Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: WekFhLmX9kLJqJohlJb6n2JVeHd5eY2kpqIe4yRmqPE=
Subject key identifier: 5C:CF:CE:B8:64:CF:3E:E9:83:DF:54:28:61:50:21:7A:AF:BC:87:D2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 09CDF20E663DA38F9D89B7BE1695DA24CEB76591
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:33 +0000
ROA not before: Mon 26 Sep 2022 07:56:33 +0000
ROA not after: Mon 25 Sep 2023 08:01:33 +0000
asID: 59282
IP address blocks: 2400:d680:67::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:cd:f2:0e:66:3d:a3:8f:9d:89:b7:be:16:95:da:24:ce:b7:65:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:33 2022 GMT
Not After : Sep 25 08:01:33 2023 GMT
Subject: CN=5CCFCEB864CF3EE983DF54286150217AAFBC87D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:d1:cc:5b:93:51:0d:77:1c:bc:91:63:dd:
52:09:05:6f:38:36:40:19:b2:a3:21:da:36:0c:6f:
11:d2:a4:6c:b5:d5:2f:cd:e3:40:31:6f:94:9b:49:
b4:e9:71:a8:d1:fa:93:80:ca:d4:96:67:50:b9:f2:
3b:cd:70:0a:4d:f6:07:c2:89:ca:04:e8:34:b7:10:
c0:1b:82:d3:05:81:89:eb:bf:d7:d3:47:ae:05:7b:
8b:23:d4:ca:20:fe:8a:59:5b:2e:ea:ef:05:db:65:
af:b3:bb:77:dd:6b:48:3b:be:14:64:90:27:e8:23:
cc:e0:dd:2a:1f:8d:95:41:a4:91:d0:e7:49:46:49:
18:78:5e:7f:d5:59:aa:6c:df:ed:c0:f6:b9:5a:31:
e5:bd:25:42:4e:be:9d:43:24:14:9f:63:97:d4:a7:
84:f8:33:b5:e6:a9:6d:ba:0a:a5:e0:56:42:ef:fe:
b3:7b:a4:81:ad:4d:a2:21:05:bf:b3:23:88:52:e0:
02:e7:4b:8f:09:3a:ec:c5:c2:15:0a:86:e4:ec:8a:
be:62:5b:66:89:cb:19:4c:a5:ce:7b:75:7a:62:4f:
48:a1:a3:dc:f8:b3:cc:20:0b:79:79:c0:69:71:2b:
37:fe:bf:13:27:97:5a:7d:2b:0c:20:2c:e3:fb:f9:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CF:CE:B8:64:CF:3E:E9:83:DF:54:28:61:50:21:7A:AF:BC:87:D2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:67::/48
Signature Algorithm: sha256WithRSAEncryption
11:00:78:46:9a:e0:7a:1d:35:f9:c4:b4:3f:1a:75:fa:0c:1a:
37:f0:cf:b9:f9:59:72:ca:c8:c2:66:f0:13:e6:5d:4d:99:63:
8f:13:5e:1d:e6:cd:9c:e7:a2:71:dc:2a:61:1e:de:37:a5:b9:
62:e2:c2:e4:b0:38:c6:2f:21:41:a6:60:68:4a:d6:6f:f8:db:
08:80:18:e5:0e:7e:29:ad:fc:cf:af:1e:6c:60:f7:b9:32:ed:
d7:72:e0:0f:72:0e:c6:03:32:c9:7d:e4:96:98:a6:0e:49:2d:
60:54:b2:ed:0a:5e:3d:44:72:72:f9:d6:a6:12:55:9d:b5:09:
c1:f6:bc:91:c8:30:ed:6c:b1:be:ff:88:d0:84:40:ba:90:36:
0a:20:0a:e1:26:a4:c0:7f:ce:2c:d0:c9:18:7b:0f:4c:19:5d:
00:27:47:42:29:cc:42:9e:4c:71:8f:bb:67:7b:12:00:17:c6:
a6:fc:dc:11:4a:98:f2:be:fc:76:10:1f:c2:7e:45:1c:b2:52:
57:b2:b5:87:27:3a:21:6e:2f:a8:2f:3b:4e:b0:7b:32:40:33:
b2:3d:cb:3f:fe:a3:28:30:64:41:81:aa:ce:74:6d:8c:6c:6e:
ed:6f:bb:8e:52:a0:a6:18:fa:c5:fb:b1:36:e5:b7:0d:01:96:
9f:03:bd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org