Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rd+IZvAMuHosKShOdvWjoyfgWqW7QLgYBQg2rLTZG0E=
Subject key identifier: 26:58:C7:A1:4D:F3:CF:93:78:77:B3:C0:10:30:1E:C1:C9:D6:B9:AD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 20C98909497B9906C4F5DE4BBCCA400A6D7A18EF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:03 +0000
ROA not before: Mon 26 Sep 2022 07:57:03 +0000
ROA not after: Mon 25 Sep 2023 08:02:03 +0000
asID: 59282
IP address blocks: 2400:d680:170::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:c9:89:09:49:7b:99:06:c4:f5:de:4b:bc:ca:40:0a:6d:7a:18:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:03 2022 GMT
Not After : Sep 25 08:02:03 2023 GMT
Subject: CN=2658C7A14DF3CF937877B3C010301EC1C9D6B9AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6f:09:2f:e2:4b:93:d5:50:ec:f7:6b:0f:8f:
38:47:46:7c:63:66:7a:3f:f0:f1:82:97:17:bb:30:
9e:4f:8a:29:11:44:5c:4c:66:da:fe:9a:04:88:ab:
6c:5e:9b:2d:07:dc:2e:91:d8:11:e0:d5:16:34:ec:
1f:84:69:93:5f:15:6a:90:ac:49:42:80:ad:27:09:
a9:52:fb:f6:d0:f3:a7:37:b1:b8:96:e8:d7:1a:6d:
5d:5f:bf:aa:69:32:9f:60:a7:64:30:60:cd:98:3a:
5f:59:d3:3d:da:61:2c:b3:b3:aa:90:bf:2e:60:d5:
34:36:70:98:08:f0:ce:84:9b:e6:cb:b4:13:b8:9f:
bc:f9:c5:dd:6c:82:39:d8:d8:9d:81:ef:9c:ee:b5:
78:17:ee:11:79:83:07:50:04:1f:6a:0a:a1:88:50:
7c:31:2e:ed:20:60:65:8e:26:fb:bb:d1:58:8c:ce:
c5:b1:80:02:9a:d3:d3:f2:82:66:f2:a8:ac:33:0a:
5d:c7:32:5b:44:b8:b8:3a:aa:d4:2a:80:24:3f:bc:
27:71:d1:b1:74:a4:72:23:95:05:69:03:ec:c6:69:
e1:3f:4a:7d:74:4c:ab:88:96:2c:56:21:d7:2a:0d:
ea:dc:04:65:d7:65:01:4c:53:7c:a2:df:8e:2f:73:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:58:C7:A1:4D:F3:CF:93:78:77:B3:C0:10:30:1E:C1:C9:D6:B9:AD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:170::/48
Signature Algorithm: sha256WithRSAEncryption
26:5c:f8:d6:5d:56:18:e7:a4:f8:2d:02:55:78:85:fd:c6:8d:
18:10:ab:f8:30:c6:28:ac:0c:c3:cd:e3:22:47:4b:56:74:e6:
12:f0:40:8c:6b:b1:7a:5f:de:53:39:c0:09:69:f3:e5:c2:93:
9a:2c:fd:4a:f5:33:7f:e5:da:c0:d9:df:df:85:39:26:98:21:
dc:ea:c1:7c:bb:78:7a:9a:67:ff:e5:4d:67:54:8d:c7:25:cb:
20:99:88:84:1f:0e:73:36:e8:be:41:4e:1a:87:02:6b:74:b4:
9e:d7:10:a3:89:fd:4a:89:e5:44:9a:0d:0c:87:b5:e6:e9:0c:
66:88:46:2e:54:1f:55:67:36:27:21:18:e0:ca:26:94:6e:24:
02:3b:c4:53:8a:e5:d1:c8:ca:68:19:bb:f6:61:ae:da:b1:0a:
a3:ba:e8:c9:25:a8:13:5e:6a:ad:e3:91:88:7b:d5:1e:40:88:
b3:53:8f:6e:fe:da:cc:16:1d:5f:cd:e6:6c:87:b0:45:c5:ea:
f1:04:85:bb:8c:6c:ee:55:ab:67:43:44:2b:c2:c8:51:aa:f4:
e9:a5:7f:17:f1:3d:65:98:5d:a0:df:f4:e8:c1:68:8b:80:5e:
bd:9a:16:ec:13:d1:f5:16:4e:41:18:a7:5c:05:a7:be:5e:91:
b1:b9:8e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org