Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: BXxxjfBlvTVOgrt3hbP8VMdODNSRUzkbg1KSrE6HrT8=
Subject key identifier: 8D:E1:0C:E6:72:18:4C:46:72:07:7D:66:A2:27:8F:3C:C2:0B:48:4E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 34CC40B1FA6626CC5B20B8E2125435D1FECE373C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:160::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:cc:40:b1:fa:66:26:cc:5b:20:b8:e2:12:54:35:d1:fe:ce:37:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=8DE10CE672184C4672077D66A2278F3CC20B484E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8a:b3:3c:ef:aa:60:35:a9:b3:fd:be:bd:9e:
41:97:16:e1:bd:72:83:de:61:eb:0f:e2:4a:1a:c0:
a8:90:e3:24:9b:44:07:13:3d:85:18:e6:0d:69:60:
e5:51:39:28:66:3c:17:a4:8c:e1:d3:ee:87:fd:29:
1b:90:44:90:78:8b:ea:5f:07:d9:eb:7f:d6:b6:b6:
ef:12:53:a0:0f:79:bb:fa:2b:f9:6c:71:ce:69:e2:
10:51:77:5b:0e:29:51:0c:95:33:b6:e6:a3:7b:8e:
0c:37:bc:f4:63:08:76:2e:5c:f9:c0:e1:e2:e5:df:
41:78:31:c0:dd:10:f3:ae:5b:3f:e0:e0:0a:34:94:
c2:53:34:78:09:00:0d:61:2c:f3:db:33:0a:48:59:
f7:0e:8b:2b:82:e6:07:5a:22:be:d2:14:7b:6f:50:
d0:32:70:5d:1a:bc:54:d5:3f:26:56:8c:02:6f:a2:
9e:de:8e:f0:cb:db:62:e0:50:1d:c6:09:79:77:17:
9a:a9:1f:35:89:7d:9f:9b:b1:70:1a:a4:12:2a:4a:
e5:9d:45:94:d0:5e:22:08:0c:95:86:23:10:3e:02:
82:e5:6b:20:e3:33:c9:2f:c7:43:d1:11:65:d9:07:
8c:2e:1f:75:85:2d:c9:10:24:5d:60:ce:7d:1f:97:
60:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E1:0C:E6:72:18:4C:46:72:07:7D:66:A2:27:8F:3C:C2:0B:48:4E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:160::/48
Signature Algorithm: sha256WithRSAEncryption
78:e6:86:9b:89:9c:e6:f6:39:49:47:0e:76:8c:b4:95:6f:13:
d6:b5:9c:64:fa:5d:92:4d:f9:1a:39:a0:f7:41:3d:ba:6c:e5:
9e:ce:6f:bb:72:0e:b3:1a:7f:50:50:c8:27:cc:f7:4b:a0:de:
c3:38:cf:60:b3:44:8b:0f:42:07:8a:e2:4e:08:d4:2a:bd:29:
28:02:e8:94:ec:4b:41:83:43:bb:5c:38:72:b2:9a:51:ce:16:
db:a7:72:25:6d:c9:86:ef:d3:cd:f6:a3:a1:5a:84:81:1b:8e:
ea:92:27:99:13:6e:06:7d:4e:26:b7:15:d3:dc:dd:df:fd:e1:
6d:dc:1a:50:36:28:9e:89:a9:29:11:fb:d8:be:cc:c2:73:04:
e1:f4:6e:d5:bd:95:8c:ee:c8:8d:54:42:9b:74:52:df:89:fe:
55:6b:a1:ed:47:8f:8d:30:32:ef:a7:99:3d:2c:47:fd:fa:e0:
f5:34:a0:f5:b5:81:44:e6:da:c3:18:5a:fa:bd:1a:46:4b:30:
c2:93:55:b9:6d:6c:30:70:2f:ca:cf:a9:95:41:2b:e7:dc:b4:
f2:1e:ec:f1:c7:94:ed:09:b7:24:11:c8:a6:b1:9d:15:a7:92:
13:79:07:47:0a:ba:cf:43:17:f8:ab:63:b4:80:d1:64:a4:dd:
32:1a:44:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org