Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: vES70v3X9z7V0U0MekBaQWKJ3UYKthRoIgN7+z7M+9I=
Subject key identifier: C9:DC:78:05:B9:FC:25:6E:66:2A:D0:32:01:11:4D:59:7E:B8:FC:62
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 72EBBDA8067A96F8888D88ECBE9C686FE66FDC5C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:24 +0000
ROA not before: Mon 26 Sep 2022 10:55:24 +0000
ROA not after: Mon 25 Sep 2023 11:00:24 +0000
asID: 59282
IP address blocks: 2400:d680:3f1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:eb:bd:a8:06:7a:96:f8:88:8d:88:ec:be:9c:68:6f:e6:6f:dc:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:24 2022 GMT
Not After : Sep 25 11:00:24 2023 GMT
Subject: CN=C9DC7805B9FC256E662AD03201114D597EB8FC62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3c:f6:58:9c:04:aa:d0:62:a6:15:57:2a:91:
ac:ed:29:58:7e:96:92:c4:5e:29:bb:af:8e:ec:0b:
4c:4b:c6:52:fe:58:3b:03:c3:0d:7f:cc:15:f5:0b:
a6:dc:b5:e4:de:20:bc:2a:85:75:c8:dd:23:52:c6:
17:73:eb:90:20:4c:1f:b9:4e:97:c2:a3:bf:8e:3a:
d7:69:3a:ef:f3:d0:32:92:49:5f:0b:f4:3e:92:96:
aa:3b:65:b0:27:2d:bb:88:8c:b4:99:bf:fd:46:5f:
b9:94:16:f0:c9:2a:de:ad:c7:45:93:e9:65:ed:5d:
90:c4:5d:2c:4f:b3:11:87:e3:91:27:21:ee:b9:b1:
7c:55:aa:c4:00:f6:e0:4d:92:9c:a2:e8:58:8c:06:
10:34:e0:59:66:d0:50:e7:33:13:98:8f:0e:f5:49:
e0:f6:7a:2b:50:9b:9a:08:57:33:66:55:69:97:10:
07:a9:cf:a9:62:85:84:36:aa:a1:a5:85:ec:a2:3c:
35:ef:ac:13:ef:de:cf:da:64:1d:1b:ef:f1:44:4e:
a1:cc:99:0d:4d:22:28:45:cf:e6:03:42:85:8f:ba:
e0:92:bf:6b:c1:47:d9:58:e3:0f:b6:a4:85:62:ea:
93:97:3a:f4:7a:63:8e:14:69:33:b0:a7:0c:ba:68:
5c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DC:78:05:B9:FC:25:6E:66:2A:D0:32:01:11:4D:59:7E:B8:FC:62
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f1::/48
Signature Algorithm: sha256WithRSAEncryption
88:fd:1c:2a:82:f8:2d:75:d0:76:b8:d0:c8:03:22:a5:fd:f4:
a2:7e:63:97:86:47:1c:53:c9:8c:a8:80:13:70:6c:53:c7:e7:
8e:f8:e4:74:b3:68:75:46:12:a8:4f:ef:29:14:23:b4:82:8a:
62:40:2c:46:73:94:db:4d:26:db:f9:b7:78:13:0c:d4:b3:ba:
82:27:9e:78:47:8f:5a:b5:68:c2:b1:eb:95:51:41:ea:19:e6:
a2:fe:2f:80:a0:40:50:e3:49:7e:1c:6f:01:d4:34:93:e2:e9:
c0:22:72:12:3f:d0:6e:76:09:96:d4:b9:69:4b:b5:8a:55:09:
93:d2:7a:ba:b8:df:b8:6d:1d:9f:be:6a:f0:d8:67:bd:6f:1c:
94:1a:5c:16:16:9b:3b:a3:9b:cf:ad:31:86:bb:da:38:da:76:
a7:ae:cd:17:49:d9:41:a4:64:61:15:60:e4:da:75:17:d9:34:
72:f7:6d:46:be:04:91:ad:30:7d:74:4c:82:40:f5:eb:fa:b6:
c3:4e:16:b1:a8:c9:ac:2f:03:25:e5:c6:3c:51:c5:11:8b:b0:
20:b1:bb:df:ee:b6:f9:29:59:31:26:24:b5:cc:51:3f:fe:a8:
86:f2:8a:50:ac:38:34:f0:d3:69:24:8f:c0:15:8f:e6:17:36:
4f:3b:ca:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org