Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: buO1rCrC254LT4uiC7vUcMPx2VR4GXr7fwRCyN+5PH8=
Subject key identifier: A5:0D:75:8D:2E:39:1F:61:10:3A:A9:14:EB:B3:1E:1D:EE:5F:9D:BE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4559F657343B39198770306B056EB3BC6BFD4D69
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:35 +0000
ROA not before: Mon 26 Sep 2022 07:56:35 +0000
ROA not after: Mon 25 Sep 2023 08:01:35 +0000
asID: 59282
IP address blocks: 2400:d680:cf::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:59:f6:57:34:3b:39:19:87:70:30:6b:05:6e:b3:bc:6b:fd:4d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:35 2022 GMT
Not After : Sep 25 08:01:35 2023 GMT
Subject: CN=A50D758D2E391F61103AA914EBB31E1DEE5F9DBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:af:b0:c2:14:f6:91:a9:32:78:2d:8a:24:f0:
02:b4:17:87:e5:da:13:8d:5c:70:49:cb:d4:55:ba:
2e:7c:3b:03:e1:f0:e7:9a:26:7a:58:7c:f2:67:95:
19:6e:1b:07:b5:44:ac:d7:2e:6f:aa:cd:ef:c5:a8:
2c:ec:0c:d8:22:5f:93:03:48:80:85:bd:26:f1:3b:
d7:a5:45:10:e0:c1:ad:f5:4c:56:7a:32:45:be:cc:
4e:7d:61:f5:02:f4:8b:90:99:b4:ce:ef:aa:64:cd:
b3:4d:6d:6b:7e:b8:8f:c8:d8:25:1c:80:49:fc:ac:
ef:c5:1c:a9:43:49:2c:c4:39:85:c9:b2:ce:34:f7:
86:78:11:71:93:b1:25:4e:88:35:c4:cc:32:3a:17:
c0:c8:b2:58:87:94:05:9d:32:c5:23:be:69:bf:09:
d7:62:2a:b9:12:8b:2d:89:fa:21:bf:7a:d6:97:dd:
20:81:f9:84:1c:a1:2c:6d:71:68:5d:0c:8d:cc:d3:
84:2c:93:8f:a1:ae:d2:4d:3e:af:0a:ab:04:af:ef:
46:7a:31:f4:c3:5e:6e:3d:e5:43:de:2c:09:77:45:
0f:fd:22:ad:a3:a0:ba:8b:74:19:0f:d2:c8:eb:6a:
9d:63:15:87:1f:e0:19:ac:f4:20:9e:9b:d5:f1:6c:
5e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0D:75:8D:2E:39:1F:61:10:3A:A9:14:EB:B3:1E:1D:EE:5F:9D:BE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:cf::/48
Signature Algorithm: sha256WithRSAEncryption
2c:22:a0:24:6b:9e:e5:9e:76:a7:48:6f:7a:48:be:fa:88:ee:
91:d3:28:d6:a0:69:50:29:ff:ef:80:c0:99:a6:0d:c4:bd:37:
ca:6c:d5:ad:5e:3a:3c:6c:ba:c5:be:79:d7:49:36:40:c0:af:
9c:83:f0:74:d0:d5:d6:51:47:f8:fe:77:e5:47:c6:ef:eb:76:
99:e7:27:ad:c6:53:e6:dc:03:08:46:35:0c:5e:0b:fe:56:b6:
d9:9f:4a:43:0e:5f:2a:b6:43:0d:dc:81:02:0d:74:be:22:d9:
a2:e4:d4:aa:49:b4:1e:40:c0:d4:8c:85:b7:b5:32:c0:15:bc:
bb:ce:ff:34:24:b4:a4:62:61:8e:b8:80:1f:1e:8b:b4:2d:c6:
8b:a0:86:8a:f0:6c:70:2c:2b:02:4a:4b:cd:6e:e2:35:a2:1b:
1a:cd:b4:46:f0:ee:01:63:71:ad:bc:f7:15:dc:9c:7f:02:52:
94:c2:41:b2:43:37:2f:6b:a8:23:f0:4b:49:06:63:fe:82:7c:
0a:ce:91:d1:ca:c4:69:4c:6a:d2:70:1a:de:f4:6a:ee:08:fe:
e5:3a:0c:0e:97:71:cf:01:31:87:4e:d9:d3:20:95:d0:1f:2d:
ee:16:e3:d6:d9:2b:ad:c2:95:f4:d6:97:4d:09:b8:76:a5:a5:
09:82:29:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org