Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cZvfS9VF53F6jB900qouFgoBIAUV7a0rL+qYgAM16As=
Subject key identifier: 5F:9D:23:45:F2:37:B1:FD:3F:6B:9C:31:12:E8:54:14:65:28:E6:1B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 132DCD06681715D73B6CBC305B5D68D9529FBC62
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:38 +0000
ROA not before: Mon 26 Sep 2022 10:55:38 +0000
ROA not after: Mon 25 Sep 2023 11:00:38 +0000
asID: 59282
IP address blocks: 2400:d680:3f7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:2d:cd:06:68:17:15:d7:3b:6c:bc:30:5b:5d:68:d9:52:9f:bc:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:38 2022 GMT
Not After : Sep 25 11:00:38 2023 GMT
Subject: CN=5F9D2345F237B1FD3F6B9C3112E854146528E61B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:54:49:38:4a:15:5c:66:46:87:bd:af:4e:7e:
d9:58:37:6f:22:d5:27:cc:10:ba:16:24:9d:df:62:
59:f5:8c:04:7e:22:fb:17:af:9e:c8:b6:3a:1c:3b:
ac:c1:e1:61:a2:4d:98:c9:8f:b9:1e:e6:64:35:b5:
83:bb:15:ed:43:81:d6:2c:87:c0:d3:8b:35:2a:53:
0c:da:b5:96:4e:c8:bb:af:74:cb:62:81:02:33:4b:
44:f4:e9:9f:0f:3a:78:e3:18:fd:7d:e3:58:5c:57:
24:ee:bd:f3:6d:af:ee:af:d1:74:c4:a1:97:ce:24:
d8:48:8f:03:b7:ee:b2:4d:f9:ae:0f:a3:84:2b:c4:
a5:e0:5e:56:eb:58:8c:3b:af:3d:e2:e5:fd:ca:0e:
bf:a3:35:56:02:84:a7:a3:30:d8:de:ea:78:a7:c2:
cc:1f:37:ea:1e:e7:73:aa:15:89:63:1e:2a:53:ed:
54:04:94:2a:69:a1:55:44:f6:77:b8:c7:c5:48:5d:
70:48:90:84:62:43:00:7f:b2:47:59:a4:54:04:61:
e5:75:d1:1b:67:b3:99:07:c4:f6:80:4e:12:bd:b1:
a5:93:22:8c:a0:6e:25:fb:d5:8d:76:70:82:4e:08:
28:e3:e0:27:35:ba:99:ef:9b:c1:d9:c6:49:77:50:
73:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9D:23:45:F2:37:B1:FD:3F:6B:9C:31:12:E8:54:14:65:28:E6:1B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f7::/48
Signature Algorithm: sha256WithRSAEncryption
16:16:b7:56:bf:b9:81:49:8d:ec:e3:23:d7:47:50:25:cb:51:
ae:f4:13:72:d0:db:02:84:07:2f:d3:62:23:26:6a:96:ea:f7:
7c:32:55:4e:76:f1:06:c1:6f:90:48:b9:a2:1e:1d:b7:91:8e:
bf:db:34:1e:c8:f0:e2:e2:db:4c:35:d2:35:09:6e:c7:62:e1:
d1:4d:56:15:92:a3:40:59:e3:4a:b7:6e:c6:49:f9:9d:df:39:
c4:19:23:a7:6c:1c:00:f8:cb:e1:a4:2e:25:b4:b7:79:10:99:
12:b6:99:76:16:49:9e:a2:71:29:14:72:e6:a0:42:a1:da:b5:
8d:28:06:d4:9f:6a:98:61:61:b9:75:ee:ec:85:b2:91:ac:59:
4d:03:44:da:a6:fc:63:65:b8:05:6b:45:98:84:54:14:db:2e:
f9:72:cc:d0:ac:5c:fc:be:5e:77:da:18:a2:c4:28:b0:40:20:
a9:59:e7:ec:3f:94:00:4c:55:90:2e:9b:5d:75:b3:55:66:49:
a0:79:50:e8:90:15:95:01:98:3b:74:a6:1f:dc:b2:b8:f4:a5:
8c:ef:47:fc:51:de:c7:f6:e5:0f:fd:7e:ce:45:ef:a3:36:c2:
c1:65:a7:f7:82:fc:ee:19:b6:b8:0c:2d:d2:fc:f8:04:1f:3c:
72:fd:e9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org