Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: e3zqmiR0YT25pYbdzUOJjjkeK8moOENGTWBWOka1MgI=
Subject key identifier: D9:A9:B1:AB:99:CE:B7:5D:C7:71:17:6F:88:40:8B:0D:7F:7F:8B:82
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 54FEC0C91D2C13A78EB46079A4A21B9FFB5D45EB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:24 +0000
ROA not before: Mon 26 Sep 2022 07:57:24 +0000
ROA not after: Mon 25 Sep 2023 08:02:24 +0000
asID: 59282
IP address blocks: 2400:d680:8e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:fe:c0:c9:1d:2c:13:a7:8e:b4:60:79:a4:a2:1b:9f:fb:5d:45:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:24 2022 GMT
Not After : Sep 25 08:02:24 2023 GMT
Subject: CN=D9A9B1AB99CEB75DC771176F88408B0D7F7F8B82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b4:d5:07:c0:f8:72:a9:56:c9:a2:57:6d:e5:
a5:cd:50:c8:7a:73:e6:cb:e2:b8:4a:c3:ee:9a:aa:
8e:37:35:52:99:7a:51:3a:e6:c4:6f:5a:09:aa:c3:
ed:e1:53:f3:3e:3d:42:33:ca:c1:d0:a4:9e:16:a1:
91:0c:52:3e:2c:29:e7:88:68:a2:3f:4d:36:8f:0c:
b9:3a:f3:18:5c:60:c6:15:ec:70:6e:65:b3:28:39:
fb:46:2c:95:78:ef:77:ca:b5:95:30:66:00:6a:ba:
1a:bf:d1:18:15:52:5a:82:03:a7:be:6c:09:44:7c:
b1:e0:5e:f2:83:c4:57:65:18:61:a1:d4:18:68:66:
66:f0:15:dc:31:f4:6b:d8:7e:db:d0:b1:94:76:95:
ca:22:da:70:e6:32:ed:93:dc:db:4c:10:00:77:bc:
55:77:cd:29:8d:ff:be:85:9b:90:64:4b:55:88:f1:
20:1d:40:00:a7:5f:30:cf:1b:d7:1f:87:d4:2a:72:
86:06:95:d6:75:10:49:0f:2d:0e:c1:cd:ad:86:18:
f8:91:dd:ee:6a:fe:19:fd:42:74:92:6a:5b:98:6f:
f8:3c:6c:0e:01:06:28:31:ad:05:91:21:56:f6:32:
d6:eb:01:b2:a9:f2:a9:57:7d:1b:c1:72:64:66:88:
be:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A9:B1:AB:99:CE:B7:5D:C7:71:17:6F:88:40:8B:0D:7F:7F:8B:82
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:8e::/48
Signature Algorithm: sha256WithRSAEncryption
92:c8:a9:9b:e4:89:ad:14:b8:13:ff:24:25:fe:9d:40:49:a4:
02:de:89:9c:de:56:73:02:80:c0:8e:3b:f0:53:41:31:94:fe:
58:51:ea:f0:ed:01:05:0c:6b:6a:1f:ef:c6:6b:e8:fe:e7:45:
b3:48:35:45:68:38:e1:9b:8e:60:a2:da:3b:9f:b4:26:fe:6e:
cc:74:c8:73:2d:4e:1a:54:40:5f:bc:89:f8:8c:ea:e6:71:79:
b4:c7:2d:76:7f:ec:1f:55:91:05:2f:3b:30:dd:cc:56:f3:61:
33:3f:29:26:47:d9:48:e6:13:b1:6f:4e:f1:ca:89:ed:37:c4:
7e:49:9d:e6:05:bc:58:5a:8b:61:35:58:dc:cc:cd:30:1b:b6:
42:8d:93:bb:ce:a0:76:82:95:91:6e:ca:e4:a5:94:86:f8:84:
8f:f7:b2:0c:56:96:2d:4b:8f:45:20:28:40:33:8a:60:32:f4:
2f:83:02:00:34:29:60:0b:86:71:17:8e:d2:fd:44:55:16:02:
d7:89:95:e5:6c:4f:90:51:0e:c9:a1:9f:ca:c6:b1:6f:00:d0:
ed:c6:81:f4:bf:75:09:9a:34:e1:a3:7f:59:b5:3b:8a:fa:c4:
25:17:99:f2:9f:05:a0:5f:ff:e6:4a:d7:62:04:53:ab:51:3a:
60:6f:1a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org