Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: WUSGyAoFYf2xb4RF+sI/GzpKcvsX9nU0iD8qn7b+UJU=
Subject key identifier: A4:82:A8:CE:5F:F4:C0:30:38:AE:65:1B:5C:1F:65:B2:6D:F5:32:06
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 173A0A84B5EF158FCF9A457DB6C89B8442740EF6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:46 +0000
ROA not before: Mon 26 Sep 2022 07:56:46 +0000
ROA not after: Mon 25 Sep 2023 08:01:46 +0000
asID: 59282
IP address blocks: 2400:d680:ad::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:3a:0a:84:b5:ef:15:8f:cf:9a:45:7d:b6:c8:9b:84:42:74:0e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:46 2022 GMT
Not After : Sep 25 08:01:46 2023 GMT
Subject: CN=A482A8CE5FF4C03038AE651B5C1F65B26DF53206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:da:da:b5:7b:dd:e3:3b:2d:b9:a1:8a:c6:42:
ff:de:f9:d2:45:fa:cc:8f:02:44:db:d0:62:92:4f:
a8:40:ed:10:32:41:d1:ad:ce:79:10:4a:37:5a:c7:
3a:16:d4:78:00:9b:12:25:fc:c6:e1:8a:fa:f6:bc:
f6:55:78:54:7a:87:79:87:30:1c:78:49:e1:48:38:
51:3d:ea:91:cb:fb:10:49:6e:8e:f8:0b:90:88:5b:
4c:8b:89:c8:97:84:79:fe:11:8a:9e:c0:dc:f0:08:
74:85:cb:ad:42:84:3e:b8:22:94:78:38:b1:cd:c3:
72:f8:4b:55:92:39:b5:dd:3f:20:19:54:e7:fa:0e:
e8:8b:0a:cc:3c:f1:41:9e:c7:dd:92:b2:54:1c:f7:
8b:58:e0:26:a7:00:85:68:8f:2d:65:8b:b6:f0:68:
be:49:2a:36:a6:f2:3b:4b:4e:f6:20:0d:31:29:2a:
7c:f0:bb:84:96:85:6e:d1:43:5b:12:da:af:69:07:
d0:c6:a8:d5:e5:0a:97:00:65:8b:99:4e:93:de:00:
58:9f:f9:2d:48:cc:b9:47:2e:6d:c6:07:cc:28:ef:
1c:1a:0f:89:50:2f:4b:ec:ac:8d:b1:3b:6f:69:8d:
eb:9e:e9:38:de:55:1c:b7:ad:3c:b6:75:4d:63:c9:
0c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:82:A8:CE:5F:F4:C0:30:38:AE:65:1B:5C:1F:65:B2:6D:F5:32:06
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ad::/48
Signature Algorithm: sha256WithRSAEncryption
b2:75:35:f5:57:35:2b:27:15:10:31:bb:b0:c1:4b:47:a2:ed:
c5:13:f5:07:31:09:32:15:53:e9:45:ab:28:71:45:12:51:4b:
aa:26:56:cf:61:12:ba:58:cd:b6:13:6d:7e:04:41:66:f2:e1:
e2:8a:70:dc:bf:8b:91:5c:55:07:cc:80:ae:86:33:65:58:be:
4d:45:31:74:f4:13:b7:d1:33:95:e0:87:59:74:91:79:08:cc:
a3:1f:ad:de:ad:2f:0e:f9:f1:32:52:26:6b:96:ee:29:5b:98:
67:7f:e2:ce:b9:a6:ff:73:d7:bc:de:f2:a7:f2:40:5a:50:4a:
c9:48:9f:b4:90:af:cb:41:60:39:b5:e3:a1:4e:d7:d1:80:df:
31:b2:a5:3e:6e:b7:74:66:a4:4f:dd:7c:93:e8:95:bb:60:1c:
2c:5b:5f:a1:b8:78:42:02:d6:e5:23:80:70:40:33:ac:c6:57:
ff:a7:1a:c7:b0:2b:6a:e5:9a:ff:c7:b5:18:34:6d:50:05:74:
55:2b:96:9a:46:af:7d:ee:0d:34:b2:1a:a1:bc:7a:24:a6:6a:
7e:6a:e8:95:29:da:ff:9f:0e:42:93:a6:a1:da:aa:09:65:0b:
e3:37:86:7a:dd:7c:a0:dc:1d:d6:f4:58:36:0d:65:1e:95:e6:
63:c4:8a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org