Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3131393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2QT3xFuZo/hFFPFkgKRo2mmMVXgRbqOPYCcYxtofKLY=
Subject key identifier: F7:B0:60:B6:CC:36:08:6A:E3:F4:2B:F1:78:6A:97:6F:7D:69:03:76
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 16AA33ADC699C8E1E748630C9AAD63BA41692668
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:51 +0000
ROA not before: Mon 26 Sep 2022 07:56:51 +0000
ROA not after: Mon 25 Sep 2023 08:01:51 +0000
asID: 59282
IP address blocks: 2400:d680:119::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:aa:33:ad:c6:99:c8:e1:e7:48:63:0c:9a:ad:63:ba:41:69:26:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:51 2022 GMT
Not After : Sep 25 08:01:51 2023 GMT
Subject: CN=F7B060B6CC36086AE3F42BF1786A976F7D690376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4e:a3:46:c5:23:d2:f8:b3:d5:fa:e9:2f:27:
90:55:c8:79:16:ac:b9:08:f9:6c:18:6a:22:9d:59:
24:0b:a1:f0:39:58:51:83:13:15:89:02:83:a7:3f:
b1:99:81:47:23:3d:99:3f:20:d8:1d:52:d7:74:06:
dd:c1:b9:f9:e1:8d:95:83:8b:78:f6:c9:e5:87:2d:
38:c4:7c:ae:38:5c:9e:4c:a0:db:cb:84:ae:66:56:
d9:1b:71:96:01:3e:e1:14:88:d9:3b:4e:62:a8:4b:
30:a0:3e:d7:53:fd:a8:39:2c:a4:d2:3d:07:22:ce:
71:45:8f:7e:1d:be:a9:5f:e1:03:40:c4:78:51:d2:
59:02:42:49:22:29:94:0f:d7:c2:56:dd:82:f0:39:
41:b8:c1:fc:71:ac:f0:1b:1b:f4:b3:e9:27:30:c2:
66:c5:48:88:78:ad:bc:0a:8f:0b:e8:59:3a:ad:8e:
1a:b4:32:79:a4:af:5b:29:48:64:09:b4:53:e9:02:
73:27:76:5c:35:64:fc:b3:d2:81:63:51:2a:e8:ea:
4f:f9:24:c2:51:fe:60:f8:24:e9:0f:36:97:17:8e:
d0:7a:a7:b0:56:a6:2d:26:13:26:d9:e4:b1:18:d4:
f8:27:f2:70:a4:2d:2a:6e:82:72:16:e0:9c:b0:2b:
52:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B0:60:B6:CC:36:08:6A:E3:F4:2B:F1:78:6A:97:6F:7D:69:03:76
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3131393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:119::/48
Signature Algorithm: sha256WithRSAEncryption
5a:23:81:be:69:ac:21:c4:b6:e4:67:0c:58:39:be:35:bc:66:
05:87:90:1f:f3:4f:24:26:ba:cb:c1:27:b5:d5:3a:16:88:fb:
85:af:90:f0:fa:43:c7:e1:2c:1f:f4:5f:f1:b6:61:67:27:bd:
5a:b7:7d:83:32:05:f0:4b:dd:05:81:1e:19:b3:58:10:64:d8:
bd:13:3a:97:ba:2f:48:64:95:4f:f0:d2:41:b2:d6:4f:7c:79:
da:c5:4e:6a:96:85:13:4a:43:8b:4a:28:16:c4:c6:81:9b:b2:
90:eb:b2:8c:3e:8d:85:cb:e9:ef:9d:45:7c:ca:a1:7c:1b:42:
d8:e0:ef:79:8c:38:52:9a:04:09:78:11:7b:4a:df:5f:ba:a8:
57:d9:06:77:04:28:d5:d0:e3:17:bd:2d:c1:f6:15:d6:a2:fe:
b2:8a:ec:18:50:37:28:6c:35:8e:f8:bc:a0:1e:4c:a5:00:5d:
b2:4f:d2:de:3f:14:cb:e4:0e:f9:62:44:29:4b:ac:be:9d:5d:
ca:50:43:f8:8a:54:43:39:03:6a:f3:8e:79:ac:7a:bc:be:92:
df:c2:9e:d4:c7:51:53:da:3f:6a:41:23:8e:1e:c3:23:1e:15:
70:e5:78:05:86:2b:22:0d:e4:9a:f1:69:06:90:11:f2:e8:0b:
d2:9c:0c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org