Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: w94bHEe6TV0TTWO1OH9fiGB9VIBlj6OTJUH9OGnUKPg=
Subject key identifier: 31:57:46:B1:EE:7B:B7:06:D9:BA:D1:52:67:8D:98:41:7A:AA:BA:CB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 378FA279088AB42DF7DE6CECF3446D7D06560660
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:19 +0000
ROA not before: Mon 26 Sep 2022 12:55:19 +0000
ROA not after: Mon 25 Sep 2023 13:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:28b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:8f:a2:79:08:8a:b4:2d:f7:de:6c:ec:f3:44:6d:7d:06:56:06:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:19 2022 GMT
Not After : Sep 25 13:00:19 2023 GMT
Subject: CN=315746B1EE7BB706D9BAD152678D98417AAABACB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:53:9b:68:29:2d:f4:2b:7e:b2:4e:ce:17:cf:
1f:c4:20:bc:a7:0a:ec:34:7c:bf:b5:26:bc:92:a4:
93:fa:3b:c6:d3:8b:cb:ab:c4:b4:55:32:4a:e8:3c:
41:e9:10:51:31:50:2a:0a:29:c3:0a:9c:39:67:46:
e5:9b:75:ef:0b:fe:bb:23:19:8a:d5:74:8c:2e:1d:
93:4d:28:85:04:fa:03:64:93:22:5a:10:df:69:44:
29:0d:0a:1e:e9:81:0f:88:b0:d5:bc:de:98:d8:6a:
8a:2f:8c:cf:8c:d8:bc:c7:d7:06:35:c2:25:0b:d8:
3c:5d:dd:08:6f:83:0f:e7:b1:ba:b6:25:c8:37:07:
12:17:d0:31:0c:07:4b:32:31:e5:e9:dc:ad:82:07:
50:af:59:9f:ec:c5:3e:f7:e0:7b:46:2b:44:da:76:
79:63:a8:c5:e4:0b:59:fe:29:55:03:05:e1:09:0b:
be:b5:0d:cd:cd:39:81:74:2a:95:d5:b3:14:66:88:
b3:d7:e4:c8:ab:38:08:6e:ba:97:0a:ce:d7:53:d7:
9a:32:6f:60:10:41:f4:cf:c7:a7:69:bf:32:7c:84:
8b:96:26:b1:63:dd:cf:f2:2f:54:05:3f:f3:ce:4f:
ad:78:25:ea:69:9d:e0:13:ae:83:4d:a1:e2:4e:71:
b8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:57:46:B1:EE:7B:B7:06:D9:BA:D1:52:67:8D:98:41:7A:AA:BA:CB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28b::/48
Signature Algorithm: sha256WithRSAEncryption
93:02:64:42:20:d2:38:86:da:5b:1b:29:b8:9a:98:f2:28:7b:
89:ba:a6:66:b5:c3:43:d2:27:46:d3:f7:c8:bb:72:5d:81:f3:
58:68:24:67:b1:c6:64:45:56:ab:25:4a:8a:da:94:8a:94:76:
0c:1a:e5:4d:bf:6a:96:56:82:9a:e7:b6:21:f1:1f:be:24:9b:
85:1d:8d:5c:cd:58:2f:25:2f:a9:0b:2e:42:b5:74:83:e6:9e:
bf:9f:f6:cf:5b:c8:56:46:02:23:ea:90:1b:86:be:af:ac:ab:
f1:09:85:74:17:d2:5a:4b:1d:76:ff:e6:38:52:ed:00:9e:93:
9a:8a:68:c2:1b:71:bb:f0:6d:b9:a1:fa:95:d8:2c:4d:a3:dd:
ec:5f:b3:4f:a7:1f:6e:1c:6b:cb:99:82:f4:83:df:c0:fc:a9:
fa:86:6e:c7:38:28:76:53:0a:76:f1:0e:81:22:a8:cd:ab:68:
f0:f3:89:82:ac:91:b4:33:3a:7f:34:55:93:63:b4:89:8e:31:
97:77:5a:32:ee:33:a7:54:cd:1e:79:aa:6d:cf:80:3e:15:2b:
54:37:ad:0e:a7:d8:64:b0:46:d6:a4:64:e5:17:29:e6:89:9d:
e9:e2:eb:24:a9:6b:53:e1:e0:c7:9c:e1:07:cf:06:82:0c:8a:
80:58:3f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org