Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Iu1icwOaVjycCkhhF8GwgeMK+d/IaFF7d4xl3Qw/UpE=
Subject key identifier: 02:37:E7:47:FB:6E:13:E4:84:DA:9D:84:73:4B:F0:B5:05:28:64:AF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7128536D79A96078538B0507E0A0290847726BF1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:28 +0000
ROA not before: Mon 26 Sep 2022 10:55:28 +0000
ROA not after: Mon 25 Sep 2023 11:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:3b6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:28:53:6d:79:a9:60:78:53:8b:05:07:e0:a0:29:08:47:72:6b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:28 2022 GMT
Not After : Sep 25 11:00:28 2023 GMT
Subject: CN=0237E747FB6E13E484DA9D84734BF0B5052864AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4b:25:be:ab:28:63:42:fb:d3:ec:34:43:91:
9f:14:5d:8b:bd:e8:37:5b:0c:82:40:64:51:3d:b4:
62:9a:e2:80:aa:de:a0:5c:a1:50:ab:f5:30:6d:29:
9d:da:46:6f:05:97:9f:a4:8f:6b:8a:16:6d:3b:0a:
35:34:e4:bc:b9:3a:a9:a1:d6:93:51:b3:dd:4c:e6:
94:7a:d2:23:70:d5:bd:d3:35:86:2c:e8:b3:d5:5c:
3f:f0:b8:a2:fc:de:b2:88:69:37:72:63:e0:c0:3a:
5a:ae:5c:ce:0f:61:15:14:f5:5c:74:c2:2f:a6:1c:
9a:f6:ba:b2:db:f9:59:33:92:0d:bb:30:e9:56:42:
c6:0d:8e:d9:93:53:51:1c:25:f3:d4:79:a2:d6:d3:
aa:db:c5:70:f1:66:69:62:8b:82:7e:dd:40:69:71:
68:10:23:6d:49:bd:07:38:d1:3a:5a:7f:b5:3a:3c:
e8:7a:6a:d9:78:e4:84:0c:1c:c0:f3:bc:b8:a7:74:
49:53:d9:11:0f:bb:70:47:e0:45:91:c5:46:33:20:
4b:9f:1f:08:a3:92:6c:c4:b0:a5:78:fb:a7:93:43:
47:9a:a8:15:de:b8:dd:86:77:b3:2c:7e:b6:b6:11:
95:1c:bc:4b:cf:be:a7:2b:c8:56:ec:99:57:d1:92:
26:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:37:E7:47:FB:6E:13:E4:84:DA:9D:84:73:4B:F0:B5:05:28:64:AF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b6::/48
Signature Algorithm: sha256WithRSAEncryption
60:3a:a1:c9:aa:c1:cf:95:85:1c:d9:a3:8c:ca:28:b0:39:d7:
80:94:40:34:16:b8:7b:16:dd:d0:96:32:7a:16:e0:f4:49:ab:
c8:a7:44:94:ad:5c:ad:fd:91:3c:23:97:db:98:ee:05:8a:c5:
22:18:3f:bb:6e:0e:d4:83:07:02:09:e1:dc:d7:6e:25:7a:5f:
f7:b9:95:3b:61:3d:cf:ab:c0:5b:f8:cd:54:1d:72:04:d2:fa:
2d:b5:b2:d8:a8:0c:c5:e5:f5:c0:53:0d:0e:e6:cf:94:3a:8a:
fa:7e:da:b2:e9:44:de:cf:7e:db:df:6c:0e:20:1f:95:a3:b4:
de:a0:38:63:c2:04:ca:48:f8:2f:1f:6e:8e:82:5b:f9:0e:f7:
b4:9f:c2:09:14:63:73:62:0f:ed:9b:66:ca:5f:1b:54:4c:34:
0e:61:5a:b7:2f:c4:00:e3:35:3c:fa:a6:17:32:75:30:81:0a:
7b:e8:02:f0:be:6e:8c:b6:50:57:f0:d5:be:43:df:d8:4e:07:
82:2b:59:cf:a3:fb:64:3b:73:6b:24:49:cf:fa:22:b2:81:78:
26:ee:92:08:f7:8c:ad:07:f0:5e:47:1d:49:97:a0:c5:87:23:
61:15:7f:c5:dd:24:68:df:fd:45:14:1f:80:c7:b1:6d:cf:8a:
9a:fa:55:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org