Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jX4po0kfbUQ7bRhbc4VnsZ0Gcjl5ISS1jIP25VMsnmY=
Subject key identifier: 5A:03:99:0E:5D:75:90:BF:85:5C:7C:19:D6:90:FE:A3:A0:AE:C6:60
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 367FBB6A889A68B70B8700D29E617CE9938447C5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:33 +0000
ROA not before: Mon 26 Sep 2022 07:56:33 +0000
ROA not after: Mon 25 Sep 2023 08:01:33 +0000
asID: 59282
IP address blocks: 2400:d680:d2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:7f:bb:6a:88:9a:68:b7:0b:87:00:d2:9e:61:7c:e9:93:84:47:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:33 2022 GMT
Not After : Sep 25 08:01:33 2023 GMT
Subject: CN=5A03990E5D7590BF855C7C19D690FEA3A0AEC660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b8:95:fe:65:ae:c5:d7:29:54:34:ae:ce:05:
23:70:07:3f:86:fa:c8:a3:ef:8d:91:4e:3c:01:38:
f7:97:c6:63:32:b8:86:cc:83:da:be:c5:54:2f:f1:
74:a3:c4:c0:89:0c:fd:d8:d3:50:f8:7a:f5:b1:66:
46:6d:d3:2d:2d:dc:af:a0:21:51:da:72:ee:81:a8:
be:0a:af:b3:d5:fc:2a:11:f8:34:e3:fb:1f:a3:84:
d0:57:28:d0:e8:28:12:ac:41:5b:db:b1:e5:7c:ae:
5f:76:8b:cf:c5:1b:7e:2c:de:0a:a5:21:02:46:f5:
d7:f4:7f:a3:1c:99:53:1e:6b:d5:38:b6:fa:89:93:
d8:8b:4f:21:b0:2e:a7:e6:08:66:1d:de:09:47:8a:
71:5d:a7:97:70:4d:30:9c:a7:13:1c:73:a1:9f:b7:
23:d0:6b:19:2e:85:e6:72:a1:5e:de:1d:12:85:9e:
00:71:98:b9:cb:72:19:30:65:1f:32:ea:09:42:70:
05:12:53:83:d0:a6:33:eb:ae:26:c7:2c:52:0c:80:
3c:fb:4c:10:dc:2c:5c:06:eb:19:b6:d6:14:49:41:
e1:8a:8a:67:7d:a1:09:b8:67:1b:1d:34:4a:d8:a4:
e5:cb:8f:b4:48:1e:d6:d7:4f:66:e0:45:b4:4c:83:
7f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:03:99:0E:5D:75:90:BF:85:5C:7C:19:D6:90:FE:A3:A0:AE:C6:60
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d2::/48
Signature Algorithm: sha256WithRSAEncryption
8a:c2:61:b2:41:3a:9d:a0:8a:4d:0f:dc:17:59:14:8a:d9:0a:
0d:c2:77:70:62:56:29:20:0a:7b:fb:d3:5c:fe:b5:43:b2:1f:
53:60:09:15:91:92:fc:38:51:34:30:ed:70:ce:03:df:e4:5c:
72:4d:41:8f:07:6c:ca:19:ee:e2:29:f5:f9:85:f4:91:6d:59:
2c:b6:c6:9a:1d:2b:d8:ec:76:1c:80:5a:4a:d6:45:8f:ba:4a:
c1:b4:99:91:90:38:da:2a:df:b0:b1:16:fd:f5:5b:62:f5:d2:
45:9e:8b:bb:09:7a:89:9c:e0:3e:dd:d2:40:52:f7:63:1d:6a:
ed:ae:73:9c:07:1f:33:a8:d6:67:95:ec:35:17:3e:fa:7c:69:
de:ba:0b:e2:77:33:de:93:78:8f:a2:50:18:6e:81:bb:88:b8:
31:53:20:8c:0c:a9:c9:62:9f:3a:b7:37:cb:1d:31:bb:d3:4c:
b5:c6:05:f6:b7:36:62:0e:e8:45:e1:8d:29:4f:34:b8:9d:de:
9c:bd:24:59:23:60:97:7b:78:31:8b:28:1c:3f:14:db:59:7d:
0b:10:72:b0:50:b6:e4:5f:33:66:c0:ac:4e:5b:ba:1b:11:2e:
62:9b:56:be:88:a5:4b:93:60:f5:b5:54:84:f4:6d:97:26:d5:
c5:3d:4a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org