Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Vm5TAbyXTiBihtZIkbFB3lVtfj2kEDSVrzroKCNcQ48=
Subject key identifier: 64:4A:06:E0:E1:29:86:09:89:4E:A0:17:79:FA:F2:84:FA:DA:92:B6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 745920FA19F88E468EEFCF5B10A9783BF2FCB15C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:21 +0000
ROA not before: Mon 26 Sep 2022 07:56:21 +0000
ROA not after: Mon 25 Sep 2023 08:01:21 +0000
asID: 59282
IP address blocks: 2400:d680:15e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:59:20:fa:19:f8:8e:46:8e:ef:cf:5b:10:a9:78:3b:f2:fc:b1:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:21 2022 GMT
Not After : Sep 25 08:01:21 2023 GMT
Subject: CN=644A06E0E1298609894EA01779FAF284FADA92B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:39:b9:4f:96:b8:ff:e8:1e:11:1b:2d:bb:
99:86:1b:38:e0:fd:f2:1e:ba:30:ac:4a:e8:42:ae:
65:11:a9:7f:b9:d2:a8:9f:a5:f8:dd:bf:ed:0c:cf:
c0:61:71:cd:7d:b9:4d:7f:b0:63:37:30:4b:b2:15:
9c:fa:63:21:67:be:7f:0f:57:5f:55:86:a4:e4:13:
88:ba:df:98:39:e2:b5:4d:8a:f7:c2:0e:9a:9e:44:
8f:5b:1b:b7:93:53:c0:07:64:4f:7d:b1:22:30:aa:
73:18:68:ac:8c:63:6b:24:00:ff:e0:7f:86:fa:31:
29:a2:b6:5f:e0:8a:8c:13:f3:e1:51:d1:51:98:63:
9e:cb:60:fa:1f:e1:b1:59:4d:78:99:30:f9:0a:50:
51:6b:72:b2:4d:8f:ce:b1:d0:be:5b:57:a8:9f:77:
55:31:55:9d:70:5a:70:44:65:25:5a:25:ff:1b:d5:
d3:d1:10:76:80:fd:5d:76:f1:b7:61:f8:04:8a:91:
4d:b1:84:80:ee:5f:91:2f:bd:ce:53:45:90:de:a8:
f8:fe:35:4a:9b:d8:71:e1:8a:d1:6f:77:90:e1:a5:
62:f8:d1:ae:d2:54:96:18:db:85:f9:4c:05:a5:dd:
43:49:17:73:86:da:43:07:29:78:c1:73:15:57:57:
48:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:4A:06:E0:E1:29:86:09:89:4E:A0:17:79:FA:F2:84:FA:DA:92:B6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:15e::/48
Signature Algorithm: sha256WithRSAEncryption
70:c6:9b:c9:f5:35:75:b1:4f:b2:98:3c:91:c8:05:f2:ad:d6:
84:40:b0:1c:43:73:3a:7c:ec:e5:61:8c:17:c4:59:45:6f:9f:
84:7d:60:38:ce:07:39:6a:3e:1d:8f:08:3c:0a:47:3d:72:0e:
f8:d1:07:a9:9a:14:d6:2f:58:44:39:dc:f2:17:47:c5:d7:05:
95:01:82:61:13:74:9d:c6:99:2d:5b:bc:4e:26:d7:eb:65:42:
31:05:74:b7:d1:03:b8:5f:cc:46:0c:d5:cc:5a:25:12:95:d1:
6f:79:c9:4c:76:01:df:55:ff:ad:83:29:24:48:b0:41:36:86:
dd:09:4f:da:f9:70:e8:ef:60:ac:40:a7:d1:9b:5d:58:d9:c2:
3c:b1:e6:f0:76:c1:30:f6:6d:55:18:c4:68:95:58:5c:53:1a:
f9:40:13:6a:d1:fc:cd:67:e7:c7:d4:01:0d:d0:5e:83:eb:8f:
c5:90:cf:6a:56:fb:2b:35:db:78:d2:1a:04:45:ba:06:24:36:
a6:de:ee:6a:6c:99:4c:80:15:54:98:76:c3:c7:70:ad:31:3c:
14:0c:16:e5:60:0f:b9:b7:3b:27:98:56:7b:61:3b:fc:3c:42:
f6:6c:34:29:e3:66:2a:93:b7:21:68:9a:23:0c:0b:4c:05:85:
0d:d3:82:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org