Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: w+DLMtC/MPqJNnOYoCdwSN/CnkvDwNkAR2WgYeMij3s=
Subject key identifier: 7C:41:13:40:B7:0A:04:BD:DD:0B:FA:D2:A0:CB:A8:66:DB:CF:47:8C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 50C2D52124BD65D941E6BD35317C5292FD2D6286
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:19 +0000
ROA not before: Mon 26 Sep 2022 07:57:19 +0000
ROA not after: Mon 25 Sep 2023 08:02:19 +0000
asID: 59282
IP address blocks: 2400:d680:f2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:c2:d5:21:24:bd:65:d9:41:e6:bd:35:31:7c:52:92:fd:2d:62:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:19 2022 GMT
Not After : Sep 25 08:02:19 2023 GMT
Subject: CN=7C411340B70A04BDDD0BFAD2A0CBA866DBCF478C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b1:b9:18:38:fc:f2:48:eb:d7:6f:1a:78:a6:
90:7d:77:d5:b1:f8:45:69:21:6d:ba:f8:e7:df:c6:
8f:22:c7:d8:ec:5e:97:05:c4:e6:9b:8a:97:96:00:
88:67:ce:6d:2e:e1:45:a8:84:aa:8c:1c:43:06:d7:
11:37:ad:9d:9f:29:70:6a:ee:40:9c:00:eb:61:c3:
0b:2c:7c:f2:7c:e2:92:28:79:fa:22:4c:d8:5a:2b:
6c:d2:27:89:3a:ce:ac:b3:73:7d:bd:8d:6a:19:67:
05:c4:f6:5c:a1:a8:3d:be:33:ef:13:fa:bf:e6:34:
a9:f6:7b:bb:28:ac:c2:93:1d:2b:b0:8b:fe:4c:0d:
76:b8:3c:38:ea:f2:18:9d:c7:8c:0b:73:32:f3:86:
3a:a3:99:68:59:ed:b1:f8:e4:f3:5e:06:6b:6e:93:
e0:46:54:f6:b5:68:c4:9d:26:1c:88:f4:14:71:69:
e5:f8:bf:56:8c:ae:fa:a1:89:09:55:74:9c:5f:ba:
95:ef:7e:25:13:5b:28:0f:20:02:72:19:24:75:c1:
ad:91:49:49:62:8e:ba:0f:7b:fd:f8:4c:66:84:12:
7b:37:2a:27:43:f5:2b:42:18:01:55:6f:55:aa:a6:
35:c6:1a:e1:1a:9f:58:f1:b0:19:12:36:4d:78:a0:
ed:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:41:13:40:B7:0A:04:BD:DD:0B:FA:D2:A0:CB:A8:66:DB:CF:47:8C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:f2::/48
Signature Algorithm: sha256WithRSAEncryption
0e:6c:97:45:22:c5:4d:7e:8d:a8:5d:91:01:7a:7a:ad:d2:75:
7c:3c:23:b5:17:c0:d6:c8:cf:8b:b8:e2:4e:0f:9a:c9:30:7f:
d7:1d:8d:c3:f6:e1:04:61:6f:2f:9f:b4:d5:52:78:6b:4d:8c:
0d:67:ef:5e:08:9d:ba:3f:7d:2b:17:49:a4:8f:fd:84:fa:62:
3f:c7:e4:21:60:ca:35:51:1b:1a:cb:69:ab:bd:8a:11:64:ca:
52:1b:a4:82:68:7e:a9:dc:f2:8f:c0:0b:29:77:46:2a:b5:d3:
75:d7:03:07:be:89:9f:27:37:6a:d7:9e:61:c3:c3:0d:a1:ac:
c8:4f:a5:1c:dd:32:4d:c3:8e:4b:92:8c:b5:40:75:a5:5d:63:
38:ce:7c:99:15:46:ab:4c:a7:3e:c2:ab:fa:c0:f7:03:09:76:
9d:86:d9:54:75:8f:5d:59:c5:c8:53:c8:c8:0a:9d:35:67:02:
4b:b9:1f:01:d3:81:f2:46:b8:7f:f1:f1:5d:b9:4b:3e:32:b9:
58:fa:66:be:be:7c:12:27:0d:f3:bf:d8:5f:f2:95:74:ed:43:
d1:7f:5b:7c:29:37:fd:c6:97:4b:ad:ce:c0:96:9b:aa:33:8b:
fb:70:4d:0d:e8:a2:d0:2c:07:8e:c0:01:b6:48:61:14:6c:b8:
6e:43:81:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org