Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aijXkpuTkUv6a5z6n5fWR89F2Ta0UnI+03WNpGDS+FE=
Subject key identifier: A1:9F:E8:44:C9:52:DB:CC:D1:F0:6B:F7:ED:A8:52:32:94:92:AB:F5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7D23C58AA46D213C1A83FF8247661EA9E71764CF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:90::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:23:c5:8a:a4:6d:21:3c:1a:83:ff:82:47:66:1e:a9:e7:17:64:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=A19FE844C952DBCCD1F06BF7EDA852329492ABF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:c3:f5:16:6f:57:89:d9:be:0a:e2:14:ae:
aa:7c:74:32:4a:30:72:cc:11:07:be:d6:21:a0:da:
5d:b5:5e:49:18:71:ee:11:3e:6c:ec:a4:a6:0b:38:
e6:d3:3e:b4:29:9f:26:fe:b2:2b:3b:12:f3:91:0f:
88:e4:1c:21:62:b3:64:07:ea:71:0a:65:6c:4f:f5:
af:0f:07:70:a9:f1:2c:62:a8:b3:b2:15:c1:ac:42:
e7:0e:12:1a:f0:9e:17:98:92:f0:87:c8:45:7c:b8:
8c:e2:5c:3d:f4:d0:b9:c3:90:1d:72:4d:41:fb:39:
d8:03:64:33:14:40:17:24:34:51:14:08:b6:33:14:
f4:79:88:d8:f1:2b:e4:e0:0e:72:63:8e:ab:e6:ae:
d2:f7:a7:6a:14:d4:9d:3e:ef:fc:68:5f:7b:93:23:
08:e5:d7:25:68:10:4d:59:2b:a3:16:64:85:50:ed:
2e:db:25:d1:d3:8b:12:a4:a8:14:4e:ce:4a:70:24:
97:b0:f9:7f:87:2a:50:bd:2a:44:7a:a3:40:05:b3:
2d:97:98:f4:9a:ed:c4:0b:7c:ff:2b:72:1a:6b:43:
c3:17:28:ac:96:88:53:d4:88:64:60:53:fa:da:66:
a8:6d:3c:bb:fe:1e:da:19:82:d1:23:a2:f4:22:3a:
e3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9F:E8:44:C9:52:DB:CC:D1:F0:6B:F7:ED:A8:52:32:94:92:AB:F5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:90::/48
Signature Algorithm: sha256WithRSAEncryption
ba:a7:f4:cb:3b:d7:43:9b:62:e7:9c:c8:b3:3c:d6:41:95:94:
15:8e:e6:82:26:35:0d:6a:7e:af:ed:f3:75:d2:36:d9:51:85:
51:b9:6e:4b:7f:9b:a6:19:23:f0:34:e5:e1:3c:82:a1:83:15:
ea:9b:15:0e:db:26:7a:69:97:c0:58:8b:0b:00:91:ce:67:1c:
2b:1d:20:44:8e:9f:88:3a:31:05:68:de:f9:eb:d8:7c:b2:1d:
61:e6:1f:75:7d:5d:d9:47:47:de:e0:95:f7:49:27:72:0a:1b:
6b:d0:21:ec:10:fd:9e:de:e4:c0:96:e1:20:c9:4c:97:c7:69:
f3:90:8b:25:2b:1b:67:eb:df:75:53:db:60:8d:93:b8:47:61:
c1:a2:e0:16:6d:8d:47:12:16:c1:fa:c1:39:93:4d:94:d2:b5:
c0:ee:41:10:b5:7f:f9:9f:82:dc:4f:96:df:64:47:20:96:de:
f7:cd:e8:83:6e:e9:16:e3:88:ec:d2:86:1d:f6:a8:89:6b:36:
96:a5:83:22:62:4b:d5:86:19:ac:63:79:61:35:bc:6c:99:eb:
41:9b:41:5e:d7:7d:65:f5:e0:17:d5:b2:4e:b1:9b:a4:17:97:
96:d5:b1:4a:10:b5:c6:9c:ed:64:a8:38:ec:dd:f1:da:5b:a5:
93:0e:f8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org