Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FI1DzZIUMv52QArrrhg6e41jMLjnDnqHpNN/LfP43QE=
Subject key identifier: D7:EF:98:96:61:90:AC:68:B2:4E:A1:64:51:42:AF:F4:6D:58:90:68
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7999E8E38071470F972C06E8D224EE595AEC6FD3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:20 +0000
ROA not before: Mon 26 Sep 2022 07:56:20 +0000
ROA not after: Mon 25 Sep 2023 08:01:20 +0000
asID: 59282
IP address blocks: 2400:d680:72::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:99:e8:e3:80:71:47:0f:97:2c:06:e8:d2:24:ee:59:5a:ec:6f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:20 2022 GMT
Not After : Sep 25 08:01:20 2023 GMT
Subject: CN=D7EF98966190AC68B24EA1645142AFF46D589068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bf:31:eb:f8:c4:cd:97:16:f5:1d:78:2b:aa:
cc:e6:5b:cb:aa:a0:05:13:7b:50:2a:c2:d7:7d:0f:
f9:e2:3c:94:a7:59:2c:8d:17:b6:40:8e:79:92:d7:
ed:50:fa:b3:06:3c:b7:b1:a3:a8:27:8e:5f:6c:39:
1f:1d:71:8e:cc:52:52:0f:b5:e2:bd:ad:71:76:3f:
7e:f6:a3:bf:f5:e1:76:f3:b8:9f:34:06:69:d1:b0:
fe:c5:b1:b1:ca:3b:e9:1d:7c:c1:06:04:cf:7b:28:
c3:6e:31:be:8f:d1:f4:a6:c5:69:9c:16:55:5d:7d:
1c:24:d4:3b:c4:f9:db:a3:3b:d0:04:f4:07:20:56:
e5:aa:d1:ea:f2:90:77:4b:c5:4b:27:3f:a5:fc:a5:
c5:a9:bc:f2:15:1f:ff:27:ac:55:04:b2:2e:f4:9f:
3e:16:1a:4b:b7:a8:a3:e9:80:de:80:0c:d9:a1:10:
b7:65:67:ea:ee:15:81:60:80:d7:3d:56:4d:27:93:
4b:f8:cd:61:a2:3b:f8:f0:6a:ee:ab:dc:17:77:07:
18:ba:3d:d0:ba:93:0f:e8:b8:56:7f:8d:6c:d1:ce:
a2:b6:de:24:19:47:00:71:cc:d4:6d:57:92:ce:da:
e4:a0:a2:6b:b4:bf:f2:67:a3:15:9d:32:1d:4a:26:
e0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:EF:98:96:61:90:AC:68:B2:4E:A1:64:51:42:AF:F4:6D:58:90:68
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:72::/48
Signature Algorithm: sha256WithRSAEncryption
34:cd:c9:9f:33:5c:e0:f0:75:a8:c5:00:50:4e:73:6f:3f:38:
bd:30:e1:cd:c2:c9:38:22:2a:3e:dd:11:32:bf:de:dd:08:6a:
9d:99:26:59:91:fd:3f:99:73:2f:cc:b0:f5:85:64:02:48:c2:
5e:e2:a0:86:31:9e:01:53:c2:70:c9:fb:73:c0:e1:6c:05:c9:
a0:96:51:39:56:a6:af:70:c4:fb:3d:a1:76:82:26:19:27:84:
a5:62:e7:66:96:93:88:37:a4:23:44:98:2a:11:ef:c1:cf:39:
a2:05:a2:fc:8c:26:eb:4b:37:07:78:f1:72:58:d6:15:cd:5d:
48:2a:10:0b:e7:b7:4c:c2:44:9b:7e:e7:9f:60:1e:66:4f:2a:
b2:69:7d:ae:8d:3d:86:aa:86:d7:11:96:69:0e:02:db:8a:ad:
57:9a:b4:e5:50:65:37:f9:c3:8c:a5:8b:c1:c2:f1:60:2b:c4:
a2:82:4d:02:d7:73:cd:e7:35:e8:bf:b0:4a:01:76:3c:75:19:
62:93:5d:89:6d:9c:86:64:02:6c:ae:6d:4a:07:eb:1e:15:7c:
6d:7e:41:dd:2e:b6:e0:e1:19:88:38:b4:c2:d6:c9:84:93:30:
d9:95:c9:37:42:f2:3d:c5:2d:28:65:3f:85:9e:cc:14:e3:eb:
80:dd:78:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org