Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Bt5DRcoWvpLebhq77vXQElUZWNkTaS1bY83+mfjCXo4=
Subject key identifier: 05:F7:12:F2:8C:C9:94:7C:AF:1C:13:85:B3:67:19:2F:1D:B6:3B:3F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 646D1C3D73C41147F5CF52EA1C02B4FA9355A1D3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:22 +0000
ROA not before: Mon 26 Sep 2022 07:56:22 +0000
ROA not after: Mon 25 Sep 2023 08:01:22 +0000
asID: 59282
IP address blocks: 2400:d680:ee::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:6d:1c:3d:73:c4:11:47:f5:cf:52:ea:1c:02:b4:fa:93:55:a1:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:22 2022 GMT
Not After : Sep 25 08:01:22 2023 GMT
Subject: CN=05F712F28CC9947CAF1C1385B367192F1DB63B3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:c8:21:37:cd:fb:67:e0:7d:df:55:a6:2f:
9a:40:ca:08:2a:eb:81:5b:d7:ee:fc:f3:1c:d4:81:
46:7f:13:dc:f9:02:6c:58:49:94:48:bf:00:95:e3:
a8:a9:4e:73:7c:18:65:ca:fa:b8:1c:39:3d:27:f7:
8f:3a:6d:f4:e0:df:33:92:b6:cf:dc:ff:d6:1d:89:
7f:61:31:5e:ca:45:31:4f:fd:10:b8:fe:3e:29:b1:
c3:26:76:aa:05:97:d0:fb:dd:2f:ad:76:c6:b6:55:
04:a9:6a:a7:4d:2f:fb:74:40:11:a1:80:60:e8:f8:
6c:45:78:69:d9:33:f6:b6:f4:1a:de:57:ee:a1:21:
3f:45:08:48:80:5c:7f:fd:66:07:f2:48:2f:79:65:
02:7e:11:2a:3c:a0:cc:27:2a:54:ae:ba:1c:b7:0e:
8b:7a:26:8a:7a:dd:a1:ff:d2:fb:5a:64:12:ef:bf:
7d:33:bc:b9:04:59:00:e7:7c:c4:ce:23:2e:04:8e:
e7:7e:b3:21:4c:01:aa:a7:cf:c5:e7:53:df:18:bc:
c5:71:ac:26:47:2e:b1:01:98:0b:4f:6a:d0:ef:23:
de:86:7b:20:a3:79:4e:c7:39:99:15:9c:8e:d3:38:
f7:b6:bf:52:5c:52:fa:d7:c7:0d:79:e4:da:bc:95:
92:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F7:12:F2:8C:C9:94:7C:AF:1C:13:85:B3:67:19:2F:1D:B6:3B:3F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ee::/48
Signature Algorithm: sha256WithRSAEncryption
b1:98:5d:52:c0:ca:be:14:33:2f:c2:dc:b6:2d:89:8f:19:25:
91:29:ac:07:d5:2c:c0:7f:45:d2:76:30:51:0f:b4:d7:94:7e:
24:87:78:ac:aa:49:99:55:02:34:05:fe:b5:63:19:59:c5:0d:
82:1d:a3:35:63:b9:ea:43:e1:4d:27:c8:02:a3:0c:0b:07:d4:
61:3c:5a:e9:91:96:c0:21:48:04:2e:60:9a:7d:6a:64:5e:ae:
2e:b4:7f:66:62:83:81:23:d9:4c:97:38:49:93:c1:4b:bf:6d:
f8:70:e8:2a:85:be:27:aa:91:2a:65:72:f8:4c:9c:8b:ad:a6:
79:9b:07:d6:df:61:08:20:93:18:02:f3:34:fe:07:1e:c9:2c:
02:e3:c7:71:8e:e6:e5:6a:08:09:c5:4c:c5:ff:d4:4d:0f:bd:
59:df:5b:c4:3f:18:31:e9:c0:6d:eb:eb:de:e3:dc:db:b8:31:
65:2b:cf:37:bf:50:1b:82:5d:a5:27:87:0f:85:e1:7b:7c:1b:
64:83:9d:53:b8:33:3c:24:e0:0a:5e:d3:6c:c2:c8:fd:c6:08:
ed:54:f0:39:d4:5a:c4:44:76:9c:95:e4:43:ea:e5:39:52:ac:
1c:72:84:ca:49:17:d9:ca:5d:07:f4:96:24:3e:f3:fd:26:eb:
cb:00:ca:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org