Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UQRq27iBbu+MjUxIAc1YLe+dCcXu5LHFvNMl5IRxSDY=
Subject key identifier: 0C:19:93:6C:2B:16:86:13:5C:09:75:51:2F:4E:94:CC:E9:06:46:95
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 78A45632B0C5D66A3D760A7231EC5ABE175E7BCB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:08 +0000
ROA not before: Mon 26 Sep 2022 12:55:08 +0000
ROA not after: Mon 25 Sep 2023 13:00:08 +0000
asID: 59282
IP address blocks: 2400:d680:27d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:a4:56:32:b0:c5:d6:6a:3d:76:0a:72:31:ec:5a:be:17:5e:7b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:08 2022 GMT
Not After : Sep 25 13:00:08 2023 GMT
Subject: CN=0C19936C2B1686135C0975512F4E94CCE9064695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:24:63:c4:52:95:d6:aa:5c:ad:5e:f5:d7:63:
e3:70:5f:e3:80:34:f6:9f:06:46:26:ac:f6:96:10:
14:db:c4:8b:d9:a7:9b:2e:df:38:99:a8:39:6d:24:
41:87:ed:3e:a1:50:32:4d:e6:41:33:b6:fd:0b:4f:
72:59:e0:b5:4d:33:ef:7d:fb:a6:25:9e:51:12:d1:
e1:0d:c5:08:e8:fe:16:ea:c1:e9:cc:aa:e5:18:21:
a6:57:06:f8:92:46:77:24:d5:10:e1:d5:ed:93:3c:
7a:9e:e2:19:ff:9c:f1:69:18:73:e1:2b:04:c6:25:
f7:cc:58:68:e3:08:2a:36:ad:4e:48:8a:fd:1b:6b:
c4:b9:5f:11:d4:d9:80:bb:20:f0:a9:40:c8:a7:ef:
67:3d:05:0f:d4:bc:c0:84:dc:98:cd:8c:0a:2e:c4:
9a:df:f6:7b:ba:d9:76:72:6d:76:00:b5:63:e1:79:
94:33:0a:0f:ed:9e:69:d0:2d:68:6b:e5:47:a6:42:
b6:e4:fa:25:04:52:ab:d4:db:06:51:01:39:70:d4:
71:8e:dd:e9:f4:39:e2:d2:51:46:cf:b7:b6:a4:55:
61:22:9b:4a:e6:00:65:69:f8:0e:a6:c2:75:89:c7:
86:0c:e4:99:c5:7b:f9:57:51:c6:a8:12:71:ed:ec:
e5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:19:93:6C:2B:16:86:13:5C:09:75:51:2F:4E:94:CC:E9:06:46:95
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:27d::/48
Signature Algorithm: sha256WithRSAEncryption
7c:8d:ce:ff:6e:ab:2e:ee:f3:f4:34:69:23:03:6f:22:77:c4:
70:c0:fa:d6:ce:b1:53:0c:fd:b7:63:d5:fc:a8:5c:33:1d:f6:
2c:7e:4b:c5:26:6e:77:ac:17:9b:3c:04:82:8d:66:45:c6:62:
42:5b:35:d2:dd:3c:6f:ad:c2:22:24:b8:6c:9a:4f:52:d5:e1:
03:dd:a5:b6:79:0a:51:b0:f0:ff:c1:7c:48:87:fb:d6:29:40:
2a:cd:fa:ec:8c:1a:95:4c:2f:e8:ee:0d:9f:11:ea:8d:d3:c2:
3d:a9:28:c4:4f:86:2f:8d:a1:e3:44:5a:91:46:cb:aa:56:94:
45:b9:4a:27:5c:f3:e9:15:7f:77:af:f1:44:29:32:b6:e6:e2:
7f:cb:44:99:e2:cd:9e:27:26:ed:64:80:4a:46:72:de:1d:dd:
fb:44:88:07:68:b7:9b:f7:b9:3c:fb:96:72:73:e6:3e:5f:14:
de:c5:6f:af:4c:79:ee:c8:80:af:f3:a8:ad:a7:2e:11:21:03:
1e:6c:6d:b5:f4:e5:e9:0e:67:b0:8b:f2:cb:96:26:39:d6:da:
41:b5:a7:b6:ac:b2:ca:c1:3e:b4:2e:6e:dd:cd:10:44:69:a9:
0d:e0:87:d2:52:03:75:ce:87:19:15:0f:e6:ed:52:f9:c9:60:
9d:b5:73:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org