Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: MLRtydMwCX043N+xc5RzIBjkkd8FxqD4WjA0UIJ5hac=
Subject key identifier: C5:2E:6A:82:B8:9A:EB:74:A6:AF:BF:3D:0D:57:B5:02:CD:B5:D6:07
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3D038B2550F8D8C8C9C62003007D6003BBAF21BA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:41 +0000
ROA not before: Mon 26 Sep 2022 07:56:41 +0000
ROA not after: Mon 25 Sep 2023 08:01:41 +0000
asID: 59282
IP address blocks: 2400:d680:85::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:03:8b:25:50:f8:d8:c8:c9:c6:20:03:00:7d:60:03:bb:af:21:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:41 2022 GMT
Not After : Sep 25 08:01:41 2023 GMT
Subject: CN=C52E6A82B89AEB74A6AFBF3D0D57B502CDB5D607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:63:84:0e:e7:32:dd:e4:27:08:68:7b:68:
80:bf:54:16:06:f6:87:35:ce:0f:8d:f7:dc:3b:80:
49:0e:da:d7:8f:dd:ac:e1:4f:64:ee:26:39:32:79:
51:4d:02:cf:1c:7a:bc:dd:6c:c0:a8:8c:87:df:cd:
f7:9e:8b:dd:24:af:fb:41:c2:cf:37:8b:4f:00:99:
05:63:78:cf:b0:59:b4:f1:08:5a:55:aa:12:44:14:
22:f1:4c:07:8b:54:ed:03:c7:b3:a0:de:29:db:80:
5c:1a:08:4a:56:ba:bf:c2:f7:26:ab:d5:08:e0:67:
cf:7f:6d:88:53:2b:82:75:fd:34:56:60:2e:b8:74:
3e:e2:da:2e:d1:77:b3:c7:cf:0f:7c:a0:ce:33:d6:
c0:88:45:79:5a:06:4d:b7:c7:4f:ab:70:85:5a:a3:
73:f5:94:69:a3:67:a4:2c:f0:74:e1:5e:b6:6f:d2:
8d:c2:c5:bb:bb:75:cd:28:ce:08:dc:4d:89:53:7b:
e5:70:99:4b:2f:66:54:fe:be:65:db:f1:a5:3e:d0:
21:d6:d8:e4:e2:bc:b2:43:43:58:52:16:8f:f7:05:
0f:75:48:1a:7e:3d:5d:e5:ef:10:59:b5:8c:20:6b:
2e:0a:99:6a:1e:5b:70:93:44:48:f6:b2:18:62:12:
d0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:2E:6A:82:B8:9A:EB:74:A6:AF:BF:3D:0D:57:B5:02:CD:B5:D6:07
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:85::/48
Signature Algorithm: sha256WithRSAEncryption
10:4a:66:cc:82:0f:5e:85:2d:b6:e7:80:da:41:77:34:9c:02:
02:e8:87:1c:44:04:01:c0:59:d0:f1:d7:db:7c:c3:ce:d3:50:
2b:79:8f:8a:70:82:d6:66:a9:96:a5:63:69:58:4c:39:e4:3d:
74:9b:51:e0:01:84:3d:c6:01:de:7f:ed:d5:fd:47:9d:02:7d:
d9:07:86:df:b0:7d:c9:bd:6c:b6:90:75:3c:d2:f6:a2:cc:7a:
8f:73:9b:8d:c9:5d:6a:1a:2a:ae:4a:3f:94:f3:be:44:48:5b:
4b:13:6f:8f:2c:80:e5:98:c7:5b:46:b6:04:cd:77:29:d9:b6:
c3:54:85:bb:20:7b:7c:c1:58:b3:06:f2:f0:50:49:7f:39:1c:
a8:95:a3:cd:77:1a:26:b1:c7:b9:f2:4a:aa:bf:08:ca:ca:2a:
af:82:06:fc:7d:2b:58:92:96:1a:06:c3:42:a2:7a:94:6b:52:
e3:3f:72:4d:8e:b8:fa:1f:f1:87:ac:78:85:d5:06:cc:8f:87:
3a:b5:3e:f4:d5:a0:41:09:c9:10:ad:db:0e:57:a3:1a:ab:f4:
49:2e:de:44:f7:85:1a:57:4b:bc:57:ff:99:f8:ec:5c:fa:80:
14:7f:2a:5a:36:ad:3d:a4:e5:52:2e:06:b9:c8:a7:3b:18:2d:
b1:7a:32:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org