Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3130623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: xpZFwWfyCWlwK51E7/Uue8VfYGDGimy4l5sTA6r4z8Q=
Subject key identifier: 78:16:7B:E8:08:DC:D6:72:06:39:21:9A:90:E0:44:06:11:39:A8:43
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2E2467FB65B45F7502C95C486399B0451DA1D0D4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:50 +0000
ROA not before: Mon 26 Sep 2022 07:56:50 +0000
ROA not after: Mon 25 Sep 2023 08:01:50 +0000
asID: 59282
IP address blocks: 2400:d680:10b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:24:67:fb:65:b4:5f:75:02:c9:5c:48:63:99:b0:45:1d:a1:d0:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:50 2022 GMT
Not After : Sep 25 08:01:50 2023 GMT
Subject: CN=78167BE808DCD6720639219A90E044061139A843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:32:99:cd:d1:8f:33:76:6c:df:46:ec:1f:85:
e1:7b:93:5f:25:4f:f8:61:7f:b1:b1:73:47:2a:70:
77:64:d3:0d:59:5d:5c:da:e3:cf:81:dd:76:58:55:
c7:03:60:8b:f5:04:8a:79:03:87:81:2d:37:cc:20:
33:db:45:3b:f5:16:4c:9a:b5:a7:4d:e0:81:99:2b:
d3:61:d9:f5:4c:14:96:71:48:78:74:8f:28:25:80:
e1:3c:65:22:40:46:ea:ce:78:00:65:4e:e3:c1:6c:
71:c9:b6:49:ee:2a:7d:d8:a9:c4:f3:f3:02:14:69:
b3:94:bf:db:76:e4:49:25:d5:f0:a5:e6:96:9c:09:
0d:90:8c:6f:d2:ff:c2:66:71:9e:98:81:f8:2f:d4:
98:51:da:9a:45:1b:92:fe:1e:39:43:ea:f0:eb:78:
fe:fb:04:5b:89:27:1e:b4:a8:f3:89:86:00:e2:11:
04:51:58:50:f5:73:8f:e7:87:48:c0:b4:5c:9e:20:
ea:be:ec:47:79:d4:d6:f7:90:24:49:03:71:9b:0a:
08:9a:2f:90:77:44:85:cd:6b:da:51:69:4e:a8:9f:
0d:2a:ea:23:ab:95:1b:a1:a7:33:0d:e8:61:3a:20:
5b:3d:d2:d6:71:5f:a4:5a:0b:23:8f:b1:7c:7b:18:
5e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:16:7B:E8:08:DC:D6:72:06:39:21:9A:90:E0:44:06:11:39:A8:43
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:10b::/48
Signature Algorithm: sha256WithRSAEncryption
61:b1:ff:5a:39:b1:03:41:37:c6:82:2b:f8:56:1b:5c:af:1b:
13:ed:01:59:94:a2:32:38:b2:9d:c5:40:dc:7f:77:8d:4f:b0:
fa:da:be:32:88:14:94:8a:0c:80:06:68:6b:73:bd:51:6d:59:
1b:b1:9c:5e:72:8c:82:0b:94:78:aa:ec:86:a1:71:a3:86:e3:
2c:2d:a4:be:df:87:de:80:70:5b:ed:cd:44:bc:9e:88:b0:1a:
b8:d9:7c:15:f8:7c:35:5a:96:80:29:88:32:3d:d3:56:b8:a4:
c0:23:24:92:c6:15:68:d4:ff:dd:f4:7f:ee:41:10:e6:f7:fd:
0e:f5:4d:69:29:14:bf:4c:37:19:85:53:ee:52:9b:a4:57:fd:
7f:a5:49:0a:50:b0:ae:32:0b:d4:0c:af:17:80:47:7e:ef:eb:
ff:01:c3:df:66:33:21:bd:62:e1:26:70:76:8d:6b:71:f5:bd:
81:27:d4:bf:45:1c:19:07:0d:d0:a4:50:90:d2:72:be:cf:06:
fa:9c:d5:fd:cc:25:f8:8f:a1:39:ae:79:42:b3:c5:6b:2b:0f:
09:90:93:f0:be:43:49:23:77:da:2a:99:d0:28:54:b6:bd:06:
62:3f:e2:0c:5c:14:7d:57:c7:8b:34:6a:54:f2:e1:44:f7:f2:
35:41:a1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org