:40:15:b0:f9:3c:ab:
53:2e:63:31:64:b8:2e:2c:ed:ce:03:5c:ff:4e:ea:
93:c1:53:01:d9:a1:55:89:1a:55:a5:ba:47:2d:71:
9e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:28:89:DA:9A:EF:11:11:9F:93:58:17:4B:C1:A6:88:63:B2:37:70
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a4::/48
Signature Algorithm: sha256WithRSAEncryption
5c:8a:5e:b5:75:49:7f:a4:7c:aa:91:f9:13:87:8e:46:82:4c:
6f:af:3d:86:f9:e4:f0:8a:9c:d4:91:19:17:38:7b:76:3e:76:
64:d3:ac:8c:3a:b2:b3:3f:92:a4:f2:00:60:d3:69:30:9b:23:
cb:f2:c7:71:8d:aa:d6:bd:05:23:0d:05:6e:aa:8b:7b:8b:f1:
01:0a:fd:1d:73:3a:2e:5f:ea:2b:2f:d9:fc:ed:f7:60:e0:d6:
4f:58:2a:a1:e3:5d:55:dc:d5:f6:21:41:5d:3d:d7:8c:05:02:
85:c2:45:cf:a1:4d:34:b1:10:71:9f:5b:9b:e7:24:ef:2d:2c:
2a:6b:8c:17:5a:a3:f5:9f:eb:b1:58:92:75:f3:98:49:d0:0a:
16:41:7a:0d:21:71:85:c3:ff:1a:5c:d6:88:4d:40:13:4d:1a:
39:15:fb:97:62:aa:65:99:ff:ab:0b:0b:bb:d9:9a:36:00:8c:
1a:b0:85:36:5a:49:df:17:72:32:1b:3a:88:df:63:53:30:ce:
e6:a1:5d:81:69:df:bb:07:0f:67:93:6a:fc:0c:35:9d:75:00:
07:6a:dc:87:02:a9:e9:c1:79:f7:90:3c:b6:5c:91:d5:94:a8:
6f:a1:69:6a:b1:c9:01:6d:99:78:6d:13:7a:7a:37:ac:81:28:
b7:14:eb:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org