Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JGKEO7bambdFdZNpJPfgTqA0ztJlxeOA1LIg2AdYhqs=
Subject key identifier: D8:70:C5:C2:0A:A6:03:55:DC:B5:D6:EA:20:B3:08:1C:8C:43:8B:16
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2EB59AE0829DB19E86CD16B677BC2349F10D1B87
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:56 +0000
ROA not before: Mon 26 Sep 2022 07:56:56 +0000
ROA not after: Mon 25 Sep 2023 08:01:56 +0000
asID: 59282
IP address blocks: 2400:d680:db::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:b5:9a:e0:82:9d:b1:9e:86:cd:16:b6:77:bc:23:49:f1:0d:1b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:56 2022 GMT
Not After : Sep 25 08:01:56 2023 GMT
Subject: CN=D870C5C20AA60355DCB5D6EA20B3081C8C438B16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:7d:ca:4e:f1:d8:63:9f:dc:cd:b2:94:cf:
45:53:5d:70:b4:ff:b1:93:47:e0:66:08:ee:69:dc:
b6:1e:24:f0:16:14:2c:73:49:c8:81:50:67:ae:b0:
09:4a:86:e4:be:4e:0b:5e:cc:d6:8d:03:50:6c:5b:
70:32:62:3e:e8:27:50:23:a1:0a:dc:b5:49:07:67:
72:b2:cd:cf:ea:a3:c0:9d:39:2a:26:1a:30:a7:92:
e3:1a:59:3b:d4:39:31:12:d4:e1:74:30:ac:66:52:
c4:59:e3:74:66:0d:12:14:0f:36:c6:1a:60:7d:87:
73:3f:7f:66:88:83:3f:63:aa:d7:47:be:db:29:a8:
82:65:d2:ee:b9:2c:00:da:8a:c8:50:cc:eb:0d:44:
5a:40:8a:35:9c:10:72:0b:f5:96:fd:ac:af:ff:28:
8c:0e:68:a1:c1:c9:0e:82:44:14:77:d8:e5:91:0a:
9a:40:d2:49:99:3e:08:78:e9:ed:9e:f2:a3:a1:07:
ae:fe:73:db:27:c5:67:86:6c:69:61:26:5d:63:9d:
e0:74:93:1e:9f:84:be:43:d5:7b:3f:25:18:bb:f9:
82:61:ac:a2:1d:ab:9a:ec:4b:21:1f:49:4e:bf:c7:
9e:c8:2b:0b:2d:f7:41:86:cd:7b:07:a0:31:71:90:
8e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:70:C5:C2:0A:A6:03:55:DC:B5:D6:EA:20:B3:08:1C:8C:43:8B:16
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:db::/48
Signature Algorithm: sha256WithRSAEncryption
3d:43:96:79:9a:d9:18:77:7f:8c:6a:fa:d1:3d:80:57:27:65:
3f:32:62:45:63:2b:5b:1d:f8:4d:ca:76:13:fb:50:47:12:14:
52:49:a3:ca:f8:ad:28:b7:bd:81:c8:bd:c8:9b:a6:f0:10:e9:
7c:3a:51:ac:d0:9a:f3:ac:3d:78:e2:5d:73:a8:62:9c:aa:ac:
73:ec:66:dd:37:3e:8b:ac:df:df:4d:cf:22:80:73:e3:0f:75:
4e:4d:1d:cd:51:85:a3:9e:88:55:f8:61:8b:aa:c9:86:13:51:
07:69:b1:06:f1:0c:74:dd:ec:ae:00:81:f5:d0:38:7b:25:a1:
33:46:92:aa:30:3c:6a:d1:14:5c:a0:31:22:2e:23:ad:e2:12:
3b:42:08:09:e0:fd:82:e4:4d:1d:7a:23:64:3a:1d:0f:7a:2f:
45:08:ef:9d:7a:c5:85:78:80:4f:73:e3:c8:26:b4:34:41:ed:
42:28:21:4a:ad:66:47:48:2b:e1:b3:30:64:86:3b:f8:fa:f4:
c0:25:43:b2:6f:45:cb:10:96:ee:6d:eb:9f:6f:79:40:ee:0a:
d6:c9:1d:e8:14:52:b1:08:7b:80:34:db:c5:b7:83:e4:8b:3b:
1a:8e:05:47:0d:4c:a9:22:dd:a1:c2:5d:f3:a9:c2:92:f5:b9:
b2:9a:3a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org