Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: EdCt5W69CkHQtVYsn9s/CU2wcaTvCS+iaAtjd2j9p30=
Subject key identifier: AE:6F:3E:EB:06:1F:CA:42:99:BA:52:C9:4B:79:88:43:79:32:9B:8C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3B8CF2925A8FEEA2FD5012B648F37E865B5A1D1B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:39 +0000
ROA not before: Mon 26 Sep 2022 07:56:39 +0000
ROA not after: Mon 25 Sep 2023 08:01:39 +0000
asID: 59282
IP address blocks: 2400:d680:e5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:8c:f2:92:5a:8f:ee:a2:fd:50:12:b6:48:f3:7e:86:5b:5a:1d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:39 2022 GMT
Not After : Sep 25 08:01:39 2023 GMT
Subject: CN=AE6F3EEB061FCA4299BA52C94B79884379329B8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:75:2f:9a:c5:51:0b:87:f8:9a:6e:b6:16:ca:
c4:7d:f8:17:c1:b8:91:b1:47:fa:05:41:cf:3e:76:
39:8e:6a:fb:d1:f4:ba:8a:7a:8a:95:83:9f:9d:9e:
46:5a:cb:35:47:61:53:cf:9b:fa:2c:19:a2:82:ce:
85:09:2b:df:ba:67:80:58:45:ce:c7:85:5c:db:b6:
89:27:85:02:12:08:c1:49:d6:f4:4e:f5:75:71:50:
f4:08:98:6d:39:10:ff:ee:03:62:8a:e9:52:00:2e:
67:de:cc:ae:6e:63:46:10:4a:11:57:ce:0f:33:ff:
1b:7c:3d:fc:b1:79:46:8d:44:c3:5e:86:62:74:0b:
4e:1b:59:c4:f0:72:61:bb:46:4e:bc:45:b8:dd:5a:
a5:33:ee:61:f0:15:24:84:5f:27:98:9a:63:ee:c2:
39:4a:5e:e1:fc:f8:dd:e8:3d:cf:c5:06:99:bc:65:
22:eb:bf:7e:13:ed:b5:78:2d:a2:f4:29:0c:00:2c:
9f:89:95:bf:e6:cc:bf:ae:18:f9:b0:3a:fa:28:21:
07:a5:71:9c:06:e3:ff:ee:18:0b:75:a9:c5:e8:b5:
54:14:e9:83:ea:66:c4:ad:b2:97:9f:78:9e:75:eb:
c6:c5:89:f9:c5:b6:4c:99:9b:61:e8:b6:62:5b:e4:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6F:3E:EB:06:1F:CA:42:99:BA:52:C9:4B:79:88:43:79:32:9B:8C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:e5::/48
Signature Algorithm: sha256WithRSAEncryption
63:02:3d:54:ed:8e:00:23:3d:fa:92:2f:86:91:4a:e7:01:65:
31:46:f9:5c:79:fb:39:57:7c:1e:0c:82:3e:d8:f7:c8:9d:79:
50:a5:a8:aa:a9:ec:64:db:f1:bb:79:8b:16:b4:90:8b:d6:7d:
4f:d6:13:7c:88:c5:ef:1f:45:84:96:49:61:fd:5b:ce:d4:30:
40:23:f0:0b:16:e1:6c:9e:f3:ac:97:95:29:c2:54:6a:80:db:
29:55:b3:0e:5f:6e:2b:21:df:8d:38:01:af:d2:ed:a9:cc:55:
84:72:47:a4:44:b6:a6:51:55:3d:4a:e8:9d:f0:b9:66:7a:08:
ff:29:db:d1:38:0f:69:b4:a4:62:f9:ac:08:ce:9a:81:2d:08:
a8:85:f6:50:5c:ca:f9:c5:a1:f5:3b:05:c9:1a:cb:27:32:f4:
26:c5:85:c0:38:b6:3d:d9:65:7a:16:4c:89:1f:23:ca:4f:d1:
28:09:33:dc:1e:f7:25:39:86:1d:1c:ac:f5:b9:a0:50:e2:7b:
72:8d:df:8a:ea:9d:c5:15:66:32:90:a8:9a:be:be:6b:2a:20:
c9:b2:8a:d9:bb:d2:12:b8:79:54:55:f2:1a:ea:d0:04:dc:2c:
83:38:cc:51:30:18:79:eb:4a:ae:2c:c4:cc:5b:06:12:2c:dc:
7f:d4:47:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org