Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ozozvYbhYvX2YMSXWwGO8mvVQtp6dHuPbuGJEajbEJk=
Subject key identifier: A7:F5:29:90:BD:63:35:2D:55:64:1A:B0:C7:0F:4D:93:90:5B:8B:3C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 769681BB5497CC93C726F0C0A36EF89B7A6CD0CC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:26 +0000
ROA not before: Mon 26 Sep 2022 07:56:26 +0000
ROA not after: Mon 25 Sep 2023 08:01:26 +0000
asID: 59282
IP address blocks: 2400:d680:80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:96:81:bb:54:97:cc:93:c7:26:f0:c0:a3:6e:f8:9b:7a:6c:d0:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:26 2022 GMT
Not After : Sep 25 08:01:26 2023 GMT
Subject: CN=A7F52990BD63352D55641AB0C70F4D93905B8B3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:37:ee:a8:08:fa:37:cb:e9:45:88:1c:a6:50:
1f:9d:50:5b:01:de:6a:67:f9:01:e8:e8:3d:bb:1a:
a4:45:ba:c5:64:f4:34:83:b1:f0:9a:4a:47:ef:1c:
42:d1:3c:f3:6e:09:fb:89:b1:50:8d:3a:31:c5:22:
e9:56:d6:97:c5:10:64:c3:cf:77:f0:29:8d:15:f9:
dc:4b:f1:05:f4:59:ee:3b:52:06:a6:d8:56:0d:5e:
f2:3c:2d:4f:96:77:e2:74:93:88:45:37:5e:f7:ae:
0a:50:8f:81:02:4b:44:b8:40:8b:f1:73:f0:77:f4:
4e:2e:19:2d:a5:c3:49:fc:da:5c:62:1b:38:c2:f3:
4f:a4:45:ac:5a:b4:0f:85:d8:5f:70:14:be:55:ee:
4b:53:37:b1:10:21:21:18:ca:61:21:8d:0f:7a:69:
b4:f9:a3:03:80:3e:7f:f6:05:59:bb:77:fe:b3:b7:
f9:8d:b4:26:5e:4a:8f:68:28:b0:d0:96:db:b4:6b:
61:99:15:84:5a:d8:a1:5f:e8:6b:81:d6:36:90:cd:
49:a4:ba:be:f0:69:01:48:0c:84:e4:5c:78:d4:69:
d2:4a:f6:70:aa:39:2a:bb:9d:84:93:9c:0e:bb:29:
77:45:d5:7d:c4:e4:7f:ac:6c:08:a2:bf:e0:0b:23:
d9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F5:29:90:BD:63:35:2D:55:64:1A:B0:C7:0F:4D:93:90:5B:8B:3C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:80::/48
Signature Algorithm: sha256WithRSAEncryption
68:0a:3f:1d:29:6d:ba:22:95:2c:c3:29:76:f3:6f:7a:1b:4b:
09:38:57:5e:a4:97:75:49:7c:6f:b8:d7:83:3c:3e:8c:93:3d:
d2:c9:a1:4c:ee:a6:06:24:48:db:9b:65:9f:57:a7:e5:6f:4d:
6c:4c:08:22:3f:89:6e:79:5b:f9:c7:5e:c2:8b:0d:f2:fe:52:
72:1d:12:52:e3:9d:ca:13:c6:8b:ee:49:64:d4:cd:b0:d8:cb:
18:14:b2:25:88:63:50:64:67:e9:02:ec:1b:b5:59:a7:c2:73:
36:a8:5c:f5:af:03:9d:4a:ae:db:66:5d:40:a4:33:b3:47:08:
2c:55:95:59:cf:d4:e0:8f:51:d4:2d:d6:53:e1:0d:05:11:93:
5c:77:1d:1e:24:69:57:f7:ab:d6:d3:56:0f:e6:ff:44:82:3f:
5f:a7:c7:84:93:87:ef:2f:a5:08:8a:71:2c:0e:d6:6a:30:ff:
c5:66:92:85:24:a0:d0:58:fb:53:78:25:e7:0a:a9:43:b2:78:
7b:f2:44:b4:14:c8:17:1d:1d:0c:01:4f:4d:08:e2:f8:4a:3c:
a8:7c:ca:b5:75:bf:01:da:95:9b:6b:55:c7:40:62:a9:29:98:
76:27:01:8d:2a:9b:65:d5:de:9b:b0:a1:cb:6a:15:2e:7c:a5:
49:45:f8:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org