Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zSzAEt4XmF401XbGq28p5hXdgrrXQ60f8Npi0H0VjZo=
Subject key identifier: 7D:9A:5E:92:68:21:61:4A:E9:40:58:04:17:64:AB:E9:F2:6E:66:83
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7B05F42D0BF5D24A907D7587AE03AB4F62D2FB5C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:29 +0000
ROA not before: Mon 26 Sep 2022 07:56:29 +0000
ROA not after: Mon 25 Sep 2023 08:01:29 +0000
asID: 59282
IP address blocks: 2400:d680:155::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:05:f4:2d:0b:f5:d2:4a:90:7d:75:87:ae:03:ab:4f:62:d2:fb:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:29 2022 GMT
Not After : Sep 25 08:01:29 2023 GMT
Subject: CN=7D9A5E926821614AE94058041764ABE9F26E6683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:68:88:38:dd:b5:b5:67:9b:cf:1a:4f:75:70:
cc:2f:79:81:81:9b:08:84:3c:a6:0f:29:d6:05:fd:
80:05:72:1c:a7:ca:6b:1b:c1:fe:55:cc:80:7f:c1:
b3:18:50:3e:47:c6:27:73:61:a7:56:c9:98:e6:7e:
59:90:81:c7:34:82:cf:e2:63:6f:89:4d:e9:86:0b:
97:b7:21:b6:73:09:d9:63:80:f4:d9:48:20:29:a8:
2d:f0:4b:fa:7b:2b:46:2f:e9:cc:0d:e4:fc:5e:b6:
a9:4d:c6:8f:26:79:25:5f:6a:ca:46:c3:9b:8c:33:
73:35:c3:c3:95:34:e2:94:66:f4:8c:59:53:9c:bf:
e7:17:52:fe:c4:4d:a6:4d:dc:4a:a4:9f:21:a2:d5:
b5:43:a8:cd:40:9c:d3:3e:45:b2:6f:58:7c:c2:f8:
a6:ac:9b:04:22:4f:6a:b6:a5:5c:48:50:f2:c6:32:
40:5a:b0:26:63:4b:67:69:88:c8:05:05:18:c1:1a:
67:c1:c9:7c:a0:50:37:46:44:d5:01:b4:ee:b2:70:
07:dd:1c:c1:65:27:19:4c:19:32:9a:a8:81:25:bf:
14:f8:cd:e8:56:10:77:55:e1:14:7e:81:b9:09:04:
f7:97:4d:95:97:fa:d2:f8:54:18:c4:2d:9e:c1:e8:
62:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9A:5E:92:68:21:61:4A:E9:40:58:04:17:64:AB:E9:F2:6E:66:83
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:155::/48
Signature Algorithm: sha256WithRSAEncryption
88:cd:5d:21:25:2c:7f:c3:4f:3a:82:95:b1:76:77:fc:3d:d4:
3d:51:f0:e3:70:ab:3f:14:0c:b2:0b:b9:d1:45:f5:94:b8:0f:
23:bd:22:b9:7a:cc:e5:96:9c:99:6d:27:0d:48:e5:a4:4a:f4:
2f:45:ed:e1:be:80:3f:5a:0c:d5:86:eb:57:ec:c5:10:87:d0:
10:fd:a4:a4:68:d9:05:3d:aa:df:84:71:51:de:40:e0:f3:af:
ab:97:d7:5d:75:ac:5b:cf:bb:d3:19:75:a3:ee:de:f3:c4:0c:
b8:eb:8d:31:6c:cb:70:b9:0d:64:6f:39:6c:33:83:fe:24:37:
c7:ef:99:88:0a:58:03:a2:99:26:41:18:2d:23:66:35:23:6d:
22:0e:bf:50:e9:5b:d7:33:2a:4a:4f:4d:22:c0:23:39:95:53:
b0:b6:01:b6:2e:76:12:d1:16:79:22:9b:4a:24:37:05:2e:dd:
0c:1c:a4:91:a9:dc:7b:08:e7:5a:41:ad:36:58:f6:50:1c:8f:
6c:d8:0c:e0:10:45:d2:47:98:85:28:7c:f5:b3:e2:cd:b0:a9:
d1:95:76:cf:0a:1c:65:dc:e9:52:6b:14:8f:de:b6:4b:f9:4c:
4c:2f:c1:fd:57:7a:a4:e0:99:ba:67:e1:f5:69:5a:72:c7:5c:
d7:e9:32:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org