Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3134663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: VIZuLhGYgBoUo7HNEwXPJFbA7wwSLxrA78jSJtiaLN8=
Subject key identifier: 30:D7:1D:64:74:2B:97:A8:6E:F0:D8:DF:05:B6:3D:77:E7:51:05:88
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 740E1F42EEBFFD494DF7C27BD410B9B8D4DF558D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:41 +0000
ROA not before: Mon 26 Sep 2022 07:56:41 +0000
ROA not after: Mon 25 Sep 2023 08:01:41 +0000
asID: 59282
IP address blocks: 2400:d680:14f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:0e:1f:42:ee:bf:fd:49:4d:f7:c2:7b:d4:10:b9:b8:d4:df:55:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:41 2022 GMT
Not After : Sep 25 08:01:41 2023 GMT
Subject: CN=30D71D64742B97A86EF0D8DF05B63D77E7510588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c1:44:de:29:95:09:44:0c:33:d9:25:80:ee:
70:57:c1:28:54:dd:dd:78:ad:b2:7b:62:c4:8f:f6:
9b:07:56:ed:57:5f:50:81:17:b7:97:75:d4:53:c4:
56:b8:fc:10:c7:cb:29:ef:f2:99:5a:4c:ee:be:65:
0e:da:6e:c3:22:c8:18:ea:65:f5:95:30:08:81:b9:
2e:e6:cd:50:6a:d3:a2:bc:6b:c0:a9:3a:a2:d1:04:
f1:a4:44:ec:71:8a:7c:50:53:54:ab:79:89:2e:eb:
d2:d8:18:6b:a8:02:98:f4:f8:2a:b4:e0:6f:34:e0:
83:85:e7:e5:72:17:fa:54:5c:44:02:00:36:b2:e3:
d4:0c:ac:d7:70:b9:84:66:13:3f:43:58:40:d0:19:
8f:71:91:e8:81:40:20:59:ce:f7:24:60:71:45:6c:
36:f4:e5:26:1b:76:a3:5a:51:7f:38:6b:3c:d8:1a:
11:58:ca:9e:22:1c:b2:8e:4a:20:03:c9:82:2a:f0:
8b:46:a5:bf:bc:42:52:ca:39:9f:f9:95:5c:f6:20:
42:c9:4b:aa:79:39:46:a5:b2:7a:51:1a:24:4a:ca:
f4:d9:1c:3a:59:79:5b:31:43:d3:59:cf:0f:cd:01:
99:79:87:f6:24:d0:a5:c7:9c:1b:ff:16:7e:93:aa:
d0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D7:1D:64:74:2B:97:A8:6E:F0:D8:DF:05:B6:3D:77:E7:51:05:88
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:14f::/48
Signature Algorithm: sha256WithRSAEncryption
d4:73:77:2c:09:81:8e:29:bf:58:a0:86:e5:46:31:85:cb:81:
1a:6b:07:3a:a8:de:c9:71:22:27:3c:2c:2f:ef:7e:f1:04:ca:
58:a8:1d:47:8c:74:5c:34:75:a4:9e:ae:50:46:f4:d6:08:e7:
00:2a:09:5f:d7:d3:bb:22:a2:26:ab:fc:fd:e1:b6:a3:90:4e:
08:20:b3:22:91:12:ed:c4:99:4b:05:75:c9:ab:13:ac:93:09:
5e:6d:8c:bd:0f:ed:1a:08:a8:fc:ff:8b:aa:f1:96:92:df:90:
e3:37:13:52:87:37:b7:d1:6e:37:9f:07:6c:07:5e:82:80:16:
12:44:be:fa:c6:8d:2b:95:27:58:91:71:60:59:de:62:d0:38:
0e:c0:c1:58:ae:db:45:04:9b:8f:08:c7:32:e2:a4:83:7b:9a:
dc:a6:e1:c1:41:b6:6d:cd:b5:13:56:6a:6f:56:fd:31:1c:7c:
14:d1:07:a4:47:f8:91:73:05:fb:36:a7:df:d3:d0:f7:25:af:
a5:2d:ab:01:9a:74:f2:95:d8:e8:c6:fe:9c:cd:07:54:83:db:
ef:e4:bf:2d:17:8f:4c:6c:e9:88:5c:46:14:83:dd:96:21:7c:
78:d5:bd:23:65:1e:4c:5e:dc:8f:cf:47:2c:e8:ac:79:68:c0:
9a:ee:12:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org