Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JVzOASJLZhnxL9W98qmBZ6b3uxP7STtezhAJEccTGto=
Subject key identifier: 36:03:DB:E8:75:5C:32:85:DD:C2:79:A2:A2:06:B7:B2:3B:BD:D6:EA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 05BDBAB5CD8F3C5F9B0957AD0BDD492C2AFD8AA2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:11 +0000
ROA not before: Mon 26 Sep 2022 07:57:11 +0000
ROA not after: Mon 25 Sep 2023 08:02:11 +0000
asID: 59282
IP address blocks: 2400:d680:15d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:bd:ba:b5:cd:8f:3c:5f:9b:09:57:ad:0b:dd:49:2c:2a:fd:8a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:11 2022 GMT
Not After : Sep 25 08:02:11 2023 GMT
Subject: CN=3603DBE8755C3285DDC279A2A206B7B23BBDD6EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d2:3c:4c:84:3b:b8:9a:a4:71:fb:60:4c:ba:
5a:24:03:7e:ad:9d:8a:f6:0b:52:c4:4a:57:40:e8:
cf:f5:a1:db:a5:bc:fd:ec:3a:70:a8:3b:0d:3c:53:
1c:b9:84:a7:23:75:57:13:8f:cf:f5:f8:d5:47:36:
38:02:db:d8:9a:73:ab:71:d5:da:60:b3:07:eb:47:
b7:29:0d:2d:2f:3d:91:8b:b0:7f:3a:13:71:24:de:
70:1c:dc:3b:ce:03:96:ed:9f:d4:66:53:f7:ca:fb:
55:f7:15:11:f3:76:b3:39:d1:2c:45:08:87:37:0a:
72:57:71:05:4b:b8:92:cb:ea:23:af:49:50:96:1c:
e9:57:72:6a:38:33:c6:de:49:f2:ad:f8:fa:b0:09:
c5:fa:a9:8a:df:b3:21:05:e2:d8:ae:aa:81:c1:73:
3d:35:c3:e0:b5:d9:0b:f7:53:7c:1e:98:0e:12:a1:
ae:ac:b5:0f:f2:9e:c7:04:75:f2:b6:0a:68:46:6b:
fb:59:f2:78:4e:fb:fe:30:96:e4:f0:ec:6e:95:b8:
56:bc:63:c0:06:3d:48:17:a2:f9:5d:8c:d2:a2:f9:
d0:35:ae:ce:89:78:54:7f:73:94:e2:75:6d:7d:1c:
ad:2c:7e:9b:13:cc:10:bb:df:3f:55:47:e9:9e:6f:
55:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:03:DB:E8:75:5C:32:85:DD:C2:79:A2:A2:06:B7:B2:3B:BD:D6:EA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:15d::/48
Signature Algorithm: sha256WithRSAEncryption
47:d7:f4:70:91:57:80:52:d0:88:62:64:29:7a:b3:d8:b4:22:
0f:80:c2:31:fc:ec:d8:82:9a:ba:85:1c:4b:5a:f6:ce:52:56:
71:26:a2:13:33:e6:11:f2:ae:96:4a:7d:d6:40:7e:bc:56:65:
93:e9:a5:c0:01:02:5c:57:4f:95:06:8e:91:99:a9:82:61:57:
13:ac:17:75:4a:d5:c4:2a:65:3a:6f:14:08:c9:bd:e0:60:d8:
37:01:95:d8:ae:18:94:82:7f:c9:29:9a:06:cf:f3:15:8b:49:
e5:1d:f7:3d:a6:7b:30:ce:03:70:42:dd:bd:9b:67:63:48:2a:
a5:15:99:eb:c5:20:a7:1c:42:20:c0:05:43:13:03:c1:53:23:
2f:03:37:00:df:22:aa:5c:6f:50:2c:4a:21:01:89:16:20:a0:
51:31:56:6d:3c:85:25:d4:2d:c6:c2:ee:fc:4a:5f:eb:45:24:
f2:7c:97:3c:d0:44:0f:4f:44:7f:bc:66:0a:8c:0e:b6:79:ca:
bc:56:ba:ef:7b:d5:e0:dd:a3:79:bf:e2:e1:cf:22:90:f6:65:
17:b4:5b:9a:83:2d:fb:01:12:b5:3f:0a:cf:0b:dc:94:f1:0f:
15:c7:67:64:9c:1d:6d:da:14:63:f4:88:f1:eb:dc:ff:3d:e1:
0a:ac:4c:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org