Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: j7cHnv8oNMt8L7ZfUHvcGI07nz9aHhU94CmzHcYrmUc=
Subject key identifier: 52:09:62:48:06:A8:B0:B0:9D:A6:CD:80:36:BF:7A:64:70:4A:E8:44
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7E370666F37393037EE52C4701ECB20323A93ECD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:20 +0000
ROA not before: Mon 26 Sep 2022 12:55:20 +0000
ROA not after: Mon 25 Sep 2023 13:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:28f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:37:06:66:f3:73:93:03:7e:e5:2c:47:01:ec:b2:03:23:a9:3e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:20 2022 GMT
Not After : Sep 25 13:00:20 2023 GMT
Subject: CN=5209624806A8B0B09DA6CD8036BF7A64704AE844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:53:08:f3:3d:bf:b4:1d:13:69:ed:c5:ed:d4:
e4:e9:f4:53:0f:fa:eb:8d:0e:61:53:ee:35:ab:3b:
fa:db:75:5e:e3:ef:bf:1f:a5:83:7b:61:29:7f:5a:
d2:20:10:be:6f:d3:ef:04:b7:b3:71:f3:17:37:78:
ba:f8:43:d5:f9:21:24:62:11:10:c3:20:09:3f:7f:
54:21:ff:f8:61:8a:63:59:ed:36:0c:7d:5e:51:e6:
50:e1:57:43:a9:be:78:af:12:eb:65:0f:9f:cc:ec:
9d:81:f6:38:a5:29:93:1b:75:43:15:b2:ae:aa:3d:
f7:a9:9b:e7:49:3c:ff:11:2a:3b:96:4c:b5:d8:b8:
36:df:2b:fc:1b:6f:c7:2f:6a:7a:d3:49:9f:00:fc:
8b:e5:77:05:ba:00:ac:83:cc:1f:9d:03:85:f3:ab:
42:87:ec:ed:e5:c8:c8:0c:2e:00:d7:13:a3:3c:87:
09:78:51:31:9d:87:36:c3:05:ce:a4:71:ee:ac:87:
77:c3:aa:aa:67:a9:de:15:b7:a5:e2:25:0e:b4:13:
ce:b9:31:2f:6f:16:57:b1:fc:cf:de:d4:cd:42:f3:
7c:83:8f:e8:22:53:2f:59:a4:ed:6f:ce:87:84:63:
32:b0:e3:f9:65:9f:35:42:1c:f4:72:83:17:79:31:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:09:62:48:06:A8:B0:B0:9D:A6:CD:80:36:BF:7A:64:70:4A:E8:44
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28f::/48
Signature Algorithm: sha256WithRSAEncryption
5d:e5:cd:8e:44:60:75:9e:f6:b8:eb:ae:3e:8f:03:1b:f1:42:
87:9a:92:a0:20:5b:23:ff:86:57:0b:cf:cc:c6:e6:fe:a9:35:
e0:8d:90:ae:df:ac:d8:1d:7e:11:bf:48:31:e7:0f:75:8b:aa:
0d:34:30:fe:1f:c6:03:d4:79:97:6d:5d:35:e6:28:65:07:53:
02:a5:d9:c1:9d:fd:c2:a0:9f:cc:99:7d:13:c1:58:10:2b:4a:
6d:e6:1d:b5:91:da:db:14:f2:e6:29:c2:07:fd:2e:4b:42:6c:
cf:68:60:05:22:7f:25:ae:c6:b7:0a:76:03:10:18:94:f6:fc:
01:fc:ad:93:e7:3e:b9:95:35:43:c5:cf:c4:aa:05:45:82:85:
bb:dd:b8:7b:91:5b:35:a9:14:43:9d:90:90:c9:43:24:59:dc:
34:4e:81:08:75:62:32:b2:2c:46:a1:6a:e4:a3:9d:5e:97:34:
94:87:54:a5:05:44:3c:24:c5:98:9d:d3:3c:54:6f:ba:7e:2c:
44:77:11:f4:52:df:25:82:a6:fd:e3:62:66:91:2c:9f:ac:bc:
59:4e:e2:d6:80:7a:20:59:77:cb:51:07:7b:5c:8c:b1:0a:90:
fe:55:04:57:02:20:64:46:db:50:8c:1c:db:d4:82:e7:2e:46:
1a:a2:8e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org