Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FGJ+N0GK2vjEUHnEURAsEWIExv45nKgwn3rFgZhb/2o=
Subject key identifier: 76:1D:26:5D:59:69:26:FE:95:48:4F:E3:B1:5D:73:F0:A1:01:1B:29
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 77CAF2F045B3B49F76932188BC155ADE2CAB42EF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:43 +0000
ROA not before: Mon 26 Sep 2022 10:55:43 +0000
ROA not after: Mon 25 Sep 2023 11:00:43 +0000
asID: 59282
IP address blocks: 2400:d680:372::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:ca:f2:f0:45:b3:b4:9f:76:93:21:88:bc:15:5a:de:2c:ab:42:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:43 2022 GMT
Not After : Sep 25 11:00:43 2023 GMT
Subject: CN=761D265D596926FE95484FE3B15D73F0A1011B29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ae:b7:8a:11:73:97:57:ac:d4:9f:0a:28:d5:
0f:c5:ac:b1:83:5b:be:8a:ee:a7:c0:eb:f0:46:4d:
9f:42:47:a2:cd:b2:0d:90:e2:34:91:6d:e2:b0:ea:
17:cc:3b:43:de:24:ee:87:fd:99:dd:c4:a8:5b:6b:
dc:3e:89:4f:ce:98:b2:2f:98:2e:cf:fe:95:96:4e:
4c:33:90:bd:fc:e2:e5:f6:d0:9a:23:31:40:76:80:
b3:07:77:0e:23:9f:4c:29:0d:ae:4c:69:13:c0:2a:
e2:80:68:d6:a0:86:ab:86:66:95:c3:5b:d2:10:43:
bd:63:bb:3a:f3:1e:41:6e:a6:10:4b:02:8c:ea:65:
13:1a:9e:74:8a:96:42:10:77:70:1d:a7:f7:9c:27:
3f:21:ce:42:19:24:ce:a7:c3:6f:14:d5:b1:b1:46:
40:1c:b2:a8:c8:77:8e:e3:be:cb:4c:4a:f9:ad:22:
35:f1:52:dc:e6:09:d7:a4:84:8d:c4:ed:99:28:b9:
99:ab:67:59:18:9d:28:f1:2a:f8:32:b9:a1:85:4c:
af:bf:20:f8:5e:02:13:fe:3d:e1:10:ac:f4:82:e0:
a3:49:f0:24:30:3f:cb:40:91:78:38:4c:28:78:1b:
33:6b:34:a2:77:4b:a9:03:51:d7:90:c6:66:50:3c:
b0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1D:26:5D:59:69:26:FE:95:48:4F:E3:B1:5D:73:F0:A1:01:1B:29
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:372::/48
Signature Algorithm: sha256WithRSAEncryption
4b:2e:d1:1a:5a:9f:1d:e3:83:49:cc:22:18:f4:a8:7e:d1:77:
28:6e:74:ac:de:2d:40:b0:55:d9:5a:a5:c0:e8:ca:58:df:84:
77:a1:1c:c5:c5:94:02:ff:20:9c:b7:18:38:d8:32:34:50:f8:
c7:42:f7:bc:5d:17:fd:0a:48:76:e6:13:9e:bf:17:3b:a8:df:
93:08:6d:7f:35:dc:12:0f:56:57:a1:84:1f:f4:00:e5:33:10:
46:e5:c1:98:0f:66:a8:17:ba:b0:23:66:cf:82:b5:7f:93:fe:
53:23:17:38:2b:a3:7c:89:7f:91:39:13:a3:d2:3a:b3:72:4f:
c6:6b:70:38:7a:df:5f:92:57:88:6c:68:48:7e:b3:e8:da:b9:
8d:88:c8:3a:dd:d4:7e:e2:82:24:5b:8f:5c:cc:df:5e:5d:cc:
98:a5:5c:79:b7:39:b5:60:62:d7:a2:d2:ab:7f:e5:85:45:75:
84:34:05:6d:fe:07:15:4c:69:ba:43:48:c1:97:41:c9:92:be:
0f:31:94:e8:37:62:1b:a7:87:e9:e8:21:4d:a0:29:0a:e8:3e:
bb:76:42:37:7e:53:da:89:28:14:a7:0d:b7:6e:45:d3:78:40:
88:9b:92:03:f8:65:56:e4:a4:b0:d9:9d:07:8e:9e:7a:3a:7f:
a3:89:5e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org