Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RvQkXn1MtBx+7yEE4Yej8JdDa5VyZ3Mc0NYlyIgongE=
Subject key identifier: 69:E7:45:89:EB:9D:90:45:3F:4C:48:AC:99:CA:C3:B5:AA:E1:9B:65
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 61578E96DB0549DEDD44A3A8250FF1BC7B8FC2AA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:46 +0000
ROA not before: Mon 26 Sep 2022 07:56:46 +0000
ROA not after: Mon 25 Sep 2023 08:01:46 +0000
asID: 59282
IP address blocks: 2400:d680:c7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:57:8e:96:db:05:49:de:dd:44:a3:a8:25:0f:f1:bc:7b:8f:c2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:46 2022 GMT
Not After : Sep 25 08:01:46 2023 GMT
Subject: CN=69E74589EB9D90453F4C48AC99CAC3B5AAE19B65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:35:39:fc:bf:ee:0a:b5:b2:ed:9b:ba:0d:29:
53:b8:dd:c4:71:b2:4a:21:90:e2:d3:5e:f5:b3:39:
71:dc:58:93:36:a4:bd:2d:4d:5b:09:38:39:14:a8:
3c:7e:ca:de:ff:56:e6:ad:3e:44:19:cc:5e:a9:3c:
c9:0a:01:3d:e5:7b:4b:6f:7a:cf:05:56:a7:45:35:
2f:ae:4f:5a:1a:73:c3:39:8b:17:b8:06:74:3e:9c:
86:a0:10:f0:9f:83:b6:d8:e0:cb:f4:f4:7f:a7:9d:
39:53:52:05:75:96:65:09:72:0f:5d:1c:a5:1e:7e:
c2:f2:45:6f:8c:3e:68:d8:1d:78:33:e2:5d:44:0d:
6d:25:42:5f:cc:bd:c7:ff:67:73:f0:7a:b2:43:e8:
cf:f7:ca:68:97:61:7d:ce:37:53:13:e8:eb:59:00:
32:d8:e7:53:c7:b4:95:f0:4f:74:5a:be:e2:87:c2:
2b:49:2c:2c:09:c3:90:67:f0:79:ba:b5:27:fa:58:
ab:fb:ce:03:6f:95:9b:7b:f0:70:2d:a8:02:1d:0a:
26:56:4a:f9:57:00:48:28:e6:5d:9f:7b:48:bc:3c:
a7:64:71:a3:a7:f7:16:a1:97:06:d6:41:58:fe:8a:
c7:a7:7c:44:19:99:df:90:eb:4d:a9:b8:69:aa:e3:
9d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E7:45:89:EB:9D:90:45:3F:4C:48:AC:99:CA:C3:B5:AA:E1:9B:65
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c7::/48
Signature Algorithm: sha256WithRSAEncryption
9e:7c:b4:74:fa:c8:43:74:0b:21:26:d0:eb:9a:f6:b9:00:1c:
1b:64:f8:51:eb:06:da:c6:38:fb:ff:11:8c:81:12:75:9a:1f:
bd:51:57:43:ad:81:e5:ca:bc:47:0e:77:f6:a8:05:5f:cd:b2:
4f:6a:f5:39:a1:83:ea:45:e1:ba:84:42:5e:ec:51:0e:0b:ad:
2d:06:e3:15:bd:32:48:af:77:cc:29:3e:5c:ef:3c:32:59:a8:
17:30:b9:ad:9a:ba:0e:a9:b7:74:94:ef:1b:54:e8:c4:1d:1b:
57:83:d2:62:79:2f:db:92:40:d0:d7:5d:c1:75:df:bd:a1:52:
80:6b:84:8a:26:36:eb:20:ca:29:22:13:31:39:12:35:20:12:
ff:e3:5d:73:8e:09:53:4c:2e:e9:dc:eb:25:75:f8:76:c4:73:
d0:80:a9:3a:cc:41:30:9a:0d:48:02:d6:45:97:e3:e3:58:30:
79:2e:4b:9f:c5:ed:47:2a:9f:ed:dc:cc:5e:18:75:a0:4f:e4:
65:2a:2e:9c:91:f0:28:e6:e2:67:cf:90:9e:a3:ec:48:23:91:
6a:6d:ad:1c:0f:23:83:e8:27:bf:ed:b8:d7:a1:12:e3:0e:27:
77:02:7e:c3:e6:eb:14:41:c0:42:80:ba:91:98:2c:ed:05:b6:
36:1a:ef:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org