Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jRKYfWwYchCmiyQQSvuWwQAL6cqHkVzzypUTGKQjmgw=
Subject key identifier: AA:A0:E6:42:FA:1D:CE:BC:0F:69:5A:55:F1:CF:2B:DC:B1:42:E1:C1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 535EA5117D40CF8BAA0DFD6D21FDD9F8E91D76EE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:18 +0000
ROA not before: Mon 26 Sep 2022 07:57:18 +0000
ROA not after: Mon 25 Sep 2023 08:02:18 +0000
asID: 59282
IP address blocks: 2400:d680:b5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:5e:a5:11:7d:40:cf:8b:aa:0d:fd:6d:21:fd:d9:f8:e9:1d:76:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:18 2022 GMT
Not After : Sep 25 08:02:18 2023 GMT
Subject: CN=AAA0E642FA1DCEBC0F695A55F1CF2BDCB142E1C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:19:9f:97:0d:7e:90:2e:0b:5c:c9:fb:fa:fb:
98:5b:9d:f0:22:9a:5e:0d:ae:eb:22:8c:2f:73:1d:
b7:4e:84:9a:17:10:9f:f9:65:ca:85:ea:9a:9b:8d:
28:f5:d2:a6:23:d4:b7:66:b1:b7:db:07:db:d6:a8:
f0:0f:a6:5d:34:68:84:68:71:12:12:0e:c5:fd:99:
86:9b:e8:4e:85:27:17:39:08:7a:fc:94:a6:11:4c:
5e:2d:82:45:2d:ba:55:8e:43:41:a5:8a:16:90:4a:
bf:86:71:4f:c2:ba:25:8f:23:ea:6b:65:df:bb:68:
51:a1:3d:82:82:4d:2b:df:ea:93:d7:ce:16:27:8d:
5c:ad:3a:cb:04:18:71:89:5a:57:d5:5d:c2:b5:8e:
bf:3c:0f:0a:72:c7:06:00:c0:1f:a5:e0:7b:a2:c7:
af:21:00:41:c3:75:fb:07:8f:a0:c6:5a:85:06:87:
62:73:19:ac:3a:e9:ce:6a:87:f7:8a:c4:7c:2b:1d:
8b:69:70:bc:19:8a:c2:fc:71:58:bd:60:1d:73:1f:
4d:ce:10:09:b4:40:c5:93:07:ef:6b:00:75:f5:29:
40:27:bf:e6:69:68:1d:a9:bd:6e:50:40:c9:4b:0e:
13:5a:8e:d4:e3:3f:0f:18:08:51:33:6e:47:74:30:
fa:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A0:E6:42:FA:1D:CE:BC:0F:69:5A:55:F1:CF:2B:DC:B1:42:E1:C1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b5::/48
Signature Algorithm: sha256WithRSAEncryption
a8:5a:ea:88:0c:22:e6:57:0a:dc:bb:71:3e:90:be:2b:37:71:
f9:11:10:90:fc:68:fd:21:84:19:3b:cd:40:62:db:6e:34:90:
fc:f9:c8:81:d3:c5:be:0c:44:5e:c4:15:34:4f:29:d9:c0:ba:
b4:09:ec:c5:d5:e2:11:a9:88:8d:9a:f8:49:fb:08:6b:37:cc:
85:58:d2:39:24:2e:6e:58:15:7d:b0:a4:ab:a4:12:6f:3b:ce:
ae:64:75:58:df:f6:fd:36:e3:0b:24:0c:59:d1:23:4b:99:31:
74:25:04:6b:fc:8e:72:3e:38:36:10:ba:40:e9:97:0b:74:a2:
6c:3f:cb:2d:4a:0e:55:2e:82:b1:ae:e2:a3:72:b3:d3:1a:bc:
5a:d7:39:9b:f0:b9:16:57:3b:36:e6:e8:69:80:72:d0:f8:60:
39:fb:27:7b:2e:e6:b0:c6:83:53:85:ec:00:91:de:7f:6f:9f:
6c:c3:ab:d0:ba:eb:07:00:65:f5:ea:8a:05:eb:d1:97:21:d0:
5f:40:2f:08:1c:22:8a:2a:31:9e:81:c1:c9:0a:a0:3c:9f:cc:
0d:a8:a6:cd:32:70:9f:23:9a:36:17:83:3a:c4:f9:16:d1:a5:
d0:f7:a8:2e:a4:62:06:88:a8:de:ab:0d:4a:7b:17:15:6f:80:
43:24:8a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org