Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3132613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: f9bDCIK/mQ/S/RTpnlnkXM/Wl4w9slwe9+KlGYXUt+A=
Subject key identifier: D7:F6:FD:D1:7E:49:0C:E3:16:D4:4E:2B:FE:1D:04:4F:6C:CA:87:72
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0979E589F1A8554BA04C3966BD57CE4A28EAC160
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:11 +0000
ROA not before: Mon 26 Sep 2022 07:57:11 +0000
ROA not after: Mon 25 Sep 2023 08:02:11 +0000
asID: 59282
IP address blocks: 2400:d680:12a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:79:e5:89:f1:a8:55:4b:a0:4c:39:66:bd:57:ce:4a:28:ea:c1:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:11 2022 GMT
Not After : Sep 25 08:02:11 2023 GMT
Subject: CN=D7F6FDD17E490CE316D44E2BFE1D044F6CCA8772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:34:04:cd:94:63:f6:3a:1c:3c:2b:80:43:
f4:ca:05:6e:dc:b8:1f:6b:4b:6c:d5:d6:21:8f:b4:
4d:7b:b9:ee:77:4e:08:4a:8e:b5:66:63:36:76:de:
05:d6:e1:81:39:85:bb:12:80:f9:19:40:ef:ec:86:
aa:95:c4:da:9b:85:9d:10:e6:0f:91:52:9d:36:3e:
33:06:4a:bd:3b:92:3a:02:95:63:ea:fb:02:d9:5a:
e4:58:52:a6:6f:0d:ae:a2:3a:17:a5:5d:68:43:ef:
58:a7:f0:86:95:2a:c8:10:e0:25:43:f9:e0:1a:41:
b1:e9:71:86:8b:f3:3f:96:cb:de:fa:d6:88:dc:a6:
4c:d8:0a:11:f3:a4:6a:e9:d2:77:54:1c:97:75:c6:
06:ce:32:56:82:4e:b9:ba:a8:1a:0b:8d:e1:75:17:
01:14:60:e4:6f:92:39:c9:da:b1:4c:5f:51:61:d0:
60:90:23:e9:a3:f1:44:db:c2:06:32:b0:1c:ee:83:
c2:ec:3e:59:8e:e5:6d:36:12:94:cf:9d:51:b5:f0:
28:e9:15:ed:80:dd:14:ac:cc:5e:f6:b3:16:9e:8c:
b0:d8:9b:ec:9d:5b:f5:87:70:ed:e5:75:6e:72:b1:
0a:10:d4:46:3f:3e:d9:c7:7a:65:de:00:8a:b4:25:
0b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F6:FD:D1:7E:49:0C:E3:16:D4:4E:2B:FE:1D:04:4F:6C:CA:87:72
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:12a::/48
Signature Algorithm: sha256WithRSAEncryption
92:f5:9f:95:97:9c:bd:2d:d3:33:2a:ed:a1:83:8b:3c:3a:0e:
63:6d:83:a2:ba:d4:68:01:68:b6:2f:32:46:61:1a:4a:78:8c:
bf:19:f7:a2:b0:5f:93:49:20:6e:9a:51:d2:c0:dc:e4:1f:4a:
6d:61:fa:09:0c:49:b8:61:c5:70:6c:b8:79:59:ce:cd:4c:79:
83:6e:ea:e3:79:9e:9c:91:eb:12:ca:3b:fd:d0:6e:a9:f1:4f:
c1:bf:c4:d0:a9:70:f1:55:5f:ba:54:f1:c4:d3:c1:ce:48:e8:
71:92:28:4c:54:9a:4e:b8:37:12:a7:31:dd:6a:92:bd:ba:9b:
04:6d:cb:30:92:5e:e1:91:ed:d6:bd:94:ec:29:7f:61:08:b1:
2b:d2:4e:1a:16:01:7c:a8:74:7f:23:84:9a:75:3e:f0:56:a1:
6e:77:f0:14:31:95:10:21:d5:23:d5:28:07:36:4d:05:d7:1c:
4a:d9:1d:88:62:b1:64:bf:e1:86:2f:a5:f2:ba:93:06:00:89:
d9:e9:1a:75:80:e2:7c:c9:67:56:90:6a:59:18:df:0a:77:72:
a3:44:26:45:e0:24:b6:25:29:b2:22:8c:fc:46:50:0e:63:70:
3b:d7:01:a6:13:e6:91:8c:74:76:dd:b9:ee:81:c7:4d:66:72:
3e:53:c1:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org