Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: NfV70UbcEXxRPUImma+EZNeBTB9kyQqkpOoNj73B28U=
Subject key identifier: 7E:99:5E:75:FD:43:99:BA:13:4A:19:CC:73:66:72:24:64:6C:A1:4E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1B242645C4DD29E37AB87C988C910C40DCA80464
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:56 +0000
ROA not before: Mon 26 Sep 2022 07:56:56 +0000
ROA not after: Mon 25 Sep 2023 08:01:56 +0000
asID: 59282
IP address blocks: 2400:d680:c5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:24:26:45:c4:dd:29:e3:7a:b8:7c:98:8c:91:0c:40:dc:a8:04:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:56 2022 GMT
Not After : Sep 25 08:01:56 2023 GMT
Subject: CN=7E995E75FD4399BA134A19CC73667224646CA14E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9d:0a:b2:15:76:5a:6e:cc:40:bf:ed:3c:51:
f2:d6:17:71:67:5c:c8:a8:d9:e0:b8:af:74:19:14:
58:e1:5e:b1:5a:27:3c:ce:e6:8e:e5:d5:3f:1b:73:
4d:0c:df:96:1d:10:73:5b:63:08:f9:f1:6d:6f:43:
06:58:29:a0:e1:ad:41:9e:a7:87:37:e3:d0:4d:aa:
00:2d:c4:ad:23:96:27:8a:b9:43:3b:c0:ca:68:4a:
52:e8:f0:f9:59:35:5f:31:be:c5:dc:b2:17:9d:0a:
55:92:41:81:ab:e1:c4:a0:ee:a9:11:46:aa:f9:66:
1a:f7:04:9f:33:40:2e:1a:37:7a:ad:70:b4:4b:bc:
2c:41:f2:e8:b2:70:c4:14:03:08:16:8c:c8:15:34:
2e:b4:db:25:1c:ec:8e:6e:5c:a2:af:1a:a0:1b:2c:
d7:7a:15:3c:41:89:50:ab:f1:63:80:ae:5c:64:4e:
e0:51:48:ef:ba:bf:e1:c8:87:ad:d1:6d:25:f0:61:
1c:fb:87:a5:1e:b1:6b:c7:14:28:f2:a2:2f:29:18:
6e:71:3f:51:0b:ab:ac:59:8e:b5:08:f7:c7:a0:a1:
4e:aa:3e:bc:df:15:29:36:82:a1:8c:11:db:1c:25:
22:c6:36:d4:af:70:d8:9d:7a:0e:2a:50:44:6c:10:
52:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:99:5E:75:FD:43:99:BA:13:4A:19:CC:73:66:72:24:64:6C:A1:4E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c5::/48
Signature Algorithm: sha256WithRSAEncryption
96:09:0c:43:ca:38:f4:fa:a6:8d:c4:c6:4b:47:9e:cc:cf:ef:
34:2d:ed:b7:a3:89:ab:5d:43:15:40:84:11:e3:c4:57:fa:d3:
9a:bc:60:33:5b:da:c5:c9:c7:03:ba:e7:1c:75:38:3f:13:4f:
41:57:91:b0:a1:65:cc:2e:d5:14:61:72:97:91:a1:2d:07:56:
21:b3:64:5b:ea:8c:77:d1:c8:70:14:49:30:fb:8c:a2:72:9c:
8d:6e:f1:44:20:48:6c:71:fb:68:fe:24:79:92:82:06:ff:31:
ba:64:09:8c:0c:60:63:18:7e:43:1b:2c:10:22:38:00:05:6d:
8f:d2:37:f7:0a:47:75:0c:e9:10:71:8d:00:77:fa:67:16:05:
f4:fd:95:d9:78:3d:2c:3a:dc:59:0b:ab:63:c8:31:18:b7:94:
87:b8:b4:93:d4:47:09:37:aa:36:78:21:a5:0a:66:0f:11:34:
13:2c:cb:6e:a5:10:74:d8:ad:66:32:8f:b5:94:cf:40:3f:72:
97:99:f9:a1:48:ce:7d:d1:71:b5:b5:c8:3b:08:6d:f8:ab:b6:
17:04:fa:08:94:5a:89:23:68:1a:e0:80:ea:a8:bf:44:d3:12:
11:02:cc:a0:15:a6:4b:09:e0:a8:67:8b:5d:a3:9c:bc:f5:50:
02:78:35:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org