Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: St0vKYVddub24EuWTO57q0cqtQYcpKJctaQgTJJ7KfU=
Subject key identifier: 87:5C:2C:9A:CA:06:15:71:18:6E:25:1E:0B:06:7A:BE:00:3F:F2:0C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 665105208C677EE36C30716A2BDF32B1AEF23CE6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:373::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:51:05:20:8c:67:7e:e3:6c:30:71:6a:2b:df:32:b1:ae:f2:3c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=875C2C9ACA061571186E251E0B067ABE003FF20C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:19:8f:24:93:60:54:82:35:8b:49:72:42:27:
83:9a:47:23:d1:08:2f:0c:2d:38:d3:47:16:07:c3:
e5:ce:e9:54:79:1b:88:3e:fd:ce:64:ea:1f:bd:9e:
89:8f:1a:3e:4f:b2:60:e3:74:ea:e4:26:c3:fa:26:
b1:21:8b:f8:b3:f3:1f:89:f6:da:35:dd:40:31:a6:
11:d2:6b:f9:2c:b3:c7:a6:d7:0b:e4:c4:47:43:e4:
ac:20:f9:d1:65:05:db:e5:31:09:4d:30:ea:30:9a:
21:dd:4b:e3:ef:fb:d8:d3:f9:5a:0d:58:f8:4c:57:
fc:d7:98:81:b8:fc:09:78:42:cb:ff:4c:3f:a0:ce:
a8:40:2c:35:79:48:cf:be:ac:61:27:e8:49:6a:d2:
e6:45:44:2b:e3:06:8b:b9:70:a2:6a:79:5d:1c:98:
6a:a4:6b:f6:dd:c0:a1:db:cc:be:5d:be:5d:21:9e:
e8:c2:e9:66:9d:c1:52:c8:39:9e:b0:88:f9:24:10:
ef:ac:b6:d5:ec:a8:6b:17:be:98:46:a2:83:03:ea:
fa:2f:98:03:14:97:fa:07:1e:96:92:fe:31:c5:7b:
97:e4:5a:67:d7:bc:f8:4f:cc:11:e7:87:b3:a7:86:
b3:f2:6e:f8:e3:99:ae:80:41:66:84:e3:21:d4:1f:
02:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5C:2C:9A:CA:06:15:71:18:6E:25:1E:0B:06:7A:BE:00:3F:F2:0C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:373::/48
Signature Algorithm: sha256WithRSAEncryption
7d:2b:74:74:54:63:fd:d8:50:19:51:b8:93:48:ac:fe:9c:d3:
e9:0d:74:bf:d6:82:09:81:0c:69:2e:39:94:15:83:db:ea:04:
5c:03:17:f3:05:35:ae:54:0c:24:b2:2d:81:d2:95:4e:da:a3:
a6:a3:11:59:6a:1a:b7:dd:f1:86:eb:ad:ca:45:8e:a9:2b:15:
40:dc:02:15:45:48:11:e4:e6:b0:b7:dd:a3:1a:4b:93:72:db:
71:bd:7f:bf:df:50:fa:2d:0f:1b:38:e5:66:f6:d3:3d:a8:3f:
3d:74:78:2a:98:30:37:1a:e6:a6:a3:7a:42:df:93:5d:f2:78:
29:41:45:09:39:49:bb:1c:f5:b3:49:d5:f0:01:51:be:9b:90:
21:61:d6:f6:21:8b:8e:20:d1:27:29:93:53:d3:8e:98:3a:d8:
15:11:83:7a:8b:a5:fa:0e:0b:2d:d5:46:d7:9c:fd:b0:1d:0a:
14:97:d2:ff:0a:cb:44:8a:ee:0e:25:d3:f3:cf:6a:4b:86:18:
f9:f2:a6:62:66:8c:75:d6:e0:41:bb:19:5d:72:b6:34:ec:37:
c8:22:cf:e5:b2:69:92:d2:ea:47:fc:29:56:04:bf:21:31:40:
a2:f7:2b:6f:cd:6a:a6:8c:e8:db:5b:5d:95:35:99:45:55:00:
19:a3:ef:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org