Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JSnlHnykc543MRzmeM44mHkYjztmchV4kyGTFke01uo=
Subject key identifier: 01:50:98:47:06:39:01:C0:44:9C:17:64:62:8C:C3:FF:B8:9E:12:0D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 515D34B1C37A72936797337664608983430B453E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:08 +0000
ROA not before: Mon 26 Sep 2022 07:57:08 +0000
ROA not after: Mon 25 Sep 2023 08:02:08 +0000
asID: 59282
IP address blocks: 2400:d680:cb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:5d:34:b1:c3:7a:72:93:67:97:33:76:64:60:89:83:43:0b:45:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:08 2022 GMT
Not After : Sep 25 08:02:08 2023 GMT
Subject: CN=01509847063901C0449C1764628CC3FFB89E120D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:05:46:69:17:27:2f:7b:8d:de:8b:5a:15:
76:f9:1a:5c:a2:99:87:f8:c4:aa:3d:24:e4:65:e5:
8f:fb:37:57:25:a8:5e:b2:da:2d:49:01:91:50:29:
8a:e2:2e:49:d7:b9:22:d2:81:fc:5a:3b:db:b2:d5:
bd:43:c1:7f:4a:a2:7a:a0:34:3e:61:9b:c5:ec:96:
1b:aa:f6:ff:4d:f5:2c:8d:17:e6:89:3d:66:22:19:
a7:0f:0b:67:fe:78:d5:b2:14:6c:3a:4d:9e:1a:75:
f5:1c:8c:9d:41:62:4a:53:16:bf:fc:d5:c7:e8:6b:
4b:68:5d:ab:bb:ad:36:f8:aa:8d:d4:25:2f:b4:a8:
65:6a:52:7a:de:e2:0c:f8:e7:2c:68:75:a4:ec:bf:
80:13:13:6c:77:1e:8b:4c:b3:da:cf:de:95:96:29:
83:c3:ee:d7:28:11:8f:0e:39:72:18:1f:69:88:19:
40:4c:cf:8b:a9:a8:74:b7:35:de:fb:cd:1e:b7:13:
08:6c:c5:2e:ec:eb:81:3a:97:20:95:ee:5f:8d:c1:
f3:d7:be:9b:52:45:5e:26:5d:73:0d:d6:4f:e0:6d:
be:f7:4b:14:f7:06:42:0b:43:a6:68:db:bf:1a:9e:
fd:98:00:9d:03:b3:34:89:ed:f8:df:22:c6:8e:8f:
ed:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:50:98:47:06:39:01:C0:44:9C:17:64:62:8C:C3:FF:B8:9E:12:0D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:cb::/48
Signature Algorithm: sha256WithRSAEncryption
6a:f9:0d:6d:03:a1:59:d7:e3:ac:97:09:00:b7:42:66:e1:86:
8e:6e:8b:13:62:32:79:c5:f7:e2:5b:be:4c:14:2b:5d:98:49:
ca:f8:c7:80:c1:fe:fb:39:f0:75:37:5c:c0:66:4b:b0:ca:30:
4f:7d:a0:86:92:ec:72:85:fd:82:24:d0:4a:b5:62:af:fc:02:
30:09:8a:21:59:bf:4e:fc:b0:2b:e2:36:2c:79:80:46:6d:4d:
4b:96:6d:b6:28:de:4b:de:90:4a:55:fa:bb:62:78:ab:34:e1:
76:7a:f1:75:15:09:c4:ea:e3:4d:4f:52:b5:2f:45:1d:fb:52:
3c:94:be:d6:14:c4:65:58:04:e2:18:0c:86:98:59:b6:c4:54:
4f:51:78:82:9b:0b:4a:c5:2c:3e:a1:72:09:6e:2f:f6:f7:14:
d9:98:85:03:d7:68:4e:f8:f2:98:d5:83:30:cf:bf:62:6d:f5:
2e:d4:df:b0:0b:88:27:be:34:e8:44:87:a4:bc:4d:02:99:6f:
96:74:29:64:59:b9:6c:eb:8b:4f:b8:8e:00:0b:2c:45:3e:a4:
97:21:90:15:59:a6:f2:ac:52:33:5c:68:a6:7a:d2:2c:8f:b8:
70:02:5b:32:99:fe:e1:b8:bf:33:fe:ce:64:80:53:4a:0f:e2:
bd:d6:47:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org