Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aGpY5Z4pClZLY0hLF7tgPbyTRcyzvN0Gc7hmjEXr61Y=
Subject key identifier: 7A:E0:84:D1:89:E5:B2:7B:14:D0:FB:6B:E4:31:D9:78:11:DE:A1:AE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 732D839DE2988CD23C418B343E4EF5D875316754
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:59 +0000
ROA not before: Mon 26 Sep 2022 07:56:59 +0000
ROA not after: Mon 25 Sep 2023 08:01:59 +0000
asID: 59282
IP address blocks: 2400:d680:3b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:2d:83:9d:e2:98:8c:d2:3c:41:8b:34:3e:4e:f5:d8:75:31:67:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:59 2022 GMT
Not After : Sep 25 08:01:59 2023 GMT
Subject: CN=7AE084D189E5B27B14D0FB6BE431D97811DEA1AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e5:75:6c:6d:7b:5e:e7:d7:68:7b:81:51:a3:
d4:0a:0a:d6:9c:3b:ca:e9:0e:a0:03:25:95:6d:9a:
88:5d:3e:b4:af:35:95:47:e0:26:88:a9:53:53:27:
84:ff:0b:4e:71:cd:c8:6c:43:e4:d5:58:d4:41:97:
ff:4f:1f:0f:c4:64:e5:27:19:0e:2a:07:9f:1b:7d:
de:eb:ce:31:0e:65:ba:42:9a:32:e5:77:e8:c5:b3:
9a:22:a8:29:a9:51:73:1a:c3:1b:3c:89:01:5e:f1:
7e:95:f1:48:b6:ad:3f:38:d4:7f:cc:20:cb:f9:5c:
45:3a:6a:e0:29:f6:af:48:35:61:c2:47:de:7c:e3:
92:c1:85:e9:60:e8:1f:5e:d9:02:a1:4e:0e:51:87:
9e:8f:44:f8:b2:5c:c4:39:a0:8f:66:eb:92:08:4c:
3e:bf:09:77:32:e0:6f:b0:9f:80:76:8b:e2:28:04:
1d:2c:1c:bb:cf:90:fc:59:4b:cf:bc:8d:46:e0:68:
5f:98:a3:a6:02:c9:79:c1:5f:53:c6:95:d6:d2:13:
f2:e6:c1:6d:be:9e:e1:10:53:99:4e:ef:7e:b7:ef:
c8:56:1c:a4:0f:cf:ea:15:e1:41:14:d7:2d:da:c8:
54:31:64:6f:d5:a2:d1:31:9f:be:49:fb:04:03:b3:
f9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E0:84:D1:89:E5:B2:7B:14:D0:FB:6B:E4:31:D9:78:11:DE:A1:AE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b::/48
Signature Algorithm: sha256WithRSAEncryption
30:16:a1:de:2f:f5:da:dc:99:20:fb:30:44:5f:ad:da:bb:67:
48:0e:92:81:ca:54:54:1c:7d:fd:f0:da:70:f3:a8:82:2f:11:
61:60:07:a7:a4:d9:82:2b:65:a0:27:3e:e6:25:d7:67:3f:c4:
a9:15:c4:38:d4:97:c6:bb:be:76:9b:78:95:0a:69:07:d9:45:
3a:59:c7:2e:ad:83:1b:c9:d9:48:07:ef:da:29:07:76:be:fb:
3f:58:41:97:7d:4c:b3:6f:82:00:1b:83:6b:65:86:98:38:e2:
15:fb:8c:a8:59:5a:5b:ed:b5:4c:ef:c0:0d:cf:8c:3a:b6:e5:
93:d7:90:62:4d:70:96:0c:84:d4:e3:f5:5c:2d:71:10:62:78:
85:6d:7e:4e:76:51:92:3f:68:79:ba:3f:f2:26:b2:c0:d3:64:
93:2d:93:83:8f:b6:67:5c:cb:9c:3a:a0:67:1a:b3:96:f4:2e:
ba:dd:dd:76:16:ee:4a:f8:b4:44:8f:cd:e9:5c:42:e7:71:68:
3d:fd:7a:ba:b5:d5:f3:75:84:08:1d:56:dc:93:c5:ec:99:7d:
11:ed:67:fb:9c:3a:be:35:99:0c:89:e7:67:00:5e:b6:a1:28:
3d:ad:ea:be:36:71:55:0f:ca:43:2c:c3:1d:c9:5b:55:4a:3e:
e8:3d:5e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org