Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9FjB+pXPtv/oJpPeF6A30wjCXLm3Rt/zxn0NxSK6PZg=
Subject key identifier: 7F:07:C4:8E:E8:07:55:E9:A4:0F:14:E9:23:18:B6:E1:F3:A9:F7:FA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 35675525A29C2FAAC2B4ED61CAC6607322B4533E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:17 +0000
ROA not before: Mon 26 Sep 2022 07:56:17 +0000
ROA not after: Mon 25 Sep 2023 08:01:17 +0000
asID: 59282
IP address blocks: 2400:d680:fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:67:55:25:a2:9c:2f:aa:c2:b4:ed:61:ca:c6:60:73:22:b4:53:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:17 2022 GMT
Not After : Sep 25 08:01:17 2023 GMT
Subject: CN=7F07C48EE80755E9A40F14E92318B6E1F3A9F7FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d3:cc:e3:99:c7:15:ae:0a:b3:11:b7:2c:f0:
ee:f4:9c:6f:8d:b3:95:f2:50:6f:df:59:57:15:7a:
29:da:3c:ab:90:0e:7a:15:8a:bd:11:ac:eb:b6:80:
51:5e:08:16:ed:aa:65:a8:49:d4:4d:76:25:81:53:
1a:45:15:8a:39:f4:d6:f5:ea:e0:d4:10:80:70:6d:
66:7b:59:e2:a2:93:ad:1e:0b:f3:51:69:04:cb:b7:
57:f6:cb:46:83:df:95:7e:26:c8:ba:db:1a:bc:ea:
e1:d7:1e:c3:dd:ef:90:50:8a:30:ea:e3:ba:9b:ab:
61:86:94:a9:06:73:91:68:45:6b:3d:37:72:0e:42:
88:65:fa:07:12:2f:a0:b2:dd:1a:06:2b:01:00:ca:
0f:2b:0c:9f:f4:d1:40:d6:9c:f2:92:6b:98:bd:94:
3a:b9:f6:e6:f1:a1:bd:1f:78:0e:24:5e:98:10:fa:
f2:b6:5e:cf:17:37:76:84:fc:cf:e6:48:b8:66:a0:
85:39:de:60:21:77:2f:2b:0d:be:3e:3c:c4:1b:6e:
cf:6a:ac:24:1b:fb:c0:61:eb:54:d5:93:e0:76:03:
f1:d7:96:d4:7e:4a:2f:da:8f:30:c1:6f:c9:a8:92:
7c:f9:b9:25:27:26:c7:52:bc:96:17:ee:cf:4c:8f:
23:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:07:C4:8E:E8:07:55:E9:A4:0F:14:E9:23:18:B6:E1:F3:A9:F7:FA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:fc::/48
Signature Algorithm: sha256WithRSAEncryption
99:48:b7:a9:60:e0:18:d7:c9:3e:15:b4:be:12:59:82:7b:6e:
4d:6c:21:7c:ad:33:94:f1:7e:95:20:3a:e9:a1:5f:42:c3:50:
85:9d:5d:7c:81:19:e8:94:5e:9a:0a:9b:ae:21:51:7f:d3:f9:
b5:24:bd:6e:41:ca:e4:21:cb:15:82:36:e0:67:24:52:53:64:
8c:83:ce:db:11:bb:ff:a0:d8:22:36:19:7e:90:1d:a3:86:c5:
ab:87:36:e6:49:41:e8:92:b6:7c:b4:5b:63:d9:ae:87:0c:83:
fe:2e:ad:ed:d8:c4:97:ce:c9:0b:23:d5:61:04:bf:35:86:de:
99:28:2f:42:22:68:c9:60:67:95:36:da:71:89:8c:31:82:55:
61:73:db:fc:51:9d:b4:af:5c:cb:1e:33:bb:4d:14:a5:39:9d:
21:e3:90:f7:e7:0f:aa:f2:11:26:37:77:1a:f7:e4:80:7d:f4:
cb:54:3f:77:18:b3:c3:e7:76:e1:36:02:d1:ba:00:29:6d:c0:
e4:b3:7d:d4:cb:b6:bd:4a:4c:4a:82:fe:26:d4:25:9a:ae:b7:
6b:12:26:f1:0d:d0:de:05:85:39:ad:9f:81:af:5d:16:71:bc:
15:c9:26:15:cd:73:d6:7a:47:54:f6:87:7a:35:0a:bf:14:9b:
c8:33:95:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org