Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bSJYmeYsN1deEA3eC17luIn3KaMKDryRFiKDihhj1x4=
Subject key identifier: EE:D3:EC:D1:6C:DB:12:F0:55:08:1C:94:10:00:EC:1E:83:1A:3A:5B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 27F187C47022E3D9664C0E2475D6BB9BEAC9CBFB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:50 +0000
ROA not before: Mon 26 Sep 2022 07:56:50 +0000
ROA not after: Mon 25 Sep 2023 08:01:50 +0000
asID: 59282
IP address blocks: 2400:d680:aa::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:f1:87:c4:70:22:e3:d9:66:4c:0e:24:75:d6:bb:9b:ea:c9:cb:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:50 2022 GMT
Not After : Sep 25 08:01:50 2023 GMT
Subject: CN=EED3ECD16CDB12F055081C941000EC1E831A3A5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:74:ba:5e:81:17:b1:91:8c:b6:9b:c1:a4:
b8:87:13:96:5e:5d:3d:5f:d2:68:4e:93:fb:32:b1:
78:d6:98:d9:7d:a5:c2:ae:0b:1c:4e:75:54:af:64:
5d:16:13:fb:18:68:eb:23:b1:01:4e:0b:cd:fa:56:
f9:4d:7d:4f:42:52:01:06:9a:a5:53:3d:e2:48:ae:
73:c0:09:6f:a7:10:2a:2b:0f:c5:d5:78:a3:29:cf:
85:22:f1:40:83:e3:2d:cc:d1:92:62:5c:a8:55:4b:
f4:d2:57:e4:41:9e:4c:d6:ee:17:8e:33:6b:a3:dd:
41:d0:b1:e4:3d:48:81:59:c7:67:61:97:77:e0:ee:
17:ad:30:f4:46:67:e1:45:74:da:c2:0f:e6:52:fb:
25:e8:43:ef:30:06:d0:5f:5a:47:6b:6b:38:b2:0d:
3e:45:34:99:07:49:98:60:9c:9a:24:37:b9:a0:9d:
41:6c:e9:69:47:a3:37:76:01:86:42:d1:21:e0:2d:
a7:26:e3:58:d8:b3:c4:65:b3:6e:b8:1f:ad:8a:d4:
5a:fe:e7:fd:0b:49:aa:05:c4:47:7f:ff:21:eb:95:
e2:5a:9e:03:a8:6e:f7:9c:ff:49:24:d5:06:a9:de:
a9:9a:40:65:c6:68:aa:44:52:38:aa:81:5d:c5:a7:
8f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D3:EC:D1:6C:DB:12:F0:55:08:1C:94:10:00:EC:1E:83:1A:3A:5B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:aa::/48
Signature Algorithm: sha256WithRSAEncryption
88:1a:26:50:8e:b0:16:8d:c2:8c:31:f3:74:8a:74:97:d6:8b:
4d:ee:5a:09:3d:11:2f:d5:de:0d:75:32:b5:3c:f7:19:cf:1f:
4c:a8:7f:c0:8c:33:1f:d7:a0:47:00:43:85:7d:d3:48:67:78:
e0:d7:d7:19:5b:df:8b:b4:a5:90:c2:cc:1a:47:29:92:08:bd:
99:7a:e0:6c:48:6c:5b:13:e8:9e:d9:9d:75:f7:c4:6f:75:89:
41:65:a4:db:38:39:4b:ae:19:8b:d8:ff:30:2d:4c:7a:5f:d4:
db:ee:c5:fa:b6:03:c8:7b:2e:9b:82:e8:bd:50:38:21:c1:54:
47:94:83:4b:19:f3:fe:f1:1b:8a:6f:9f:81:23:ad:92:7e:2d:
29:4f:69:69:d0:80:fe:4d:67:1a:a2:4b:9c:f7:40:e2:e8:d7:
21:43:9a:fe:9c:92:e4:3c:26:bc:a7:bb:57:9b:aa:f4:6d:82:
62:f6:e3:fb:bd:d4:28:ff:ec:bc:2d:09:cc:8a:e0:f4:d1:a2:
f7:14:d6:78:5f:22:a3:4e:76:c8:19:21:4c:61:3f:cd:03:42:
f6:8f:8c:97:06:fb:6a:3f:4f:e1:8a:57:bd:aa:1e:2c:c7:36:
b9:94:20:f3:66:ac:42:33:41:4d:69:00:2a:a9:30:40:a3:44:
1f:73:69:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org