Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: VsbcEusU34qYCVfpMh7IP8FLcompCIPhiCRuQsu56nY=
Subject key identifier: CB:41:12:D5:B2:9C:2A:F7:84:4B:64:4F:16:EE:57:64:BB:88:F4:1B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 198D27EC300AA639052A2D49F418647154B14A42
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:04 +0000
ROA not before: Mon 26 Sep 2022 07:57:04 +0000
ROA not after: Mon 25 Sep 2023 08:02:04 +0000
asID: 59282
IP address blocks: 2400:d680:151::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:8d:27:ec:30:0a:a6:39:05:2a:2d:49:f4:18:64:71:54:b1:4a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:04 2022 GMT
Not After : Sep 25 08:02:04 2023 GMT
Subject: CN=CB4112D5B29C2AF7844B644F16EE5764BB88F41B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ef:38:7e:fa:bc:5d:97:9d:20:a0:21:4d:f2:
a2:7c:ea:f5:08:1b:07:c3:c8:22:d0:bc:b1:0c:92:
ae:ad:db:dc:71:38:a2:77:64:1e:07:78:db:ba:a6:
99:24:8c:1b:75:1f:1d:6d:dc:b0:50:a9:05:7a:fc:
9e:05:e5:66:6e:60:cc:fa:e6:34:a4:90:09:42:c9:
aa:86:cc:90:df:fd:3b:13:55:b0:7b:b9:32:c2:9f:
a6:25:a9:7b:92:10:96:d6:f9:55:48:c6:5d:f7:cf:
8d:af:91:f4:0b:94:31:79:6f:44:49:50:cc:ad:08:
2b:00:a7:3c:98:d7:9b:10:48:c3:09:6d:6e:fd:21:
da:d5:6a:01:28:d8:3f:a0:6d:e2:c6:c8:06:76:c9:
27:87:08:ac:dd:b5:19:19:7d:0a:59:f2:cc:ba:4e:
fd:d3:67:e6:f0:64:65:eb:59:48:63:a4:bb:3a:82:
0d:98:c4:d3:0d:bf:85:5c:03:8d:54:f0:f2:fe:ba:
ac:2f:6a:32:a4:32:1d:33:54:41:11:ea:a6:f7:73:
02:f4:01:aa:08:2e:84:0f:bc:f4:e9:6a:e8:03:7c:
05:1a:83:1c:ef:fe:ce:0e:4d:ef:47:ef:b1:f6:04:
4a:07:34:13:4b:84:9c:7d:87:f6:50:7c:19:60:17:
77:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:41:12:D5:B2:9C:2A:F7:84:4B:64:4F:16:EE:57:64:BB:88:F4:1B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:151::/48
Signature Algorithm: sha256WithRSAEncryption
7b:8e:5e:2c:ff:e0:c6:e9:53:3c:77:a3:ac:8e:33:79:88:5a:
19:c8:1d:55:88:60:94:11:b2:6c:4e:53:9e:0f:b3:e5:a2:76:
53:6e:29:45:6f:00:e4:1c:8e:2f:3a:19:ee:1b:54:f5:c6:a4:
58:8f:30:9a:55:12:cc:30:86:82:ea:e1:a3:2d:c8:65:da:8e:
4f:69:0e:c0:2e:f8:4c:6e:6d:e9:9f:f0:7c:7f:a8:7e:0e:86:
e9:26:92:42:0d:f1:4a:0e:7e:9b:87:5c:35:e5:e2:c0:42:0a:
b6:85:00:5d:1c:d5:ae:66:5c:27:31:66:a8:fd:d8:da:f6:b5:
77:54:a8:76:9e:df:dc:f0:cd:16:e3:20:cb:3d:c3:a3:8c:2f:
31:87:09:23:2a:1f:64:84:36:ec:41:47:06:92:1e:a4:c7:b8:
8f:10:d9:50:df:1b:2d:b8:39:10:4b:ba:00:d5:17:14:51:40:
68:b1:7d:a5:43:2f:85:c9:0b:bf:14:97:d8:1f:40:57:f1:22:
c8:fe:94:f1:0e:6d:46:61:b0:9a:0b:de:6f:90:d7:66:32:f1:
3b:83:5c:f5:46:d8:4d:b8:a3:38:f2:d9:ba:42:1a:75:64:d9:
74:da:51:68:65:b0:c0:7f:79:fe:28:35:ed:af:22:cb:d6:64:
d0:f1:b1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org