Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: DkKZqAjlDcjXQV1zfHs1LHpiKD7AFVDmujvasR8OiJI=
Subject key identifier: 3D:1D:3D:31:9F:93:19:F5:C3:C7:6A:D0:6C:48:12:8C:7F:64:6B:C4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7E927A5CBF2B2A30EF0340D606912E30BC9B3A7E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:21 +0000
ROA not before: Mon 26 Sep 2022 07:57:21 +0000
ROA not after: Mon 25 Sep 2023 08:02:21 +0000
asID: 59282
IP address blocks: 2400:d680:7b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:92:7a:5c:bf:2b:2a:30:ef:03:40:d6:06:91:2e:30:bc:9b:3a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:21 2022 GMT
Not After : Sep 25 08:02:21 2023 GMT
Subject: CN=3D1D3D319F9319F5C3C76AD06C48128C7F646BC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:be:95:1f:3a:2a:c7:08:e8:22:3d:2c:0a:87:
a9:fc:ab:f9:c7:f8:73:a3:38:e0:93:c8:d1:09:f2:
95:7d:0e:2a:5b:8d:6c:40:96:ad:c4:e0:d5:40:4e:
92:27:a5:a7:cf:46:27:e5:35:91:4e:e6:25:ea:ab:
91:8a:c3:c9:a4:95:bc:e9:57:35:44:d3:c7:6a:f1:
51:19:d0:ee:d7:15:fb:b9:02:4d:5a:16:c7:de:0a:
4f:e1:92:0c:04:30:94:86:11:8a:a0:3c:87:54:49:
50:f2:24:e3:c4:53:df:18:82:67:f7:1a:5d:3a:e5:
65:15:95:a1:7a:2e:b4:51:fb:59:b2:89:1f:00:fc:
a8:1d:af:22:0c:3c:f3:6f:18:48:b7:fb:d0:4f:f5:
8e:cd:d6:0a:07:8b:f5:b3:db:25:38:e2:2e:53:2e:
2c:9c:ad:d6:71:ad:c5:2e:50:a8:f0:b8:64:76:d0:
a9:f5:2c:64:b9:4d:de:bf:35:12:a3:04:28:fb:09:
d8:be:53:b5:3d:8e:e9:9e:49:b2:2c:cd:a9:70:de:
59:98:86:51:09:f2:1d:51:a5:fa:11:53:72:8d:ff:
15:cd:6f:c1:c5:6d:ec:39:a5:a5:12:68:66:aa:15:
30:b0:f1:8c:45:e1:22:14:fe:4a:44:dd:0c:4c:d0:
13:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:1D:3D:31:9F:93:19:F5:C3:C7:6A:D0:6C:48:12:8C:7F:64:6B:C4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:7b::/48
Signature Algorithm: sha256WithRSAEncryption
85:93:7e:71:ad:40:f9:1e:aa:b0:1f:33:5d:cc:b8:c2:c3:1e:
62:46:be:81:79:ac:b8:b3:19:d6:09:6f:d9:2f:79:92:74:ab:
bd:1b:79:9b:0a:ca:ff:06:cb:69:ed:a4:9a:5e:dd:59:04:07:
e3:fc:00:97:d6:c5:37:66:34:37:f9:68:59:12:56:0d:14:77:
2d:5f:93:c2:24:5c:90:c5:6d:49:b7:e2:d2:54:eb:cc:94:e2:
7d:10:e2:23:12:44:18:21:c5:de:63:03:17:dc:f3:d4:11:d3:
99:00:af:11:b7:50:5e:7e:2b:fa:f6:78:5d:97:a2:11:38:42:
37:9d:54:75:58:82:05:e5:5d:f5:24:63:72:9c:1c:3b:ac:c5:
ee:10:23:63:28:cc:cc:13:c7:7b:58:6f:94:b6:6c:a3:9c:40:
a0:7d:8f:4d:98:11:f2:28:0d:1b:01:b4:92:23:4f:70:d1:29:
cb:c1:41:e6:b6:d6:ee:60:18:41:59:76:b2:a4:43:ff:6e:6c:
62:69:15:0a:32:bc:9c:c1:16:17:93:16:96:7e:87:9a:84:1c:
97:b9:61:eb:e6:e9:53:3b:02:8f:d9:27:2c:ad:1d:0f:0f:c1:
b3:8b:91:41:f0:f6:5d:1b:7e:b3:96:e5:ae:31:7b:b9:69:59:
01:98:63:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org