Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: gd0k+6Tq/lEZ5u1nEDg8HHKtgWjZCJiS29giyfBbf1Q=
Subject key identifier: 2D:58:B1:65:8B:E5:ED:50:C9:EF:A5:B8:D1:13:64:31:F6:14:EE:AC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 05050D5AE162FA4CF388DE2141AA9C24D94E5162
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:41 +0000
ROA not before: Mon 26 Sep 2022 10:55:41 +0000
ROA not after: Mon 25 Sep 2023 11:00:41 +0000
asID: 59282
IP address blocks: 2400:d680:3ca::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:05:0d:5a:e1:62:fa:4c:f3:88:de:21:41:aa:9c:24:d9:4e:51:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:41 2022 GMT
Not After : Sep 25 11:00:41 2023 GMT
Subject: CN=2D58B1658BE5ED50C9EFA5B8D1136431F614EEAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:41:59:63:39:d1:a4:94:69:49:d4:66:80:
f5:c6:b0:00:6d:f9:92:96:a5:8e:c7:55:a6:6b:c4:
27:aa:65:c2:83:a0:fb:5c:5d:b8:aa:b1:65:fe:67:
08:fe:57:66:13:e3:1b:7c:50:87:50:2d:3d:15:ed:
71:a7:47:04:4d:39:7a:64:18:a6:d6:f1:9a:58:67:
c9:c4:74:0d:ba:00:6c:c0:12:eb:ef:14:b7:aa:17:
7f:47:bd:d2:26:fa:8d:25:58:60:9f:b4:1a:35:4c:
ea:da:bb:42:5d:11:ac:b9:3a:2d:21:28:4f:75:10:
06:3e:fc:1d:d7:22:b8:d3:49:34:4d:5a:18:f3:34:
45:86:2d:ad:b3:69:ba:93:68:2d:d0:89:d8:c3:fe:
7e:ec:82:04:70:be:c7:31:bf:c6:5b:c3:f2:43:f0:
8e:fd:21:a9:50:48:9b:98:87:c6:3c:ac:6f:dc:0a:
82:77:85:c8:db:76:c1:94:22:3f:57:84:89:30:2c:
00:71:e4:b6:14:7e:93:5b:f3:22:13:a9:3d:ad:0d:
a1:62:05:e3:23:b6:99:ca:e8:bd:24:c1:a0:d5:7b:
6f:3a:cb:e7:6a:e3:0f:64:8a:62:ae:15:de:39:c4:
5a:05:06:40:c4:89:bc:9e:b8:b2:48:e1:52:83:7a:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:58:B1:65:8B:E5:ED:50:C9:EF:A5:B8:D1:13:64:31:F6:14:EE:AC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ca::/48
Signature Algorithm: sha256WithRSAEncryption
69:30:4e:11:11:fb:4e:64:00:6e:6f:c6:a6:40:95:ec:53:2f:
4d:9f:48:86:37:dc:81:00:ce:f7:98:85:93:2d:c5:bd:24:2f:
07:b4:b8:fd:40:6c:70:c8:94:92:60:25:d6:0f:8f:c1:ef:e0:
78:f8:d3:ea:d9:95:a4:28:f9:80:da:87:7c:4f:af:20:bd:c6:
06:90:cf:53:55:14:32:4e:0c:26:d8:27:c6:ff:84:92:71:09:
63:5f:19:e8:61:0f:29:48:22:f4:eb:39:3a:46:c6:4e:0c:c2:
6c:bf:f9:f9:27:51:80:38:23:77:80:fc:8c:09:fd:9a:1a:7a:
f7:9e:c3:13:7f:c7:8e:5e:7e:0b:6b:13:44:29:55:e3:84:3b:
f7:be:ae:6f:d2:f2:17:f2:bf:80:d9:fa:d2:fc:83:02:3a:13:
23:25:f3:16:c2:c7:8c:38:38:32:1d:ed:95:4d:2c:1c:33:08:
28:73:ef:f8:33:c5:f1:32:bc:42:76:a9:ae:37:70:e4:9c:ab:
83:17:9c:cc:71:fe:32:a8:96:7f:52:95:7d:bb:be:77:9e:b2:
e3:da:e8:d2:a5:92:36:67:39:af:59:d4:8b:f0:58:1e:9d:7c:
f4:b0:79:38:e0:cd:d4:91:b5:35:53:52:b8:2d:3c:dd:a8:a4:
6c:31:33:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org