Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RdTZshn1T+EkJp+ZkHjnEd9Y6pVlxNRycghB8VGYXTU=
Subject key identifier: DB:48:34:0E:6B:F6:86:AC:CF:64:F7:87:99:8E:E8:56:D1:EA:09:9D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1452B2A86A047F29BA013CB6D3322D91E0736649
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:16 +0000
ROA not before: Mon 26 Sep 2022 07:57:16 +0000
ROA not after: Mon 25 Sep 2023 08:02:16 +0000
asID: 59282
IP address blocks: 2400:d680:16b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:52:b2:a8:6a:04:7f:29:ba:01:3c:b6:d3:32:2d:91:e0:73:66:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:16 2022 GMT
Not After : Sep 25 08:02:16 2023 GMT
Subject: CN=DB48340E6BF686ACCF64F787998EE856D1EA099D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:b4:b4:ed:ce:85:69:60:16:38:da:98:dd:
e1:2e:96:e3:95:11:26:62:b9:97:9f:76:46:bd:32:
0e:9d:be:60:b1:f4:9d:0d:37:55:45:88:b8:39:01:
46:af:8b:55:86:1f:d7:fd:c0:14:ad:e1:73:5e:d2:
0f:8c:be:de:ad:bc:84:95:ca:1a:ad:13:16:cd:21:
d8:a3:c7:85:ec:3b:58:9f:39:c5:b1:5f:5a:81:c7:
63:1c:e9:a0:b8:7e:00:65:2f:ee:7d:7b:0d:7a:5c:
df:b2:dc:50:91:f4:1a:38:a9:59:04:08:28:ea:aa:
4d:8d:19:e9:77:e0:45:00:07:7c:5b:e3:d6:b0:a2:
94:7c:01:7f:fc:a3:33:7f:e2:be:f3:75:e4:e4:0e:
2f:da:b4:34:08:2e:7b:58:a8:22:a4:89:da:88:71:
f0:6f:c8:81:d3:08:4a:e5:ed:f8:0e:77:79:ce:4d:
dc:be:9f:47:5f:ac:d5:af:28:3c:be:49:1e:a1:c1:
52:19:2b:cc:7d:2d:45:9a:e5:ca:8e:f2:3e:38:77:
7c:59:c7:ce:49:19:3d:bf:85:90:b0:2f:99:f3:a3:
71:3e:03:a3:aa:03:c1:21:3d:1b:71:28:58:1f:12:
58:81:84:e3:bd:fe:ac:8c:95:a6:ba:6f:83:16:62:
fa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:48:34:0E:6B:F6:86:AC:CF:64:F7:87:99:8E:E8:56:D1:EA:09:9D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:16b::/48
Signature Algorithm: sha256WithRSAEncryption
04:3a:94:5f:d5:75:22:27:ff:14:3e:77:cc:6e:74:c5:b8:40:
04:78:fc:7b:79:d7:db:c8:82:8f:c4:bc:49:45:cd:cb:43:53:
15:f4:34:8e:04:80:56:ed:61:e3:fd:d7:18:be:d4:b0:7d:9c:
11:a0:e7:eb:1d:6f:fd:d9:1f:7a:45:98:d2:f5:07:8b:0b:13:
79:8e:42:60:d2:f8:fd:8f:5c:12:11:f9:e8:cd:e1:88:11:fb:
14:7f:54:31:d6:b0:e8:61:dc:b6:93:43:c5:9a:9f:6d:d6:69:
55:ff:81:44:fc:94:bc:58:d4:8e:25:c8:83:2a:d9:ff:3e:48:
5b:61:b7:c1:c6:bf:da:a6:08:47:d4:b6:16:c2:9e:ca:0f:2b:
d9:90:89:d9:9c:b9:59:7b:b5:5a:c7:7d:ba:28:80:a7:7e:c8:
5b:25:23:49:3e:2b:6d:a7:09:de:39:ae:fd:bf:b7:bc:06:7a:
65:48:30:7d:ea:f7:97:17:da:d0:5a:60:19:41:22:de:fb:18:
91:28:40:0e:78:47:d5:56:0b:4c:6c:ea:ae:9f:f9:58:c0:5d:
af:d9:be:d0:97:30:72:ea:c0:0b:f7:0a:90:51:3a:4d:5e:7f:
7a:f0:96:05:f9:42:a9:15:7d:5a:a8:95:91:cb:67:9f:a2:ac:
bf:92:e4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org