Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: n+dTphToU1Dow7VUkVrkBHKSSCb38JPVD1tUSIT91YU=
Subject key identifier: 78:B2:B0:0E:F0:FF:FC:E6:BB:0C:66:9B:2F:61:17:32:91:05:1E:BB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 768D8352127873F436659BE2BBE18622EECA11B4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:41 +0000
ROA not before: Mon 26 Sep 2022 10:55:41 +0000
ROA not after: Mon 25 Sep 2023 11:00:41 +0000
asID: 59282
IP address blocks: 2400:d680:3b4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:8d:83:52:12:78:73:f4:36:65:9b:e2:bb:e1:86:22:ee:ca:11:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:41 2022 GMT
Not After : Sep 25 11:00:41 2023 GMT
Subject: CN=78B2B00EF0FFFCE6BB0C669B2F61173291051EBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d1:e4:43:52:02:1f:6d:29:da:f6:46:8b:1e:
70:ae:ca:ac:a9:ce:81:bc:17:15:d0:b9:61:3d:b7:
98:0c:23:a1:3e:3c:54:40:e9:5f:17:1e:8b:15:c0:
9f:1f:4d:88:9e:72:fa:3e:7d:86:f3:32:04:97:d4:
d3:ad:51:5d:ca:23:23:bd:6d:85:20:96:ce:ef:18:
e1:46:30:06:9e:ad:f9:92:de:45:7d:3c:91:57:bb:
38:c1:a1:74:59:ea:eb:9c:be:cb:a2:09:e4:10:4a:
6b:a4:2a:79:db:a5:52:d5:5a:49:b7:56:82:35:8f:
01:e6:25:8a:71:75:33:af:ba:b9:24:8d:48:db:bf:
a4:a6:51:8a:f0:f7:44:f1:1f:9f:1d:28:99:3e:ce:
d6:d7:2d:bc:39:c5:0d:b7:95:34:5d:95:78:ae:82:
d7:56:1f:32:d1:51:d0:24:04:5f:7a:db:3c:f0:4b:
64:e7:4f:32:ee:c1:a2:5b:db:47:2c:2c:e6:68:61:
88:71:63:55:96:7d:d3:0d:b4:d0:0b:a7:42:5d:7f:
8f:e6:d3:e1:f6:ad:7e:8c:e0:5f:5a:fa:3f:d0:e6:
3d:00:fa:a7:f7:b7:28:11:20:37:39:f0:71:94:9b:
da:c7:db:b4:89:03:1a:b6:3a:c9:64:84:90:b6:38:
97:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B2:B0:0E:F0:FF:FC:E6:BB:0C:66:9B:2F:61:17:32:91:05:1E:BB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b4::/48
Signature Algorithm: sha256WithRSAEncryption
02:f4:c3:2f:75:94:72:f7:de:47:5c:59:57:67:38:30:34:2d:
65:6e:d1:c5:04:db:c4:3d:db:02:67:04:7f:e4:46:61:e7:68:
ee:04:44:1e:70:4b:6f:80:59:7c:3b:dd:2b:4c:c9:af:62:c6:
42:4c:ac:7b:a1:44:70:c4:47:0f:f3:8c:1b:59:ce:00:d4:3a:
d5:04:4c:a7:78:43:17:64:d8:fb:48:f6:34:58:ef:11:17:8b:
fb:4f:32:60:fc:75:95:ec:d8:f5:23:87:2d:ee:bf:4d:70:1b:
33:4a:5f:92:e4:24:42:af:e8:2b:14:e9:d8:5a:69:72:bb:14:
ac:7f:20:b0:99:bb:22:67:fb:ba:0a:f1:70:73:30:e0:39:15:
c8:dd:7f:e1:1c:74:3c:95:cc:03:23:07:b9:7d:96:56:02:fe:
b5:48:aa:e7:80:3b:7c:9e:03:73:c9:e3:48:9f:67:ec:02:9a:
37:55:0a:40:8c:53:f3:fc:04:67:b3:a7:19:2d:5e:1c:14:c5:
55:8d:d2:e0:fb:32:7d:c9:9a:10:ce:aa:65:eb:f9:75:51:bc:
12:3c:5b:75:8f:93:92:a0:3a:cc:0e:33:f6:c8:25:48:0f:ca:
a4:8e:11:b0:6c:91:74:83:c3:a8:97:7a:c9:b6:36:8c:b0:c5:
ed:c6:22:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org