Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3166653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5quw+G/NTZl4aY6pZFfkMxSgovQT+2MTZl+yy296IIY=
Subject key identifier: 76:2B:C3:BD:94:C2:A0:4B:59:AE:B0:58:44:48:4F:C9:69:FB:44:B0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7A68D170C3E5C866F759C3C124F9584CDF3232CF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:1fe::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:68:d1:70:c3:e5:c8:66:f7:59:c3:c1:24:f9:58:4c:df:32:32:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=762BC3BD94C2A04B59AEB05844484FC969FB44B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:47:72:57:6e:4c:bf:a8:c9:7c:63:64:37:0c:
47:3a:a0:56:15:a0:59:b2:d4:c4:a8:6c:ff:eb:99:
aa:d3:a2:f2:04:02:d4:8a:ee:16:8e:51:e4:7b:2b:
be:a1:cc:74:3f:bd:c0:fa:6b:16:e3:a7:db:46:b1:
f0:83:5a:65:0d:40:cf:8f:54:5a:18:21:b2:5c:fb:
df:2d:79:c3:1c:8f:c7:7b:24:56:92:d0:40:11:b8:
bd:b9:11:15:f4:65:be:6a:63:50:ad:17:f6:86:99:
af:32:69:b1:6b:38:70:c8:8d:43:9a:ec:dc:3e:aa:
54:81:85:0f:13:70:c5:a6:40:fd:f3:35:24:7a:15:
34:10:31:e2:77:00:cc:31:21:ab:e1:56:d0:03:18:
68:a0:a0:61:5e:4c:37:1d:9b:34:38:88:73:70:4f:
e1:58:0c:53:47:9d:30:bb:33:68:f8:f2:54:bc:f9:
8c:08:eb:58:81:69:69:2f:74:8d:bd:ae:36:d4:f2:
e5:7a:2a:27:13:dd:7a:9a:75:27:53:63:99:3c:59:
42:8a:5b:62:db:1f:b5:c3:54:1a:8d:2a:32:4a:08:
ed:65:72:db:d9:d6:4d:e6:28:7b:0b:19:bb:55:4f:
0c:bd:7c:b0:74:d6:a6:5b:f8:70:17:f6:f8:14:c9:
8d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2B:C3:BD:94:C2:A0:4B:59:AE:B0:58:44:48:4F:C9:69:FB:44:B0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1fe::/48
Signature Algorithm: sha256WithRSAEncryption
a3:6a:0a:3a:e2:9d:05:ab:7d:24:a3:91:66:f4:92:1d:26:d0:
d5:36:9d:fd:bd:3d:74:44:9c:c3:58:b2:96:76:61:1d:e6:f4:
1f:aa:6d:14:22:52:3f:4e:aa:b3:e8:97:0c:21:46:a9:44:db:
5e:a0:ad:d1:fd:49:89:a1:e4:59:60:58:1b:78:f0:98:7e:39:
eb:88:38:12:cb:a0:17:a4:7b:7c:59:ba:01:bf:5e:8c:9f:b3:
ad:79:f3:ab:7b:a3:0e:62:d8:95:79:16:58:51:02:22:b8:ae:
72:85:5d:91:73:36:40:3e:0c:54:2a:bc:37:7c:cd:4c:a7:53:
53:da:f1:84:fa:40:83:82:b3:6e:61:e0:4d:ea:05:70:2f:1c:
03:ec:77:f9:38:7b:e8:52:5f:ac:ac:1e:b2:7a:b5:90:49:ac:
69:fb:6a:39:ba:a5:f3:c9:d7:47:8e:96:cd:68:6c:55:5f:af:
1a:0f:a2:60:11:41:db:de:10:9c:11:8c:97:89:3d:51:1f:a6:
af:a0:1e:16:7f:af:9b:97:45:f4:94:44:b3:90:27:2f:a8:b9:
fe:c1:8c:a3:f5:fb:09:d8:a5:58:32:15:02:89:f1:fb:b3:33:
f8:37:6d:70:6c:10:e3:1b:cc:7f:33:2e:10:21:ce:17:29:5c:
4b:be:36:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org