Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3130643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Wjl6jvC/7uXOA4FJSOPNAVtryYZqvkYqhSivtYDnH1Y=
Subject key identifier: 80:7E:72:1A:F4:A1:85:C7:01:26:FD:12:F5:32:75:64:E9:D1:E9:FE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7E4FB7496B37649DE6D7B16576BFE7ED87B6D9EB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:36 +0000
ROA not before: Mon 26 Sep 2022 07:56:36 +0000
ROA not after: Mon 25 Sep 2023 08:01:36 +0000
asID: 59282
IP address blocks: 2400:d680:10d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:4f:b7:49:6b:37:64:9d:e6:d7:b1:65:76:bf:e7:ed:87:b6:d9:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:36 2022 GMT
Not After : Sep 25 08:01:36 2023 GMT
Subject: CN=807E721AF4A185C70126FD12F5327564E9D1E9FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:96:42:ed:36:20:9a:53:ec:fb:15:b3:fc:
b6:ae:fe:fe:13:a6:0a:0a:16:ee:3f:ab:c3:9a:52:
de:a5:7f:d0:4b:c5:e8:e8:fd:27:1b:c1:a5:99:53:
6d:5f:f9:7c:14:db:6f:74:d1:b9:cc:44:17:ee:40:
2d:d7:79:f2:fd:ef:a1:9d:70:0e:f6:c3:5c:4f:2c:
99:75:f1:d5:36:7c:70:56:92:ca:a8:b4:ba:bd:1c:
f9:3a:68:da:1b:08:3a:bb:f5:0e:b4:1a:52:7e:8a:
07:a1:4e:fe:43:18:85:ec:08:df:78:18:99:42:cd:
57:86:8f:6e:6e:76:a5:df:fe:64:29:53:3a:ac:7d:
d3:d0:ee:62:2c:ac:2b:2a:6e:e7:b8:5f:46:3f:bb:
ea:07:b0:0f:d2:2a:15:b4:2a:ff:a4:fd:50:22:59:
d6:78:79:96:e7:7c:e5:1e:58:70:9c:52:88:99:f8:
5b:9c:3d:1b:47:9b:42:c4:48:58:82:3c:ba:20:92:
2a:40:8d:6c:a5:17:c3:ec:b4:24:4e:ef:40:72:f7:
75:ca:d3:2b:4d:19:32:03:cc:06:f8:9f:5d:85:b5:
fb:14:96:bc:54:4b:35:11:a5:52:8e:5e:71:38:95:
1b:9f:18:38:90:74:58:2a:51:8e:08:d3:24:16:f9:
c0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:72:1A:F4:A1:85:C7:01:26:FD:12:F5:32:75:64:E9:D1:E9:FE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:10d::/48
Signature Algorithm: sha256WithRSAEncryption
24:63:9f:08:14:26:57:31:a6:94:6f:55:70:5f:77:51:66:5b:
e3:8f:06:83:b6:51:42:73:0f:07:84:ea:da:3d:2e:ad:b0:6f:
f2:ff:0f:d7:57:a3:75:eb:c4:07:e8:5f:b9:62:a7:db:3c:25:
55:4e:09:88:22:87:5e:da:f1:c9:7e:12:10:a1:35:f6:98:e1:
60:6e:29:ff:55:c4:90:2e:b9:e8:df:27:dc:29:95:c7:c1:45:
ad:3f:c9:a1:4a:7a:58:fd:12:fe:2d:db:98:d7:3b:37:5e:20:
a1:b7:16:42:ef:3d:40:7b:3f:0d:2d:cf:b6:3c:c3:04:aa:c2:
bd:4d:8a:27:98:dc:2c:07:3a:4c:cf:90:5c:c5:72:be:d7:51:
b7:3a:bd:b6:7c:dd:04:f4:da:a4:1b:5f:fc:56:31:87:e1:96:
35:94:a2:d7:a4:45:84:34:db:2c:25:a3:87:be:45:0a:3b:ad:
0a:f2:17:dd:15:31:88:3a:8d:15:df:78:d1:23:52:82:80:68:
66:ec:74:70:32:df:9e:9f:84:f0:a0:6b:a5:16:d3:46:2e:d5:
5e:d5:ed:e5:ac:68:12:b2:06:85:09:d4:4d:8a:49:42:a8:50:
c1:28:45:b2:ac:92:0f:34:1c:8e:40:1e:14:9e:be:6a:fc:79:
25:61:05:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org