Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1v1amg7AavFI+56C6ktJRN3YUgMDDRtkskBivYmoH1M=
Subject key identifier: 68:38:70:0B:40:B4:39:01:39:9E:15:92:86:0B:A1:5C:91:87:07:F7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 77EDBFAAF6B5AE4697B2CD06706297C52ECB0C6A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:47 +0000
ROA not before: Mon 26 Sep 2022 07:56:47 +0000
ROA not after: Mon 25 Sep 2023 08:01:47 +0000
asID: 59282
IP address blocks: 2400:d680:173::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:ed:bf:aa:f6:b5:ae:46:97:b2:cd:06:70:62:97:c5:2e:cb:0c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:47 2022 GMT
Not After : Sep 25 08:01:47 2023 GMT
Subject: CN=6838700B40B43901399E1592860BA15C918707F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:57:ab:48:a3:78:50:8d:63:13:1d:4a:3d:5f:
a3:11:46:8d:86:c6:8a:8b:e8:52:ce:e3:86:d2:76:
95:fc:d5:d4:37:3c:2f:8c:4c:f0:72:f0:38:49:47:
6b:2a:52:77:e5:37:4e:a0:94:bb:97:7b:c5:45:7a:
aa:56:c5:b1:00:d7:80:8a:a2:02:3c:c9:df:b3:bd:
9b:21:0e:8b:2d:0f:e2:9e:1e:0b:47:ac:12:4f:04:
20:cf:37:e3:3d:74:60:5b:15:75:fb:c0:ff:bc:a5:
a9:88:26:3c:f5:ad:f8:14:59:46:56:1d:fb:c5:b8:
16:71:95:c5:57:a4:87:63:c3:3a:c6:c0:51:d6:0d:
1d:c2:66:c7:14:90:41:27:c7:d4:8d:6a:e9:be:ed:
1f:4f:6c:95:6e:13:c8:70:db:4d:69:f2:38:47:c3:
bc:04:48:28:18:1a:16:68:b3:09:33:2e:64:d7:aa:
81:0c:04:d9:03:78:38:4f:f2:ff:3e:ab:11:77:7b:
d6:c3:ef:2e:e9:92:b5:ad:f7:57:26:36:2f:bd:de:
8d:f8:40:e9:f8:6f:8b:ee:7e:80:a1:fe:1d:99:22:
c2:5d:9d:81:8d:ba:49:50:0e:21:02:51:0a:c8:20:
96:fd:e1:8d:12:60:7b:6b:04:de:6f:54:be:34:fa:
a6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:38:70:0B:40:B4:39:01:39:9E:15:92:86:0B:A1:5C:91:87:07:F7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:173::/48
Signature Algorithm: sha256WithRSAEncryption
42:46:a7:92:ea:40:bc:2a:97:52:30:0e:60:2d:36:ff:50:48:
1a:77:23:5f:20:2d:22:06:b9:0c:cb:ea:d9:91:39:7a:a6:63:
d9:30:7f:2a:bc:a4:96:f2:fb:ba:32:67:a2:6c:06:df:65:55:
aa:54:5a:f8:02:71:ca:34:ab:0c:4a:5e:b7:18:a3:f3:1d:11:
1c:97:b7:41:2a:d7:9e:cb:a2:fd:17:e2:d3:a6:07:62:80:e7:
03:d5:d7:18:79:31:a3:99:0e:05:ff:5c:a4:df:8c:f5:07:9e:
a9:97:d4:6c:2c:42:dd:35:69:64:b0:d2:6e:4a:18:1b:47:f8:
7b:00:1b:ea:ff:a2:14:0b:8f:ff:9d:51:82:9e:ce:bf:d1:3d:
b4:47:a7:46:b0:f9:64:f5:81:5a:a5:14:ef:83:f4:a7:90:f0:
61:c7:37:8b:f9:0a:2a:0f:14:51:93:0a:44:3a:56:8d:6d:ff:
4a:34:fc:89:3b:ad:86:78:54:cc:b6:da:7e:78:17:db:c7:66:
95:8e:be:1b:83:21:e7:1e:aa:3a:2a:b8:76:52:e8:8c:57:b8:
07:d7:6f:a4:37:51:20:9c:42:86:73:c1:65:ed:f0:9b:d1:2a:
52:51:ef:bd:e1:ca:d5:8e:06:c5:42:46:e0:e0:58:e7:ea:98:
77:77:fa:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org