Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: uHh+8R9Lehe+5ooPmd+kWMDM6nk+TFgBclTa5r1a3c8=
Subject key identifier: DF:99:9B:82:CD:1E:56:C5:03:E1:B7:AD:99:EC:C0:5C:D5:11:8A:62
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 11C5B454DB49E99CFEFCD8D0F5E66CD1CAB39800
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:10 +0000
ROA not before: Mon 26 Sep 2022 07:57:10 +0000
ROA not after: Mon 25 Sep 2023 08:02:10 +0000
asID: 59282
IP address blocks: 2400:d680:bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:c5:b4:54:db:49:e9:9c:fe:fc:d8:d0:f5:e6:6c:d1:ca:b3:98:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:10 2022 GMT
Not After : Sep 25 08:02:10 2023 GMT
Subject: CN=DF999B82CD1E56C503E1B7AD99ECC05CD5118A62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:33:bf:36:28:5e:01:2c:fc:0b:e7:fe:9a:58:
e7:eb:44:6a:6f:c5:16:da:15:b0:0e:bb:00:00:09:
6a:e6:10:3e:1c:39:f2:e0:09:e0:55:c0:c8:58:dd:
1a:4e:e5:1a:08:83:6f:cc:db:23:06:ba:b3:d2:ff:
61:cb:9d:2b:ac:c7:ce:e1:c9:67:10:12:3d:47:56:
91:b7:d3:32:fe:48:8b:8c:51:ef:42:25:f6:cd:cd:
48:b5:57:61:c9:60:6f:b3:02:a5:0b:f3:fe:8a:ef:
d2:2a:15:e4:3c:89:91:d6:55:0e:49:87:9a:79:4d:
30:67:83:02:90:28:0b:80:36:ab:01:1f:f2:85:7f:
8b:2e:35:0f:14:87:0b:d1:6d:0d:98:6f:d0:8e:79:
a2:7a:22:b8:55:65:bd:dc:47:32:8a:62:be:a1:18:
b4:a3:13:e5:f4:7e:cf:4c:5c:56:21:ab:c1:f2:ba:
30:dc:8c:ec:ab:1c:f9:0d:26:31:3e:a6:3a:b2:51:
de:2b:55:28:ca:0a:2b:49:e9:f6:5d:ee:18:90:4d:
33:7f:17:ac:d5:a1:3d:74:d0:2e:36:5a:b2:e7:9d:
90:f3:38:56:9d:f5:d7:da:f8:de:09:35:f9:bb:f1:
8f:aa:a9:54:32:86:7e:1c:b8:59:fa:a8:ed:1d:95:
ed:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:99:9B:82:CD:1E:56:C5:03:E1:B7:AD:99:EC:C0:5C:D5:11:8A:62
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:bc::/48
Signature Algorithm: sha256WithRSAEncryption
6e:20:46:1a:d3:6c:9a:8c:bb:8b:fc:83:6f:ad:a3:a9:fd:8e:
b8:63:39:4a:49:5c:b3:f7:2e:e9:63:90:1d:93:3c:6a:c4:a0:
c3:08:8b:ca:da:35:b8:1f:fc:c3:47:23:27:64:9d:41:0c:39:
9a:e1:a2:6a:5e:4c:68:ed:d9:a7:7a:03:d4:29:75:db:04:78:
63:27:31:df:c5:99:d8:d3:a0:ee:4a:aa:ca:43:ca:71:70:e5:
df:ca:69:0a:67:98:03:bf:b3:59:c5:d2:b5:21:4a:d6:3a:ae:
fe:a5:1f:d4:fc:43:07:41:32:a6:2d:32:32:ba:0f:76:e2:7f:
1f:96:c0:92:08:81:f2:9e:ed:a4:7a:98:46:6c:30:91:05:0e:
66:70:3c:17:9f:81:14:2a:ce:94:52:eb:92:16:cd:19:5e:b2:
3c:11:32:7e:7c:97:75:84:9d:b9:ae:fa:9d:d6:9c:dc:d3:56:
97:06:04:d7:85:f3:05:99:f4:b2:22:16:be:5b:9d:1e:3f:fa:
33:e7:d9:51:b2:e1:d5:73:52:cc:b3:43:e6:d8:9d:61:46:50:
78:04:de:40:45:e7:01:c0:d8:b1:ca:9a:1a:21:ab:53:90:8d:
01:1b:51:2c:45:7c:7d:bc:e8:19:22:f1:83:e6:e2:f7:fc:51:
55:ce:83:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org