Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: b29RMSsmMlowrJ68qPIHGjPLgm1MF1zMzdLvCQr6+J0=
Subject key identifier: 77:4F:29:FF:AD:26:76:59:B5:AB:C7:62:40:56:74:E1:B3:D4:DE:2A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 62F8ECF192845A4CE7856D05A62AF3B9E0E74B60
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:46 +0000
ROA not before: Mon 26 Sep 2022 10:55:46 +0000
ROA not after: Mon 25 Sep 2023 11:00:46 +0000
asID: 59282
IP address blocks: 2400:d680:38d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:f8:ec:f1:92:84:5a:4c:e7:85:6d:05:a6:2a:f3:b9:e0:e7:4b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:46 2022 GMT
Not After : Sep 25 11:00:46 2023 GMT
Subject: CN=774F29FFAD267659B5ABC762405674E1B3D4DE2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:08:f5:6f:f6:5c:c0:70:a3:f5:a9:2f:74:64:
df:c5:ba:87:24:cc:85:26:eb:7a:35:a6:5d:91:e9:
0a:83:ad:f3:3d:77:8e:b0:35:08:76:7f:bc:6b:65:
df:1a:3e:ad:c9:e1:69:06:a6:ac:49:4d:b0:f1:70:
83:68:46:e0:52:4b:34:ef:ed:41:5d:a2:fe:95:4e:
b1:b0:12:bd:22:9b:31:26:77:c7:1f:b7:7a:19:40:
50:b3:7e:be:f9:96:c9:b6:9a:e5:c9:a2:e0:4c:7c:
09:91:0c:d0:dc:16:8c:6a:91:40:ae:9b:da:ac:29:
52:5d:fa:7a:5c:5e:e3:3c:48:89:5f:23:b2:27:ef:
31:d3:9a:7c:6e:dd:4d:44:f5:5e:be:22:d1:33:14:
e9:f1:5c:0b:5e:9c:f2:b6:30:74:92:e1:07:b8:61:
71:93:d9:90:63:2b:c2:a7:20:98:91:f7:a8:1c:92:
02:af:7f:e6:9a:af:8f:56:10:cc:c2:a4:ed:c0:8d:
0f:cf:82:01:a4:71:ea:cb:2b:a7:f4:18:bf:a2:ea:
3c:8c:d9:e9:9e:40:51:3f:64:3d:35:cf:6d:4e:2c:
cd:d0:ab:99:43:3a:ad:7b:93:55:7e:34:b2:87:0d:
bd:2f:d9:3b:90:d1:03:7b:a4:6e:a8:1f:ef:37:d7:
3a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4F:29:FF:AD:26:76:59:B5:AB:C7:62:40:56:74:E1:B3:D4:DE:2A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:38d::/48
Signature Algorithm: sha256WithRSAEncryption
25:24:13:f0:c9:5d:e2:26:18:ee:bf:18:af:6d:73:0f:bd:a5:
73:a1:0e:24:22:bf:18:4d:8a:ba:d6:7f:1d:e9:f9:d0:11:78:
d9:9d:a0:69:4b:ab:fb:5d:9c:65:3c:4e:ea:e7:6e:fd:72:30:
02:3e:03:7b:73:e3:8c:aa:6e:8d:51:b0:01:46:0c:92:7c:5d:
45:34:c9:58:f6:8f:b1:3d:d9:72:88:0f:4c:7b:5b:6f:8e:cf:
08:68:ca:31:c8:76:39:2e:02:54:26:ef:4a:63:4e:d1:ce:1a:
1a:d4:2c:91:51:ad:f0:0e:f5:c1:5f:e2:34:4f:22:1b:0f:40:
46:5c:71:98:40:a3:70:08:b8:ca:68:b5:5e:26:59:a1:36:2b:
a1:eb:d8:8e:be:ff:32:80:b7:7f:bc:f5:5d:29:1a:0a:db:24:
1d:ba:24:0c:a8:0a:a8:b8:ab:df:d2:7d:16:ba:91:c9:5c:ac:
95:1a:b9:7c:59:c1:30:b0:ae:27:d5:8e:58:fc:c7:a7:97:f2:
f6:f6:ae:f8:fa:39:65:42:69:0f:8f:2f:29:1d:3b:c5:32:12:
37:e4:90:39:ba:54:6f:1d:10:cc:c1:0d:16:bb:67:51:54:37:
8c:90:0b:13:0d:70:46:ae:c4:32:27:c5:6b:8a:2b:a9:35:be:
2b:e5:0e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org