Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wVvPdBoUXFEiyOjj9t28guMzHZHgCmY//Rz2Y1QXKE8=
Subject key identifier: BF:1D:23:36:9D:D0:E9:1A:AD:97:81:E0:93:73:2C:92:7B:A1:1E:50
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 59B61D62A65CA266BEF879DA6AF8F8AC74E94347
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:48 +0000
ROA not before: Mon 26 Sep 2022 07:56:48 +0000
ROA not after: Mon 25 Sep 2023 08:01:48 +0000
asID: 59282
IP address blocks: 2400:d680:51::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:b6:1d:62:a6:5c:a2:66:be:f8:79:da:6a:f8:f8:ac:74:e9:43:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:48 2022 GMT
Not After : Sep 25 08:01:48 2023 GMT
Subject: CN=BF1D23369DD0E91AAD9781E093732C927BA11E50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:67:3f:ab:1a:f9:27:67:8e:98:60:06:ea:29:
d8:ee:78:24:9c:9d:99:67:ad:6e:59:b8:4f:1d:e1:
cc:3a:42:bc:cd:b2:90:a0:0c:f5:81:01:3c:f7:7e:
50:7d:ce:6c:e6:79:26:e6:f5:d7:22:a0:77:73:23:
ec:6b:03:ba:88:7e:f2:a5:c3:2e:ec:1e:76:56:0f:
df:fc:2d:af:1b:81:ce:2d:b0:c7:e6:b9:f8:e9:33:
79:91:11:71:10:9c:df:f0:b9:25:9b:d9:49:6d:ec:
b0:dd:14:6b:ac:04:ee:46:cc:4a:1e:96:35:b3:25:
a1:1a:b4:16:ef:1f:d1:2f:b9:95:45:3d:64:36:88:
5b:5e:24:06:01:a4:03:6d:ff:66:1a:85:db:b8:60:
ad:0b:2b:72:35:2f:af:f0:8f:33:fc:96:b8:05:75:
c1:aa:08:3e:b5:d8:ad:f5:1d:7a:50:05:1b:d4:1b:
b9:27:5f:2f:41:a0:f6:ac:95:74:f9:87:c8:81:a4:
08:c6:95:f4:87:22:77:b5:61:f8:a8:8f:68:80:2b:
63:11:b8:61:db:e1:88:36:dd:d6:7e:ad:4e:7e:5c:
66:39:bd:f7:9f:c7:0f:b9:a9:f4:0b:a2:fb:b0:43:
df:1e:6d:6b:2f:2b:97:79:52:9d:f6:41:68:42:7a:
9d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1D:23:36:9D:D0:E9:1A:AD:97:81:E0:93:73:2C:92:7B:A1:1E:50
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:51::/48
Signature Algorithm: sha256WithRSAEncryption
11:9c:e5:47:df:60:ec:1a:8a:21:69:7f:fd:d0:52:d7:d3:bb:
f7:c4:cb:c2:90:c6:e6:17:a0:a9:30:05:66:bd:ad:d1:03:44:
fc:e0:8b:40:12:ff:29:50:15:c7:63:65:38:fa:b5:f4:8c:bf:
e6:14:a4:d1:30:b5:3a:5b:da:57:b9:90:0b:ed:4b:66:f6:6d:
e2:d1:2c:91:56:e4:67:f5:43:29:3b:fd:49:c1:6a:96:f5:fc:
6d:27:1d:0b:d4:f1:7a:80:34:9b:fe:22:d5:37:1d:de:7b:13:
3e:e6:f9:dd:40:51:e6:8a:5e:a7:39:a7:48:37:3b:e8:0b:31:
ca:af:64:53:db:13:99:4e:61:46:84:b0:0d:db:c7:86:ea:92:
4a:df:8f:a2:f0:0c:48:d5:7b:0c:7f:5e:46:10:0e:5c:a9:fb:
96:49:22:0b:17:fc:60:a6:ce:bf:7d:ab:a0:30:ad:42:7a:8b:
f7:f5:15:6b:df:7f:5c:4d:c3:40:c8:33:92:3a:66:95:30:59:
a8:63:9b:fe:79:8e:25:50:b3:6c:c7:8b:7d:d3:d8:d9:49:6c:
4d:4d:c5:ee:28:1e:47:24:dc:54:a6:0c:6b:ca:eb:04:42:2c:
97:7f:7a:53:b6:93:90:78:a1:df:a4:96:19:8e:7b:ef:e9:6d:
43:ae:73:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org