Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: CXB++tlk/LD7dm0SgbejvhfaKd/JM4En4doag1XXGc8=
Subject key identifier: 7A:90:F3:D6:7B:B8:03:A3:76:47:AB:A5:B8:6B:C9:37:72:28:71:CF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7700D942D6A092697CD4EA9843762DECC585D5EA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:38 +0000
ROA not before: Mon 26 Sep 2022 10:55:38 +0000
ROA not after: Mon 25 Sep 2023 11:00:38 +0000
asID: 59282
IP address blocks: 2400:d680:3e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:00:d9:42:d6:a0:92:69:7c:d4:ea:98:43:76:2d:ec:c5:85:d5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:38 2022 GMT
Not After : Sep 25 11:00:38 2023 GMT
Subject: CN=7A90F3D67BB803A37647ABA5B86BC937722871CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:40:ef:97:19:45:c5:d8:bc:67:ce:7e:24:99:
04:be:44:88:be:70:dd:5a:99:24:c8:db:f1:b0:3c:
dc:4a:cd:01:da:cf:3b:3e:f6:94:82:f8:56:0d:e8:
10:54:6a:c7:a0:ac:ce:c1:69:38:53:86:3a:c3:9f:
c7:1e:f5:0f:6b:f4:90:30:5c:40:68:ed:06:2a:05:
43:31:c5:08:48:b3:d8:87:62:b4:5d:0a:7f:9a:30:
ea:77:f4:6e:82:a1:b5:42:93:9c:b5:75:a6:7f:4e:
06:a7:ad:8f:9d:09:d3:df:34:45:89:e6:94:36:bd:
54:5a:e7:d5:cf:ea:c4:dc:d9:7e:8c:30:8b:d9:2e:
f9:d2:d5:28:a8:4e:d5:d8:71:df:94:9b:10:84:54:
82:69:29:2a:7c:7d:d9:8b:0c:e5:bb:66:d2:5f:c3:
57:0c:9c:44:04:df:5f:b1:17:1b:20:42:8b:42:c1:
8e:d8:23:03:3f:4d:dd:86:d0:65:08:54:8e:80:4c:
d8:8c:15:d0:76:27:2a:b6:9a:5d:30:3e:17:5a:53:
1b:63:78:57:e9:0d:ef:50:e1:a2:61:63:e2:88:6d:
2e:86:31:ec:ea:b1:88:93:fd:0b:a5:3d:c5:14:36:
f5:92:19:77:b4:63:ca:d3:b8:b2:e0:7b:9c:e1:fc:
6e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:90:F3:D6:7B:B8:03:A3:76:47:AB:A5:B8:6B:C9:37:72:28:71:CF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e4::/48
Signature Algorithm: sha256WithRSAEncryption
0d:e5:0e:85:21:97:46:34:91:03:47:c2:5f:c1:7d:f1:b2:f6:
0b:91:b3:8a:88:61:e2:be:0f:36:1b:db:40:eb:3f:3c:9b:ab:
f6:34:10:1d:7a:c0:af:6a:5e:d2:78:d4:4b:35:63:29:bb:a2:
24:c7:27:98:ae:2f:2d:4d:51:d2:c7:40:29:06:49:b8:34:1b:
ff:d4:98:88:33:cd:65:01:5f:0c:c9:25:16:d2:1d:cf:a1:9f:
b9:56:2e:23:5c:9d:9c:8f:41:ea:43:f7:f4:ec:49:2f:6f:fa:
eb:c9:e4:1d:5c:11:2c:7a:f6:c2:06:ae:e1:10:35:37:19:18:
24:5a:08:4a:0d:91:a7:f6:1e:ef:3f:8f:3a:99:b4:2a:43:96:
a0:9b:82:2b:ad:2b:99:db:15:6b:a0:74:f3:0b:45:2a:2d:f3:
5e:34:83:f0:1e:d6:1f:99:2c:42:ea:37:19:c4:d6:0d:c5:8f:
b2:1e:85:81:a9:bb:79:fc:de:0b:bf:9d:17:9f:58:97:fb:a6:
21:b5:78:eb:a8:b6:62:7c:55:dd:14:a6:15:18:19:f6:59:17:
56:1b:0b:ac:05:f3:ae:95:93:f4:d5:61:59:21:7b:5f:ea:6f:
e2:52:7c:c9:83:93:ff:83:01:92:90:c4:a7:1f:39:aa:ff:e2:
99:92:e0:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org